IPMediumSignal 40/100
220.181.167.210
Location
ChinaBeijing, Beijing
ASN
AS23724
IDC, China Telecommunications Corporation
First Seen
Mar 17, 2025
Last Seen
May 7, 2026
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
40%
Signal Score
40 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryChina
ChinaRegionBeijing, Beijing
ASNAS23724
OrganizationIDC, China Telecommunications Corporation
Feed Intelligence Summary
11 reports40% confidence
11
Source reports
40%
Confidence score
Category tags
abuseactive scanagent teslaapi contactaptasiaasyncratattackbad reputationbeaconbeaconing activitybianlianbotnetbotnet activitybrute forcebrute_ratel_c4c&cc2c2 communicationchinacncobaltcobalt strikecobaltstrikecommand & controlcommand and controlcompromised systemdata encryptiondata exfiltrationdata store exposuredeimosdistributed attacksencryptionexploitation activityextortionfeedfindhak5_cloud_c2havochookbotindicatorindicators of compromiseinjection activityiociocslateral movementlinkedin pagemalicious activitymalicious softwaremalwaremalware distributionmythicnanocore ratnetsupportratnetworknetwork traffic analysispayload deliverypegasuspost-exploitationpost-exploitation activityprocess injectionprotectqakbotransomwareransomware feedratremcos trojanremote accessremote access trojanremote servicesresearchedreverse_sshsecurity operationssentinel mispsliverstrongsupershellsystem disruptiont1005t1016t1021t1021.001t1027t1041t1047t1049t1053t1055t1059t1059.001t1059.003t1068t1071t1071.001t1083t1095t1105t1129t1134t1204t1486t1490t1496t1499.002t1499.003t1543t1565t1566t1568t1569.002t1573.001t1574threat actorthreat feedthreat intelligencetor nodevulnerability scan
Activity Timeline
May 7May 7
Threat Activity Heatmap
· Peak: 2026-05-07LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
40
SIGNAL
Signal Score
40%
Confidence
11
Reports
First seenMar 17, 2025
Last seenMay 7, 2026
GeolocationCN
CountryChina
LocationBeijing, Beijing
ASNAS23724
OrgIDC, China Telecommunications Corporation
Coords34.7732, 113.7220
VirusTotal
Not checked
WHOIS
- description
- CC=CN ASN=AS23724 idc china telecommunications corporation
- raw
- inetnum: 220.181.0.0 - 220.181.255.255 netname: CHINANET-IDC-BJ country: CN descr: CHINANET Beijing province network descr: China Telecom descr: No.31,jingrong street descr: Beijing 100032 admin-c: CH93-AP tech-c: HC55-AP remarks: hostmaster is not for spam complaint, remarks: please send spam complaint to [email protected] mnt-by: MAINT-CHINANET mnt-lower: MAINT-CHINATELECOM-BJ status: ALLOCATED NON-PORTABLE last-modified: 2008-09-04T06:56:04Z source: APNIC person: Chinanet Hostmaster nic-hdl: CH93-AP e-mail: [email protected] address: No.31 ,jingrong street,beijing address: 100032 phone: +86-10-58501724 fax-no: +86-10-58501724 country: CN mnt-by: MAINT-CHINANET last-modified: 2022-02-28T06:53:44Z source: APNIC person: Hostmaster of Beijing Telecom corporation CHINA TELECOM nic-hdl: HC55-AP e-mail: [email protected] address: Beijing Telecom address: No. 107 XiDan Beidajie, Xicheng District Beijing phone: +86-010-58503461 fax-no: +86-010-58503054 country: cn mnt-by: MAINT-CHINATELECOM-BJ last-modified: 2008-09-04T07:29:39Z source: APNIC
- references
- https://precisionsec.com/threat-intelligence-feeds/cobaltstrike/, https://threatfox.abuse.ch/export/csv/recent/, https://x.com/drb_ra/status/1914497079704953224, https://x.com/drb_ra/status/1914571421453344965, https://x.com/drb_ra/status/1914571439140659404, https://x.com/drb_ra/status/1914571457218159007, https://x.com/drb_ra/status/1914571476142801173, https://x.com/drb_ra/status/1914571688433353169, https://x.com/drb_ra/status/1914571702547235014, https://x.com/drb_ra/status/1914571712374489436, https://x.com/drb_ra/status/1914571724332412993, https://x.com/drb_ra/status/1914571735166337235, https://x.com/drb_ra/status/1914571755999343058, https://x.com/drb_ra/status/1914571776228577485, https://x.com/drb_ra/status/1914571787343388852, https://x.com/drb_ra/status/1914571801704