IPMediumSignal 95/100
162.14.110.82
Location
ChinaChengdu, Sichuan
ASN
AS45090
Tencent Cloud Computing (Beijing) Co., Ltd
First Seen
Apr 8, 2025
Last Seen
Feb 22, 2026
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
95%
Signal Score
95 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryChina
ChinaRegionChengdu, Sichuan
ASNAS45090
OrganizationTencent Cloud Computing (Beijing) Co., Ltd
Feed Intelligence Summary
13 reports95% confidence
13
Source reports
95%
Confidence score
Category tags
armasiaasyncratbackdoorbase64bianlianbookingbotnetbotnetdomainbrute force attackbrute_ratel_c4c2censyschinacobaltstrikecommand and controlcredential accesscredential harvestingcredential stuffingdata exfiltrationdcratddos attacksdeimosdistributed attackselfencodedexefakecaptchagafgytgh0stratguloaderhajimehak5_cloud_c2havochookbotindicatorinfrastructure acquisitionreconnaissanceinternet of thingsiot botnetiot/ics attacklateral movementmalicious softwaremalwaremanualmipsmirai botnetmozimythicnetsupportratnetworkopendirpassword attackspegasusphishing attackprocess injectionqakbotratremcos trojanremcosratremote accessremote servicesresearchedreverse_sshsaint helena, ascension and tristan da cunhasliversocial engineeringsocial media exploitationsshdkitsupershellt1005t1016t1021t1021.001t1027t1036t1047t1053t1055t1059t1059.003t1068t1071t1071.001t1071.004t1078t1083t1105t1110.001t1110.002t1110.003t1110.004t1133t1190t1204t1204.002t1486t1496t1499.002t1499.003t1547t1565t1566t1566.001t1566.002t1566.003t1568t1572t1583t1584t1587.001t1588t1590.001t1592t1595t1598tencent-net-apua-wgetvbsxml-opendirxorbotxworm
Activity Timeline
Feb 22Feb 22
Threat Activity Heatmap
· Peak: 2026-02-22LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
95
SIGNAL
Signal Score
95%
Confidence
13
Reports
First seenApr 8, 2025
Last seenFeb 22, 2026
GeolocationCN
CountryChina
LocationChengdu, Sichuan
ASNAS45090
OrgTencent Cloud Computing (Beijing) Co., Ltd
Coords34.7732, 113.7220
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 162.14.0.0 - 162.14.255.255 netname: TENCENT-CN descr: Tencent Cloud Computing (Beijing) Co., Ltd descr: Floor 6, Yinke Building, 38 Haidian St, Haidian District country: CN org: ORG-TCCC1-AP admin-c: TCA15-AP tech-c: TCA15-AP abuse-c: AT992-AP status: ALLOCATED PORTABLE remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-TENCENT-CN mnt-routes: MAINT-TENCENT-CN mnt-irt: IRT-TENCENT-CN last-modified: 2020-07-22T13:11:00Z source: APNIC irt: IRT-TENCENT-CN address: Floor 6, Yinke Building, 38 Haidian St, Haidian District, Beijing Beijing 100080 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: TCA15-AP tech-c: TCA15-AP auth: # Filtered remarks: [email protected] was validated on 2025-03-07 mnt-by: MAINT-COMSENZ1-CN last-modified: 2025-03-07T07:43:08Z source: APNIC organisation: ORG-TCCC1-AP org-name: Tencent Cloud Computing (Beijing) Co., Ltd org-type: LIR country: CN address: 309 West Zone, 3F. 49 Zhichun Road. Haidian District. phone: +86-10-62671299 fax-no: +86-10-82602088-41299 e-mail: [email protected] mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2023-09-05T02:16:21Z source: APNIC role: ABUSE TENCENTCN country: ZZ address: Floor 6, Yinke Building, 38 Haidian St, Haidian District, Beijing Beijing 100080 phone: +000000000 e-mail: [email protected] admin-c: TCA15-AP tech-c: TCA15-AP nic-hdl: AT992-AP remarks: Generated from irt object IRT-TENCENT-CN remarks: [email protected] was validated on 2025-03-07 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-03-07T07:43:37Z source: APNIC role: Tencent Cloud administrator address: Floor 6, Yinke Building, 38 Haidian St, Haidian District, Beijing Beijing 100080 country: CN phone: +86-10-62671299 e-mail: [email protected] admin-c: TCA15-AP tech-c: TCA15-AP nic-hdl: TCA15-AP mnt-by: MAINT-AP-DIALPAD fax-no: +86-10-62671299 last-modified: 2017-04-04T10:34:03Z source: APNIC route: 162.14.0.0/16 origin: AS45090 descr: Tencent Cloud Computing (Beijing) Co., Ltd 309 West Zone, 3F. 49 Zhichun Road. Haidian District. mnt-by: MAINT-TENCENT-CN last-modified: 2018-01-17T08:23:45Z source: APNIC
