IOC Radar
IPMediumSignal 45/100

156.245.205.68

Location
Hong KongHong Kong
Hong Kong, Kowloon
ASN
AS54801
Zillion Network Inc.
First Seen
Dec 6, 2025
Last Seen
Jun 7, 2026
Dec 6
First Seen
200d ago
Jun 7
Last Seen
17d ago
17
Reports
source reports
45%
Confidence
medium
Found in 17 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
45%
Signal Score
45 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

19 techniques

Network Information

CountryHKHong Kong
RegionHong Kong, Kowloon
ASNAS54801
OrganizationZillion Network Inc.

Feed Intelligence Summary

17 reports45% confidence
17
Source reports
45%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningapacheapache attackeraptasiaattackautomated threat actorsbad reputationbad web botblocklist_allbotnet activitybrute forcebrute force attackbrute force attackerbrute-forcecommunication protocolcredential accesscredential brute-forcecredential stuffingdata exfiltrationdata store exposuredatabase securityddosddos attackdecoy systemdenial of serviceexploitation activityexploited hostftpftp brute-forcehackinghkhong konghttp scannerhttp/https attackshttpsidentity & access exploitationindicatorinformation technologyinjection activityinjection attacksipv4ipv4 threatit infrastructuremalicious activitymalwarenetworknetwork probingnetwork scanningpassword attacksreconnaissanceresearchedscannerscanning activitysecurity operationssecurity policysoftware developmentspamsql injectionsshssh attackt1059.003t1071.001t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1486t1499.001t1499.002t1590t1592t1595t1595.001t1595.002t1595.003targeting databasethreat actorthreat intelligencethreat preventiontor nodewebweb app attackweb application attackweb attack activityweb attacksweb exploitationweb spamweb traffic

Activity Timeline

1 total obs
Jun 7Jun 7

Threat Activity Heatmap

· Peak: 2026-06-07
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
45
SIGNAL
Signal Score
45%
Confidence
17
Reports
First seenDec 6, 2025
Last seenJun 7, 2026
GeolocationHK
CountryHong Kong
LocationHong Kong, Kowloon
ASNAS54801
OrgZillion Network Inc.
Coords22.3193, 114.1690

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected performing web attacks against Cloudflare honeypot edge

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 6 months ago · Last seen 17 days ago
Appeared in 17 threat reports