IOC Radar
IPMediumSignal 43/100

220.133.202.6

Location
Taiwan, Province of ChinaTaiwan, Province of China
New Taipei City, New Taipei City
ASN
AS3462
Chunghwa Telecom Co. Ltd.
First Seen
Jan 13, 2023
Last Seen
Mar 31, 2026
Jan 13
First Seen
1246d ago
Mar 31
Last Seen
73d ago
16
Reports
source reports
43%
Confidence
medium
Found in 16 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
43%
Signal Score
43 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

40 techniques

Network Information

CountryTWTaiwan, Province of China
RegionNew Taipei City, New Taipei City
ASNAS3462
OrganizationChunghwa Telecom Co. Ltd.

Feed Intelligence Summary

16 reports43% confidence
16
Source reports
43%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningasiaattackauto-generated securitybad reputationbotnetbotnet activitybrute forcebrute force attackcisco devicecommand and controlcommunication protocolcowrie honeypotcredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposureddosddos attacksdecoy systemdenial of servicedevice managementdistributed attacksenterprise networkingexploitation activityftpftp brute forcehttp brute forceidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinitial accessinjection activityinternet of thingsintrusion detectioniot botnetiot securityiot/ics attackkazakhstankaznetmalicious activitymalicious softwaremalwaremanualmirai botnetnetworknetwork attacksnetwork infrastructurenetwork probingnetwork protocolnetwork scanningnetwork securitynetwork traffic analysispassword attacksphishingphishing attackpossible botnet activitypossible reconnaissance activityprocess injectionprotocol exploitationreconnaissanceremote accessremote servicesresearchedscanscannersecurity policysftp attacksmtp brute forcesocial engineeringssh attackssh monitoringt1018t1021t1021.001t1040t1041t1046t1053t1055t1059t1059.004t1071.001t1076t1078t1083t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.001t1499.002t1499.003t1563t1565t1566t1566.001t1566.002t1566.003t1583t1583.001t1583.002t1587.001t1590.001t1595t1595.001t1595.002t1595.003taiwantaiwan, province of chinatcp protocoltcp/23telecommunicationstelnet threatthreat actorthreat intelligencethreat preventiontor nodetwunauthorized access attemptvulnerability scan

Activity Timeline

1 total obs
Mar 31Mar 31

Threat Activity Heatmap

· Peak: 2026-03-31
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), an IPv4 address, signals a significant potential threat to organizational security. With a threat score of 42.837 and its presence across numerous reputable threat intelligence feeds, this IP address is actively associated with malicious or suspicious network activities. The observed activities indicate reconnaissance, brute-force attempts, and potential exploitation of services, which could lead to unauthorized access, data exfiltration, or further compromise…

Threat ScoreMedium Risk
43
SIGNAL
Signal Score
43%
Confidence
16
Reports
First seenJan 13, 2023
Last seenMar 31, 2026
GeolocationTW
CountryTaiwan, Province of China
LocationNew Taipei City, New Taipei City
ASNAS3462
OrgChunghwa Telecom Co. Ltd.
Coords25.0693, 121.4626

VirusTotal

Not checked

WHOIS

description
Information from proprietary sensors in the KazNET
raw
inetnum: 220.129.0.0 - 220.143.255.255 netname: HINET-NET descr: CHTD, Chunghwa Telecom Co.,Ltd. descr: Data-Bldg.6F, No.21, Sec.1, Hsin-Yi Rd. descr: Taipei Taiwan 100 country: TW admin-c: HN27-AP tech-c: HN28-AP abuse-c: AT939-AP status: ALLOCATED PORTABLE mnt-by: MAINT-TW-TWNIC mnt-irt: IRT-TWNIC-AP last-modified: 2021-11-04T00:49:10Z source: APNIC irt: IRT-TWNIC-AP address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan e-mail: [email protected] abuse-mailbox: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP auth: # Filtered remarks: Please note that TWNIC is not an ISP and is not empowered remarks: to investigate complaints of network abuse. remarks: [email protected] is invalid mnt-by: MAINT-TW-TWNIC last-modified: 2025-02-21T07:05:51Z source: APNIC role: ABUSE TWNICAP country: ZZ address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan phone: +000000000 e-mail: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP nic-hdl: AT939-AP remarks: Generated from irt object IRT-TWNIC-AP remarks: [email protected] is invalid abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-02-21T07:06:08Z source: APNIC person: HINET Network-Adm address: CHTD, Chunghwa Telecom Co., Ltd. address: No. 21, Sec. 21, Hsin-Yi Rd., address: Taipei Taiwan 100 country: TW phone: +886 2 2322 3495 phone: +886 2 2322 3442 phone: +886 2 2344 3007 fax-no: +886 2 2344 2513 fax-no: +886 2 2395 5671 e-mail: [email protected] nic-hdl: HN27-AP remarks: same as TWNIC nic-handle HN184-TW mnt-by: MAINT-TW-TWNIC last-modified: 2011-08-22T06:04:01Z source: APNIC person: HINET Network-Center address: CHTD, Chunghwa Telecom Co., Ltd. address: Data-Bldg. 6F, No. 21, Sec. 21, Hsin-Yi Rd., address: Taipei Taiwan 100 country: TW phone: +886 2 2322 3495 phone: +886 2 2322 3442 phone: +886 2 2344 3007 fax-no: +886 2 2344 2513 fax-no: +886 2 2395 5671 e-mail: [email protected] nic-hdl: HN28-AP remarks: same as TWNIC nic-handle HN185-TW mnt-by: MAINT-TW-TWNIC last-modified: 2008-09-04T07:29:17Z source: APNIC inetnum: 220.133.0.0 - 220.133.255.255 netname: HINET-NET descr: Chunghwa Telecom Co.,Ltd. descr: No.21-3, Sec. 1, Xinyi Rd., Taipei 10048, Taiwan, R.O.C. descr: Taipei Taiwan country: TW admin-c: HN184-TW tech-c: HN184-TW mnt-by: MAINT-TW-TWNIC changed: [email protected] 20030610 status: ASSIGNED NON-PORTABLE remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC person: HINET Network-Adm address: Changhua Telecom Co., Ltd. address: No. 21, Sec. 21, Hsin-Yi Rd. address: Taipei Taiwan country: TW phone: +886-2-2322-3495 fax-no: +886-2-2344-2513 e-mail: [email protected] nic-hdl: HN184-TW changed: [email protected] 20130307 remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 years ago · Last seen 2 months ago
Appeared in 16 threat reports