IPMediumSignal 69/100
182.242.169.110
Location
ChinaKunming, Yunnan
ASN
AS4134
Chinanet YN
First Seen
Sep 22, 2023
Last Seen
May 30, 2026
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
69%
Signal Score
69 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryChina
ChinaRegionKunming, Yunnan
ASNAS4134
OrganizationChinanet YN
Feed Intelligence Summary
8 reports69% confidence
8
Source reports
69%
Confidence score
Category tags
active scanactive scanningasiabrute forcebrute force attackbrute force attackerbrute-forcechinacncredential accesscredential stuffingexploitexploitation activityexploited hosthackingidentity & access exploitationindicatorinjection activitynetworkpassword attacksreconnaissanceresearchedscannersql injectiont1110.001t1110.002t1110.003t1110.004t1595.001t1595.002t1595.003targeting databasetpotvulnerability scanvulnerability-exploitationweb app attack
Activity Timeline
May 30May 30
Threat Activity Heatmap
· Peak: 2026-05-30LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
69
SIGNAL
Signal Score
69%
Confidence
8
Reports
First seenSep 22, 2023
Last seenMay 30, 2026
GeolocationCN
CountryChina
LocationKunming, Yunnan
ASNAS4134
OrgChinanet YN
Coords25.0453, 102.7100
VirusTotal
Not checked
WHOIS
- description
- Score: 60/100. Labels: abuseipdb:brute-force, abuseipdb:exploited-host, abuseipdb:hacking, abuseipdb:moderate, abuseipdb:multi-reported, abuseipdb:port-scan. 182.242.169.110 classified as automated brute-force attacker targeting SSH/Telnet credentials (medium confidence). Origin: enriched. Listed on: AbuseIPDB (brute-force, exploited-host, hacking).
- raw
- inetnum: 182.240.0.0 - 182.247.255.255 netname: CHINANET-YN descr: CHINANET YunNan PROVINCE NETWORK descr: China Telecom descr: No.31,jingrong street descr: Beijing 100032 country: CN admin-c: ZL48-AP tech-c: ZL48-AP abuse-c: AC1573-AP status: ALLOCATED PORTABLE remarks: service provider remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-CHINANET-YN mnt-routes: MAINT-CHINANET-YN mnt-irt: IRT-CHINANET-CN last-modified: 2021-06-15T08:04:53Z source: APNIC irt: IRT-CHINANET-CN address: No.31 ,jingrong street,beijing address: 100032 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH93-AP tech-c: CH93-AP auth: # Filtered remarks: [email protected] was validated on 2025-11-13 mnt-by: MAINT-CHINANET last-modified: 2026-03-13T07:12:20Z source: APNIC role: ABUSE CHINANETCN country: ZZ address: No.31 ,jingrong street,beijing address: 100032 phone: +000000000 e-mail: [email protected] admin-c: CH93-AP tech-c: CH93-AP nic-hdl: AC1573-AP remarks: Generated from irt object IRT-CHINANET-CN remarks: [email protected] was validated on 2025-11-13 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-11-13T14:15:15Z source: APNIC person: zhiyong liu nic-hdl: ZL48-AP e-mail: [email protected] address: 136 beijin roadkunmingchina phone: +86-871-68226585 fax-no: +86-871-8221536 country: CN mnt-by: MAINT-CHINANET-YN last-modified: 2018-12-27T01:58:34Z source: APNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 15 days ago
Appeared in 8 threat reports