771616, https://x.com/drb_ra/status/1914571810487570586, https://x.com/drb_ra/status/1914571870310969597, https://x.com/drb_ra/status/1914571956155736507, https://x.com/drb_ra/status/1914571969032319261, https://x.com/drb_ra/status/1914571993078178254, https://x.com/drb_ra/status/1914572011222827201, https://x.com/drb_ra/status/1914572029937803499, https://x.com/drb_ra/status/1914572048845730198, https://x.com/drb_ra/status/1914572068609310797, https://x.com/drb_ra/status/1914572088460894519, https://x.com/drb_ra/status/1914572107628814774, https://x.com/drb_ra/status/1914572127186931766, https://x.com/drb_ra/status/1914572643518337454, https://x.com/drb_ra/status/1914636886024323175, https://x.com/drb_ra/status/1914636927103279166, https://x.com/drb_ra/status/1914636946904670457, https://x.com/drb_ra/status/1914636966185812326, https://x.com/drb_ra/status/1914636985689350372, https://x.com/drb_ra/status/1914637005897560098, https://x.com/drb_ra/status/1914637026348945437, https://x.com/drb_ra/status/1914637046984868302, https://x.com/drb_ra/status/1914637068442943593, https://x.com/drb_ra/status/1914637089703964797, https://x.com/drb_ra/status/1914637111883420158, https://x.com/drb_ra/status/1914637136311050475, https://x.com/drb_ra/status/1914752441884561689, https://x.com/drb_ra/status/1914752461551620277, https://x.com/drb_ra/status/1914752480778359186, https://x.com/drb_ra/status/1914752500844183916, https://x.com/drb_ra/status/1914752521010033009, https://x.com/drb_ra/status/1914752541830660445, https://x.com/drb_ra/status/1914752564664656140, https://x.com/drb_ra/status/1914753081687806125, https://x.com/drb_ra/status/1914753100591550701, https://x.com/drb_ra/status/1914753118769660375, https://x.com/drb_ra/status/1914753137346302430, https://x.com/drb_ra/status/1914753156912718312, https://x.com/drb_ra/status/1914753176634335679, https://x.com/drb_ra/status/1914753196532047935, https://x.com/drb_ra/status/1914753219747528756, https://x.com/drb_ra/status/1914753239678939642, https://x.com/drb_ra/status/1914753259971207587, https://x.com/drb_ra/status/1914753280850149624, https://x.com/drb_ra/status/1914753302039851376, https://x.com/drb_ra/status/1914753323506245859, https://x.com/drb_ra/status/1914753345375379578, https://x.com/drb_ra/status/1914753367449936196, https://x.com/drb_ra/status/1914753390132814291, https://x.com/drb_ra/status/1914753412358660369, https://x.com/drb_ra/status/1914753433925452232, https://x.com/drb_ra/status/1914753453785571834, https://x.com/drb_ra/status/1914753472907329843, https://x.com/drb_ra/status/1914753492398334367, https://x.com/drb_ra/status/1914753512266739728, https://x.com/drb_ra/status/1914753532919759290, https://x.com/drb_ra/status/1914753553366663617, https://x.com/drb_ra/status/1914754070159540532, https://x.com/drb_ra/status/1914754090854216131, https://x.com/drb_ra/status/1914754111502954705, https://x.com/drb_ra/status/1914754130402304331, https://x.com/drb_ra/status/1914754150698520608, https://x.com/drb_ra/status/1914772363377312120, https://x.com/drb_ra/status/1914789059446047085, https://x.com/drb_ra/status/1906533922277646519, https://x.com/drb_ra/status/1906594092466778459, https://x.com/drb_ra/status/1906594110690988511, https://x.com/drb_ra/status/1906594128630091960, https://x.com/drb_ra/status/1906594147164631256, https://x.com/drb_ra/status/1906594166588534842, https://x.com/drb_ra/status/1906598726803550245, https://x.com/drb_ra/status/1906598756620873749, https://x.com/drb_ra/status/1906598765714166182, https://x.com/drb_ra/status/1906598773721113079, https://x.com/drb_ra/status/1906599244464570400, https://x.com/drb_ra/status/1906599264228106748, https://x.com/drb_ra/status/1906599281336721709, https://x.com/drb_ra/status/1906599299133112577, https://x.com/drb_ra/status/1906599316946362685, https://x.com/drb_ra/status/1906599335019556976, https://x.com/drb_ra/status/1906599353633890320, https://x.com/drb_ra/status/1906599373011595463, https://x.com/drb_