IOC Radar
IPMediumSignal 29/100

223.8.201.52

Location
ChinaChina
Liuxiang, SX
ASN
AS4134
Chinanet SX
First Seen
Jan 17, 2025
Last Seen
Apr 7, 2026
Jan 17
First Seen
510d ago
Apr 7
Last Seen
65d ago
13
Reports
source reports
29%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
29%
Signal Score
29 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

30 techniques

Network Information

CountryCNChina
RegionLiuxiang, SX
ASNAS4134
OrganizationChinanet SX

Feed Intelligence Summary

13 reports29% confidence
13
Source reports
29%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningaptasiabad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptchinacncommand and controlcommunication protocolcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosddos attacksdecoy systemdistributed attackselfexecutable fileexploitation activityhajimeidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activityinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attackmalicious ipmalicious network activitymalicious softwaremalwaremanualmiraimirai botnetnetworknetwork attacksnetwork intrusionnetwork probingnetwork scanningnetwork securitynetwork service scanningpassword attacksphishingphishing attackprocess injectionprotocol exploitationreconnaissanceresearchedscanscannersecurity policyservice scansocial engineeringsurface webt1021.002t1040t1046t1055t1056.001t1059.001t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1590.001t1595t1595.001t1595.002t1595.003tcptcp protocoltelecommunicationstelnettelnet threatthreat actorthreat intelligencethreat preventiontor node

Activity Timeline

1 total obs
Apr 7Apr 7

Threat Activity Heatmap

· Peak: 2026-04-07
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
29
SIGNAL
Signal Score
29%
Confidence
13
Reports
First seenJan 17, 2025
Last seenApr 7, 2026
GeolocationCN
CountryChina
LocationLiuxiang, SX
ASNAS4134
OrgChinanet SX
Coords35.8599, 113.0546

VirusTotal

Not checked

WHOIS

description
Scans hitting the server at TCP port 23 Telnet. Same IP should not appear more than once in 96 hours in our lists S3#.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 13 threat reports