IOC Radar
IPMediumSignal 100/100

220.132.171.103

Location
Taiwan, Province of ChinaTaiwan, Province of China
Taichung, TXG
ASN
AS3462
Chunghwa Telecom Co. Ltd.
First Seen
Jan 13, 2023
Last Seen
Feb 16, 2026
Jan 13
First Seen
1245d ago
Feb 16
Last Seen
114d ago
20
Reports
source reports
99%
Confidence
medium
1/91
VirusTotal
detections
Found in 20 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

44 techniques

Network Information

CountryTWTaiwan, Province of China
RegionTaichung, TXG
ASNAS3462
OrganizationChunghwa Telecom Co. Ltd.

Feed Intelligence Summary

20 reports99% confidence
20
Source reports
99%
Confidence score
Category tags
abuseaccess controlactive scanningadbhoney activityadbhoney honeypotaerospace & defenseapplication layer protocolasiaattackauto-generated securityautomotive manufacturingbotnetbrute forcebrute force attackbrute force attemptcisco devicecivil servicescommand and controlcommunication protocolconpot activityconpot honeypotconpot ics attackcowrie activitycowrie honeypotcowrie ssh attackcredential accesscredential harvestingcredential stuffingctacyber securitydata exfiltrationdatabase exploitation attemptsdatabase securityddos attackddos attacksdecoy systemdefensedefense contractingdefense logisticsdefense systemsdefense technologydevice managementdionaea activitydionaea capturedionaea honeypotdionaea malware detectiondistributed attackselectronics manufacturingenterprise networkingftp brute forcegovernment technologyhttp scannerics securityindicatorindustrial automationindustrial control systemsindustrial iotindustrial productioninfrastructure acquisitionreconnaissanceinitial accessinternet of thingsintrusion detectioniociot attackiot botnetiot/ics attackkfsensor honeypotloginlogin brute-forcingmailoney activitymailoney email spoofingmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware detectionmanualmanufacturing technologymilitary operationsmirai botnetnational securitynetworknetwork attacksnetwork infrastructurenetwork intrusion attemptsnetwork scanningnetwork securitynetwork service scanningnextraynorth americaos credential dumpingpassword attacksphishingphishing attackphishing trapprocess injectionprocess manufacturingprotocol exploitationpublic administrationpublic infrastructurepublic policyquality controlreconnaissanceredis exploitationredis honeypotregulatory agenciesremote accessremote servicesresearchedresource hijackingscanscannerscripting attackssecurity operationssecurity policysentrypeer activitysentrypeer botnetsentrypeer p2p attacksftp activitysftp attacksftp attemptsftp scanningsip brute forcesip scanningsocial engineeringssh attackssh monitoringsupply chain managementsystem discoveryt1021t1021.001t1021.002t1040t1041t1046t1053t1055t1059t1059.007t1071.001t1076t1078t1078.001t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1187t1189t1190t1203t1204.002t1486t1496t1499.001t1499.002t1499.003t1555t1563t1565t1566.001t1566.002t1566.003t1566.004t1587.001t1590.001t1592t1595t1595.001t1595.002t1595.003taiwantaiwan, province of chinatannertanner activitytanner web attacktcp protocoltcp/23tcp/80telecommunicationstelnet threatthreat actorthreat intelligencethreat preventiontwunited statesvoipvoip attackweb attackweb exploitationweb traffic

Activity Timeline

1 total obs
Feb 16Feb 16

Threat Activity Heatmap

· Peak: 2026-02-16
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
20
Reports
First seenJan 13, 2023
Last seenFeb 16, 2026
GeolocationTW
CountryTaiwan, Province of China
LocationTaichung, TXG
ASNAS3462
OrgChunghwa Telecom Co. Ltd.
Coords24.1440, 120.6844

VirusTotal

1/ 91vendors flagged
1% detection rateJun 8, 2026

WHOIS

description
Honeypot
raw
inetnum: 220.129.0.0 - 220.143.255.255 netname: HINET-NET descr: CHTD, Chunghwa Telecom Co.,Ltd. descr: Data-Bldg.6F, No.21, Sec.1, Hsin-Yi Rd. descr: Taipei Taiwan 100 country: TW admin-c: HN27-AP tech-c: HN28-AP abuse-c: AT939-AP status: ALLOCATED PORTABLE mnt-by: MAINT-TW-TWNIC mnt-irt: IRT-TWNIC-AP last-modified: 2021-11-04T00:49:10Z source: APNIC irt: IRT-TWNIC-AP address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan e-mail: [email protected] abuse-mailbox: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP auth: # Filtered remarks: Please note that TWNIC is not an ISP and is not empowered remarks: to investigate complaints of network abuse. remarks: [email protected] was validated on 2025-05-23 mnt-by: MAINT-TW-TWNIC last-modified: 2025-05-23T00:01:36Z source: APNIC role: ABUSE TWNICAP country: ZZ address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan phone: +000000000 e-mail: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP nic-hdl: AT939-AP remarks: Generated from irt object IRT-TWNIC-AP remarks: [email protected] was validated on 2025-05-23 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-05-23T00:02:10Z source: APNIC person: HINET Network-Adm address: CHTD, Chunghwa Telecom Co., Ltd. address: No. 21, Sec. 21, Hsin-Yi Rd., address: Taipei Taiwan 100 country: TW phone: +886 2 2322 3495 phone: +886 2 2322 3442 phone: +886 2 2344 3007 fax-no: +886 2 2344 2513 fax-no: +886 2 2395 5671 e-mail: [email protected] nic-hdl: HN27-AP remarks: same as TWNIC nic-handle HN184-TW mnt-by: MAINT-TW-TWNIC last-modified: 2011-08-22T06:04:01Z source: APNIC person: HINET Network-Center address: CHTD, Chunghwa Telecom Co., Ltd. address: Data-Bldg. 6F, No. 21, Sec. 21, Hsin-Yi Rd., address: Taipei Taiwan 100 country: TW phone: +886 2 2322 3495 phone: +886 2 2322 3442 phone: +886 2 2344 3007 fax-no: +886 2 2344 2513 fax-no: +886 2 2395 5671 e-mail: [email protected] nic-hdl: HN28-AP remarks: same as TWNIC nic-handle HN185-TW mnt-by: MAINT-TW-TWNIC last-modified: 2008-09-04T07:29:17Z source: APNIC inetnum: 220.132.0.0 - 220.132.255.255 netname: HINET-NET descr: Chunghwa Telecom Co.,Ltd. descr: No.21-3, Sec. 1, Xinyi Rd., Taipei 10048, Taiwan, R.O.C. descr: Taipei Taiwan country: TW admin-c: HN184-TW tech-c: HN184-TW mnt-by: MAINT-TW-TWNIC changed: [email protected] 20030610 status: ASSIGNED NON-PORTABLE remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC person: HINET Network-Adm address: Changhua Telecom Co., Ltd. address: No. 21, Sec. 21, Hsin-Yi Rd. address: Taipei Taiwan country: TW phone: +886-2-2322-3495 fax-no: +886-2-2344-2513 e-mail: [email protected] nic-hdl: HN184-TW changed: [email protected] 20130307 remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC
references
https://purplesynapz.com/, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 years ago · Last seen 3 months ago
Appeared in 20 threat reports