IOC Radar
IPMediumSignal 76/100

182.117.6.62

Location
ChinaChina
Zhengzhou, Henan
ASN
AS4837
China Unicom Henan Province Network
First Seen
Apr 12, 2026
Last Seen
May 12, 2026
Apr 12
First Seen
62d ago
May 12
Last Seen
32d ago
6
Reports
source reports
76%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
76%
Signal Score
76 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

3 techniques

Network Information

CountryCNChina
RegionZhengzhou, Henan
ASNAS4837
OrganizationChina Unicom Henan Province Network

Feed Intelligence Summary

6 reports76% confidence
6
Source reports
76%
Confidence score
Category tags
abusech-urlhaus-c2cactive scanactive scanningarcarmarm5arm6arm7asciiasiabackdoorbad reputationbase64-loaderboatnetbotbotnetbotnet activityc2castleratchinacnccobaltstrikecoinminercommand & controlcryptocurrencyddosdropped-by-amadeyelfencodedencryptionexeexecutable fileexploitation activityexploited hostgithubgolanggotoresolveguloaderhackinghajimehtai468i686indicatorinfostealerkemo828kimsukyloaderlodalodaratluam68kmalwaremassloggermemzmipsmips.miraimozimpslmsinetworkopendirphantomstealerphishingpowerpcpowershellppcps1purecrypterpureratqbotransomwareratreconnaissanceremcosratresearchedrev-base64-loaderrmmrustystealersaint helena, ascension and tristan da cunhasalatstealersantastealerscams & fraudscannersmartloadersparcspcsuperht1595.001t1595.002t1595.003threat actortor nodeua-wgetvidarx86x86_64xwormzip

Activity Timeline

1 total obs
May 12May 12

Threat Activity Heatmap

· Peak: 2026-05-12
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
76
SIGNAL
Signal Score
76%
Confidence
6
Reports
First seenApr 12, 2026
Last seenMay 12, 2026
GeolocationCN
CountryChina
LocationZhengzhou, Henan
ASNAS4837
OrgChina Unicom Henan Province Network
Coords34.7472, 113.6250

VirusTotal

Not checked

WHOIS

raw
inetnum: 182.112.0.0 - 182.127.255.255 netname: UNICOM-HA descr: China Unicom Henan province network descr: China Unicom descr: No.21,Ji-Rong Street, descr: Beijing 100032 country: CN admin-c: CH1302-AP tech-c: WW444-AP abuse-c: AC1718-AP status: ALLOCATED PORTABLE remarks: service provider remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-CNCGROUP-HA mnt-routes: MAINT-CNCGROUP-RR mnt-irt: IRT-CU-CN last-modified: 2023-10-21T03:39:30Z source: APNIC irt: IRT-CU-CN address: No.21,Financial Street address: Beijing,100033 address: P.R.China e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH1302-AP tech-c: CH1302-AP auth: # Filtered remarks: [email protected] was validated on 2025-10-17 mnt-by: MAINT-CNCGROUP last-modified: 2025-11-18T00:26:20Z source: APNIC role: ABUSE CUCN country: ZZ address: No.21,Financial Street address: Beijing,100033 address: P.R.China phone: +000000000 e-mail: [email protected] admin-c: CH1302-AP tech-c: CH1302-AP nic-hdl: AC1718-AP remarks: Generated from irt object IRT-CU-CN remarks: [email protected] was validated on 2025-10-17 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-10-17T02:26:56Z source: APNIC person: ChinaUnicom Hostmaster nic-hdl: CH1302-AP e-mail: [email protected] address: No.21,Jin-Rong Street address: Beijing,100033 address: P.R.China phone: +86-10-66259764 fax-no: +86-10-66259764 country: CN mnt-by: MAINT-CNCGROUP last-modified: 2017-08-17T06:13:16Z source: APNIC person: Wei Wang nic-hdl: WW444-AP e-mail: [email protected] address: #55 San Quan Road, Zhengzhou, Henan Provice phone: +86-371-65952358 fax-no: +86-371-65968952 country: CN mnt-by: MAINT-CNCGROUP-HA last-modified: 2010-03-05T08:20:01Z source: APNIC route: 182.112.0.0/12 descr: China Unicom Henan Province Network country: CN origin: AS4837 mnt-by: MAINT-CNCGROUP-RR last-modified: 2010-03-02T01:06:01Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 1 month ago
Appeared in 6 threat reports