IOC Radar
IPHighVerifiedSignal 48/100

168.126.63.1

Location
Korea, Republic ofKorea, Republic of
Goyang-si, Gyeonggi-do
ASN
AS4766
Kornet
First Seen
Jan 5, 2024
Last Seen
May 5, 2026
Jan 5
First Seen
891d ago
May 5
Last Seen
39d ago
4
Reports
source reports
48%
Confidence
high
Found in 4 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
48%
Signal Score
48 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

13 techniques

Network Information

CountryKRKorea, Republic of
RegionGoyang-si, Gyeonggi-do
ASNAS4766
OrganizationKornet

Feed Intelligence Summary

4 reports48% confidence
4
Source reports
48%
Confidence score
Category tags
aaaaac emailactive scanactive scanningallen streetasiaasylumbehavbundangguca validitycgb stgreaterchia scnamecnsectigo rsacnthawte tlscodecontactcreation datecus odigicertcus oletdns attackdnssecemailencrypt cnr13encryptionexpiration datefound dateg1 validitygooglehackhackingiana idin registrantindicatorinfointernet usagekey algorithmkey identifierkey infokisakisa sikdangkoreakorea internetkorea stopkr phonekrnic personkt headlanguage testlnajusi okoreamalwaremosaic venuesname serversnetworknew yorknumberoffice countryokorea internetonlineonpremisephishingprivate limitedreadreconnaissancereferregistrant zipreplyresearchedsamsungsdsscannersecure serverseoulserverserversservicesongpagusouth koreastatussubject publicsurveyt1018t1036t1056t1070t1071t1082t1083t1095t1543t1573t1595.001t1595.002t1595.003teamtech countrytelecomtitletom jacktr littl valueturkishv3 serialwhoisx509v3 keyx509v3 subjectzoho cares

Activity Timeline

1 total obs
May 5May 5

Threat Activity Heatmap

· Peak: 2026-05-05
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
48
SIGNAL
Signal Score
48%
Confidence
4
Reports
First seenJan 5, 2024
Last seenMay 5, 2026
Verified IOC
GeolocationKR
CountryKorea, Republic of
LocationGoyang-si, Gyeonggi-do
ASNAS4766
OrgKornet
Coords37.6400, 126.7951

VirusTotal

Not checked

WHOIS

description
CC=KR ASN=AS4766 korea telecom

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 2 years ago · Last seen 1 month ago
Appeared in 4 threat reports