IPMediumSignal 74/100
160.22.161.89
Location
VietnamGiai Uan, Thanh Hóa Province
ASN
AS152933
Zonecloud Technology Joint Stock Company
First Seen
Feb 21, 2025
Last Seen
Apr 6, 2026
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
74%
Signal Score
74 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryVietnam
VietnamRegionGiai Uan, Thanh Hóa Province
ASNAS152933
OrganizationZonecloud Technology Joint Stock Company
Feed Intelligence Summary
12 reports74% confidence
12
Source reports
74%
Confidence score
Category tags
abuseactive scanactive scanningaptasiabad reputationbotnetbotnet activitybrute forcebrute force attackc2cnccommand & controlcommand and controlcompromise ipv4compromised hostconnected devicescredential accesscredential stuffingcredentialsctadata exfiltrationdata store exposureddosddos attackddos attacksdevice managementdistributed attacksexploitexploitationexploitation activityhashesidentity & access exploitationindicatorindustrial iotinfrastructure acquisitionreconnaissanceinjection activityinternet of thingsiociocsiotiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attackipv4ipv4 portlinuxlinux malwaremalicious softwaremalwaremalware infectionmirai botnetnetworknetwork activitynetwork scanningnetwork trafficpassword attackspolcertprocess injectionreconnaissanceresearchedrussiarussian hackerssaint helena, ascension and tristan da cunhashell accesssmart devicest1016t1021t1021.004t1046t1053t1053.005t1055t1059t1059.004t1068t1071.001t1078t1083t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1199t1204t1486t1496t1497t1498t1498.001t1499.002t1499.003t1539t1565t1566t1571t1583t1584t1587.001t1588t1590.001t1591t1592t1595t1595.001t1595.002t1595.003threat actortoggletor nodevietnamvn
Activity Timeline
Apr 6Apr 6
Threat Activity Heatmap
· Peak: 2026-04-06LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
74
SIGNAL
Signal Score
74%
Confidence
12
Reports
First seenFeb 21, 2025
Last seenApr 6, 2026
GeolocationVN
CountryVietnam
LocationGiai Uan, Thanh Hóa Province
ASNAS152933
OrgZonecloud Technology Joint Stock Company
Coords0.0000, 0.0000
VirusTotal
Not checked
WHOIS
- description
- CC=JP ASN=ASNone
- raw
- inetnum: 160.22.160.0 - 160.22.161.255 netname: ZONECLOUD-VN descr: ZONECLOUD TECHNOLOGY JOINT STOCK COMPANY descr: No. 17. Resettlement Lot 02. Vinhomes Riverside Hai Phong Resettlement Area, So Dau Ward, Hong Bang District, Hai Phong admin-c: PMQ4-AP tech-c: THK22-AP country: VN mnt-by: MAINT-VN-VNNIC mnt-irt: IRT-VNNIC-AP mnt-routes: MAINT-VN-VNNIC status: ASSIGNED PORTABLE last-modified: 2024-06-16T09:10:32Z source: APNIC irt: IRT-VNNIC-AP address: Ha Noi, VietNam phone: +84-24-35564944 fax-no: +84-24-37821462 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: NTTT1-AP tech-c: NTTT1-AP auth: # Filtered mnt-by: MAINT-VN-VNNIC last-modified: 2017-11-08T09:40:06Z source: APNIC person: Pham Minh Quang address: country: VN phone: +84-889293989 e-mail: [email protected] nic-hdl: PMQ4-AP mnt-by: MAINT-VN-VNNIC last-modified: 2024-06-16T09:07:03Z source: APNIC person: Truong Hoang Khanh address: country: VN phone: +84-937180896 e-mail: [email protected] nic-hdl: THK22-AP mnt-by: MAINT-VN-VNNIC last-modified: 2024-06-16T09:08:26Z source: APNIC route: 160.22.161.0/24 descr: ZONECLOUD-VN origin: AS152933 mnt-by: MAINT-VN-VNNIC last-modified: 2024-07-12T01:28:36Z source: APNIC
- references
- https://threatfox.abuse.ch/export/csv/recent/, https://1275.ru/ioc/gs-621-mirai-botnet-iocs_9869, https://1275.ru/ioc/gs-620-mirai-botnet-iocs_9860, https://1275.ru/ioc/gs-614-mirai-botnet-iocs_9526
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 months ago
Appeared in 12 threat reports