IOC Radar
IPMediumSignal 50/100

218.98.160.118

Location
ChinaChina
Guoyuan Xincun, Tianjin
ASN
AS4837
Tianjin GiantDC Data Technology Co.
First Seen
Jan 6, 2025
Last Seen
Jun 14, 2026
Jan 6
First Seen
533d ago
Jun 14
Last Seen
9d ago
22
Reports
source reports
50%
Confidence
medium
Found in 22 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
50%
Signal Score
50 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

32 techniques

Network Information

CountryCNChina
RegionGuoyuan Xincun, Tianjin
ASNAS4837
OrganizationTianjin GiantDC Data Technology Co.

Feed Intelligence Summary

22 reports50% confidence
22
Source reports
50%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningasiaauthentication failureauto-generated securitybad reputationbotnetbotnet activitybrute forcebrute force attackchinacncommand and controlcredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposuredistributed attackseuropeexploitation activityfail2ban alertftp brute forcehttp brute forceidentity & access exploitationimapimap attackindicatorinfrastructure acquisitionreconnaissanceinjection activityintrusion detectionlogin attackmalicious softwaremalwaremanualnetworknetwork scanningnetwork securitypassword attacksphishingphishing attackprocess injectionransomwarereconnaissanceresearchedscannerscanning activitysecurity operationssecurity policysmtpsmtp attackersocial engineeringsocradar honeypotssh attackt1021t1021.001t1021.002t1021.006t1040t1055t1059t1071.001t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1588t1588.002t1590.001t1595t1595.001t1595.002t1595.003telecommunicationsthreat intelligencethreat preventionunauthorized access attemptsunited kingdom

Activity Timeline

1 total obs
Jun 14Jun 14

Threat Activity Heatmap

· Peak: 2026-06-14
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
50
SIGNAL
Signal Score
50%
Confidence
22
Reports
First seenJan 6, 2025
Last seenJun 14, 2026
GeolocationCN
CountryChina
LocationGuoyuan Xincun, Tianjin
ASNAS4837
OrgTianjin GiantDC Data Technology Co.
Coords34.7732, 113.7220

VirusTotal

Not checked

WHOIS

description
Banned by Fail2Ban [sshd]
raw
inetnum: 218.98.160.0 - 218.98.191.255 netname: GIANTDC descr: Tianjin GiantDC Data Technology Co.Ltd country: CN admin-c: XY3510-AP tech-c: XY3510-AP abuse-c: AC1601-AP status: ALLOCATED PORTABLE mnt-by: MAINT-CNNIC-AP mnt-irt: IRT-GIANTDC-CN last-modified: 2023-11-28T00:57:28Z source: APNIC irt: IRT-GIANTDC-CN address: No.609, Jinyu Road, Beichen District, Tianjin e-mail: [email protected] abuse-mailbox: [email protected] auth: # Filtered admin-c: XY3510-AP tech-c: XY3510-AP mnt-by: MAINT-CNNIC-AP last-modified: 2021-08-17T00:45:41Z source: APNIC role: ABUSE CNNICCN country: ZZ address: Beijing, China phone: +000000000 e-mail: [email protected] admin-c: IP50-AP tech-c: IP50-AP nic-hdl: AC1601-AP remarks: Generated from irt object IRT-CNNIC-CN abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2024-07-30T11:55:46Z source: APNIC person: Xia yu address: No.609, Jinyu Road, Beichen District, Tianjin country: CN phone: +86-18622816536 e-mail: [email protected] nic-hdl: XY3510-AP mnt-by: MAINT-CNNIC-AP last-modified: 2021-08-17T00:40:13Z source: APNIC
references
https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 9 days ago
Appeared in 22 threat reports