- references
- https://threatfox.abuse.ch/export/csv/recent/, https://urlhaus.abuse.ch/browse/, https://x.com/drb_ra/status/1910148738238054618, https://x.com/drb_ra/status/1910222573872284010, https://x.com/drb_ra/status/1910222598555791704, https://x.com/drb_ra/status/1910222624833090030, https://x.com/drb_ra/status/1910222648249823375, https://x.com/drb_ra/status/1910223168997896487, https://x.com/drb_ra/status/1910223189940019501, https://x.com/drb_ra/status/1910223210899009772, https://x.com/drb_ra/status/1910223232046612770, https://x.com/drb_ra/status/1910223253550801021, https://x.com/drb_ra/status/1910223275159937220, https://x.com/drb_ra/status/1910223296173387977, https://x.com/drb_ra/status/1910223317396500959, https://x.com/drb_ra/status/1910223338535891048, https://x.com/drb_ra/status/1910223370530025889, https://x.com/drb_ra/status/1910223402335416334, https://x.com/drb_ra/status/1910223428923142243, https://x.com/drb_ra/status/1910223456081228153, https://x.com/drb_ra/status/1910223479460274522, https://x.com/drb_ra/status/1910223504219263198, https://x.com/drb_ra/status/1910223528525254947, https://x.com/drb_ra/status/1910224046899319245, https://x.com/drb_ra/status/1910224065631056223, https://x.com/drb_ra/status/1910242292251664433, https://x.com/drb_ra/status/1910283271977460203, https://x.com/drb_ra/status/1910283291271327953, https://x.com/drb_ra/status/1910283309977907389, https://x.com/drb_ra/status/1910283327656894895, https://x.com/drb_ra/status/1910283345998528679, https://x.com/drb_ra/status/1910283365506297867, https://x.com/drb_ra/status/1910287422606242092, https://x.com/drb_ra/status/1910287440805245424, https://x.com/drb_ra/status/1910287458790482197, https://x.com/drb_ra/status/1910287477320843603, https://x.com/drb_ra/status/1910287496388260190, https://x.com/drb_ra/status/1910403813460078602, https://x.com/drb_ra/status/1910403831260684574, https://x.com/drb_ra/status/1910403848407240758, https://x.com/drb_ra/status/1910403866161471601, https://x.com/drb_ra/status/1910404383302430738, https://x.com/drb_ra/status/1910404401082360188, https://x.com/drb_ra/status/1910404419058819434, https://x.com/drb_ra/status/1910404437455077693, https://x.com/drb_ra/status/1910404456585498790, https://x.com/drb_ra/status/1910404475208294614, https://x.com/drb_ra/status/1910404494682448186, https://x.com/drb_ra/status/1910404515649511442, https://x.com/drb_ra/status/1910404536574869757, https://x.com/drb_ra/status/1910404558561362245, https://x.com/drb_ra/status/1910404579415511478, https://x.com/drb_ra/status/1910404601183895801, https://x.com/drb_ra/status/1910404622084170174, https://x.com/drb_ra/status/1910404642879455664, https://x.com/drb_ra/status/1910404666128560450, https://x.com/drb_ra/status/1910404687083294964, https://x.com/drb_ra/status/1910404708620972467, https://x.com/drb_ra/status/1910404730201002244, https://x.com/drb_ra/status/1910404751340064975, https://x.com/drb_ra/status/1910404772412452915, https://x.com/drb_ra/status/1910404792981348787, https://x.com/drb_ra/status/1910405311867097514, https://x.com/drb_ra/status/1910405331232186577, https://x.com/drb_ra/status/1910405352404766782, https://x.com/drb_ra/status/1910405373129064764, https://x.com/drb_ra/status/1910405394