ra/status/1906599392385073199, https://x.com/drb_ra/status/1906599412219990131, https://x.com/drb_ra/status/1906599431807369639, https://x.com/drb_ra/status/1906599451432477172, https://x.com/drb_ra/status/1906599470847897924, https://x.com/drb_ra/status/1906599490506703138, https://x.com/drb_ra/status/1906600008549364133, https://x.com/drb_ra/status/1906600026584855018, https://x.com/drb_ra/status/1906600044255469583, https://x.com/drb_ra/status/1906600061590446120, https://x.com/drb_ra/status/1906600079588196858, https://x.com/drb_ra/status/1906600097573421164, https://x.com/drb_ra/status/1906600115206336825, https://x.com/drb_ra/status/1906600133124387098, https://x.com/drb_ra/status/1906600151059202093, https://x.com/drb_ra/status/1906600169686081536, https://x.com/drb_ra/status/1906600189370016179, https://x.com/drb_ra/status/1906600206608601168, https://x.com/drb_ra/status/1906600226657382526, https://x.com/drb_ra/status/1906600246425063758, https://x.com/drb_ra/status/1906600266595737759, https://x.com/drb_ra/status/1906600286254211371, https://x.com/drb_ra/status/1906600306953064872, https://x.com/drb_ra/status/1906600327345783046, https://x.com/drb_ra/status/1906600349072293976, https://x.com/drb_ra/status/1906600369293074758, https://x.com/drb_ra/status/1906600389807321359, https://x.com/drb_ra/status/1906600407184314799, https://x.com/drb_ra/status/1906600424787894439, https://x.com/drb_ra/status/1906600442349420870, https://x.com/drb_ra/status/1906600460871463044, https://x.com/drb_ra/status/1906600479582273567, https://x.com/drb_ra/status/1906618693246738448, https://x.com/drb_ra/status/1906618722795561290, https://x.com/drb_ra/status/1906659693415506253, https://x.com/drb_ra/status/1906659712998781110, https://x.com/drb_ra/status/1906659732615569429, https://x.com/drb_ra/status/1906659752618099118, https://x.com/drb_ra/status/1906659771173761368, https://x.com/drb_ra/status/1906659791377748396, https://x.com/drb_ra/status/1906659811527184715, https://x.com/drb_ra/status/1906671468739543478, https://x.com/drb_ra/status/1906671486787612841, https://x.com/drb_ra/status/1900859165385294110, https://x.com/drb_ra/status/1906780184549728615, https://x.com/drb_ra/status/1906780204313313688, https://x.com/drb_ra/status/1906780221510152521, https://x.com/drb_ra/status/1906780239297991126, https://x.com/drb_ra/status/1906780256461058288, https://x.com/drb_ra/status/1906780273829687716, https://x.com/drb_ra/status/1906780291315663161, https://x.com/drb_ra/status/1906780309833883786, https://x.com/drb_ra/status/1906780826936750440, https://x.com/drb_ra/status/1906780845068923340, https://x.com/drb_ra/status/1906780862303125958, https://x.com/drb_ra/status/1906780878795124994, https://x.com/drb_ra/status/1906780896276930811, https://x.com/drb_ra/status/1906780914824151299, https://x.com/drb_ra/status/1906780933912457636, https://x.com/drb_ra/status/1906780952392564917, https://x.com/drb_ra/status/1906780972751917171, https://x.com/drb_ra/status/1906780991814869014, https://x.com/drb_ra/status/1906781011427422469, https://x.com/drb_ra/status/1906781032340467840, https://x.com/drb_ra/status/1906781052632268986, https://x.com/drb_ra/status/1906781073284939972, https://x.com/drb_ra/status/1906781094659117521, https://x.com/drb_ra/status/1906781139119018115, https://x.com/drb_ra/status/1906781161520611434, https://x.com/drb_ra/status/1906781184861900877, https://x.com/drb_ra/status/1906781206135349473, https://x.com/drb_ra/status/1906781225815314879, https://x.com/drb_ra/status/1906822688116486500, https://x.com/drb_ra/status/1906822707838058568, https://x.com/drb_ra/status/1906822725429080562, https://x.com/drb_ra/status/1906823243450736889, https://x.com/drb_ra/status/1906823263197761868, https://x.com/drb_ra/status/1906823279869882602, https://x.com/drb_ra/status/1906839975699820601, https://x.com/drb_ra/status/1906839993407909995
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 1 month ago
Appeared in 11 threat reports