IOC Radar
IPMediumSignal 100/100

220.228.144.143

Location
TaiwanTaiwan
Taipei, Taiwan
ASN
AS9919
NCICNET
First Seen
Oct 15, 2024
Last Seen
Feb 26, 2026
Oct 15
First Seen
607d ago
Feb 26
Last Seen
107d ago
18
Reports
source reports
99%
Confidence
medium
5/91
VirusTotal
detections
Found in 18 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

26 techniques

Network Information

CountryTWTaiwan
RegionTaipei, Taiwan
ASNAS9919
OrganizationNCICNET

Feed Intelligence Summary

18 reports99% confidence
18
Source reports
99%
Confidence score
Category tags
abuseaccess controlactive scanningasiaasnattackbotnetbrute forcebrute force attackbrute force attemptbrute-forccommand and controlcowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdecoy systemdistributed attacksgeoipindicatorinfoinformation technologyinfrastructure acquisitionreconnaissanceit infrastructurelogin attacklogin bruteforcemalicious activitymalicious softwaremalwaremanualnetworknetwork scanningnoticepassword attackpassword attacksphishing attackprocess injectionreconnaissanceremote accessresearchedscannersecurity policysocial engineeringsocradar honeypotsoftware developmentssh attackssh monitoringt1021.004t1046t1055t1071.001t1078t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1486t1496t1499.002t1499.003t1555t1565t1566.001t1566.002t1566.003t1587.001t1590.001t1595t1595.001t1595.002t1595.003taiwantaiwan, province of chinatelecommunicationsthreat actorthreat intelligencethreat preventiontwutc+1:00

Activity Timeline

1 total obs
Feb 26Feb 26

Threat Activity Heatmap

· Peak: 2026-02-26
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
18
Reports
First seenOct 15, 2024
Last seenFeb 26, 2026
GeolocationTW
CountryTaiwan
LocationTaipei, Taiwan
ASNAS9919
OrgNCICNET
Coords25.0501, 121.5650

VirusTotal

5/ 91vendors flagged
5% detection rateJun 6, 2026

WHOIS

description
CC=TW ASN=AS9919 new century infocomm tech co. ltd. latitude=24.9389 longitude=121.5422
raw
inetnum: 220.228.0.0 - 220.229.255.255 netname: NCICNET-TW descr: New Centry InfoComm Tech. Co., Ltd. descr: 12F, No. 468, Rueguang Rd. Taipei descr: Taiwan 114 country: TW admin-c: NNA1-AP tech-c: NNA1-AP abuse-c: AT939-AP status: ALLOCATED PORTABLE mnt-by: MAINT-TW-TWNIC mnt-irt: IRT-TWNIC-AP last-modified: 2021-11-04T00:49:14Z source: APNIC irt: IRT-TWNIC-AP address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan e-mail: [email protected] abuse-mailbox: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP auth: # Filtered remarks: Please note that TWNIC is not an ISP and is not empowered remarks: to investigate complaints of network abuse. remarks: [email protected] was validated on 2025-05-23 mnt-by: MAINT-TW-TWNIC last-modified: 2025-09-03T04:09:06Z source: APNIC role: ABUSE TWNICAP country: ZZ address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan phone: +000000000 e-mail: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP nic-hdl: AT939-AP remarks: Generated from irt object IRT-TWNIC-AP remarks: [email protected] was validated on 2025-05-23 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-05-23T00:02:10Z source: APNIC role: NCIC Network Administrator address: 12F, No.468, Rueiguang Road address: Taipei country: TW phone: +886-2-7715-5128 fax-no: +886-2-7715-5299 e-mail: [email protected] admin-c: DL579-AP tech-c: JC256-AP nic-hdl: NNA1-AP remarks: The role object should be used when making remarks: changes to admin-c or tech-c handle. notify: [email protected] mnt-by: MAINT-TW-TWNIC last-modified: 2017-01-20T07:41:35Z source: APNIC
references
https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 3 months ago
Appeared in 18 threat reports