700394935, https://x.com/drb_ra/status/1910405416669892646, https://x.com/drb_ra/status/1910424181424177566, https://x.com/drb_ra/status/1910424200130478579, https://x.com/drb_ra/status/1910424220007309729, https://x.com/drb_ra/status/1909415215512400054, https://x.com/drb_ra/status/1909415237553398204, https://x.com/drb_ra/status/1909498164362805282, https://x.com/drb_ra/status/1909498181257425369, https://x.com/drb_ra/status/1909498198051504620, https://x.com/drb_ra/status/1909498215315206449, https://x.com/drb_ra/status/1909498233057116585, https://x.com/drb_ra/status/1909498250916495804, https://x.com/drb_ra/status/1909498268876521513, https://x.com/drb_ra/status/1909498275842883926, https://x.com/drb_ra/status/1909498286668468724, https://x.com/drb_ra/status/1909498287365013805, https://x.com/drb_ra/status/1909498294377607232, https://x.com/drb_ra/status/1909498305945493915, https://x.com/drb_ra/status/1909498315470770599, https://x.com/drb_ra/status/1909498326007062597, https://x.com/drb_ra/status/1909498324933058925, https://x.com/drb_ra/status/1909498345858777415, https://x.com/drb_ra/status/1909498862735405426, https://x.com/drb_ra/status/1909498879978188894, https://x.com/drb_ra/status/1909498914581233976, https://x.com/drb_ra/status/1909498932167950471, https://x.com/drb_ra/status/1909498950237012315, https://x.com/drb_ra/status/1909498969157505113, https://x.com/drb_ra/status/1909498987910189242, https://x.com/drb_ra/status/1909499007069778181, https://x.com/drb_ra/status/1909499027139485733, https://x.com/drb_ra/status/1909561745108058504, https://x.com/drb_ra/status/1909562769340244224, https://x.com/drb_ra/status/1909562788101382287, https://x.com/drb_ra/status/1909679115424215226, https://x.com/drb_ra/status/1909679133493211180, https://x.com/drb_ra/status/1909679152787341520, https://x.com/drb_ra/status/1909679170617032896, https://x.com/drb_ra/status/1909679189315207217, https://x.com/drb_ra/status/1909679208915181615, https://x.com/drb_ra/status/1909679228838195665, https://x.com/drb_ra/status/1909679248518070407, https://x.com/drb_ra/status/1909679766174650701, https://x.com/drb_ra/status/1909679783530606918, https://x.com/drb_ra/status/1909679801670984081, https://x.com/drb_ra/status/1909679819769381053, https://x.com/drb_ra/status/1909679838853574666, https://x.com/drb_ra/status/1909679860198322458, https://x.com/drb_ra/status/1909679880050294972, https://x.com/drb_ra/status/1909679899679285565, https://x.com/drb_ra/status/1909679920223035812, https://x.com/drb_ra/status/1909679939260915716, https://x.com/drb_ra/status/1909679959200706970, https://x.com/drb_ra/status/1909679980176367966, https://x.com/drb_ra/status/1909680005845532881, https://x.com/drb_ra/status/1909680027584569710, https://x.com/drb_ra/status/1909680049697042792, https://x.com/drb_ra/status/1909680071998312547, https://x.com/drb_ra/status/1909680091875230106, https://x.com/drb_ra/status/1909680111835586793, https://x.com/drb_ra/status/1909680131612017075, https://x.com/drb_ra/status/1909680152159674579, https://x.com/drb_ra/status/1909680671456739769, https://x.com/drb_ra/status/1909680690007879918, https://x.com/drb_ra/status/1909698904712728591, https://x.com/drb_ra/status/1909712572602872058, https://x.com/drb_ra/status/1909712591905263789, https://x.com/drb_ra/status/1909712611232673987, https://x.com/drb_ra/status/1909712629947580857, https://x.com/drb_ra/status/1909712649710903521, https://x.com/drb_ra/status/1909713169129292095, https://x.com/drb_ra/status/1909733407673798839, https://x.com/drb_ra/status/1909733426124533979
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 3 months ago
Appeared in 13 threat reports