IOC Radar
IPHighVerifiedSignal 59/100

218.201.94.128

Location
ChinaChina
Guangzhou, Guangdong
ASN
AS9808
China Mobile Communications Corporation
First Seen
Jan 31, 2026
Last Seen
May 29, 2026
Jan 31
First Seen
134d ago
May 29
Last Seen
16d ago
5
Reports
source reports
59%
Confidence
high
Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
59%
Signal Score
59 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

7 techniques

Network Information

CountryCNChina
RegionGuangzhou, Guangdong
ASNAS9808
OrganizationChina Mobile Communications Corporation

Feed Intelligence Summary

5 reports59% confidence
5
Source reports
59%
Confidence score
Category tags
abuseactive scanactive scanningasiabad reputationbrute forcebrute force attackbrute-forcechinacncredential accesscredential stuffingexploitation activityhackingidentity & access exploitationindicatorinjection activitynetworkpassword attacksreconnaissanceresearchedscannersql injectionssh attackt1110.001t1110.002t1110.003t1110.004t1595.001t1595.002t1595.003targeting database

Activity Timeline

1 total obs
May 29May 29

Threat Activity Heatmap

· Peak: 2026-05-29
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
59
SIGNAL
Signal Score
59%
Confidence
5
Reports
First seenJan 31, 2026
Last seenMay 29, 2026
Verified IOC
GeolocationCN
CountryChina
LocationGuangzhou, Guangdong
ASNAS9808
OrgChina Mobile Communications Corporation
Coords23.1317, 113.2660

VirusTotal

Not checked

WHOIS

raw
inetnum: 218.201.0.0 - 218.201.95.255 netname: CMNET-chongqing descr: China Mobile Communications Corporation - chongqing country: CN admin-c: mc285-AP tech-c: mc285-AP mnt-by: MAINT-CN-CMCC mnt-lower: MAINT-CN-CMCC-CHONGQING remarks: ------------------------------ remarks: Please send abuse e-mail to remarks: [email protected] remarks: Please send probe e-mail to remarks: [email protected] remarks: ------------------------------- status: ALLOCATED NON-PORTABLE last-modified: 2008-09-04T06:59:24Z source: APNIC person: ming chen nic-hdl: MC285-AP e-mail: [email protected] address: NO.300, L building, 6th street, keyuan, high-tech, industrial zone, Chongqing,400041 phone: +86-13983247186 fax-no: +86-13594249044 country: cn mnt-by: MAINT-NEW last-modified: 2009-10-19T03:09:41Z source: APNIC route: 218.200.0.0/14 descr: China Mobile communications corporation origin: AS9808 mnt-by: MAINT-CN-CMCC last-modified: 2012-02-15T02:36:16Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 4 months ago · Last seen 16 days ago
Appeared in 5 threat reports