IOC Radar
IPMediumSignal 52/100

27.125.250.144

Location
MalaysiaMalaysia
Kuala Lumpur, 14
ASN
AS38466
U Mobile Sdn Bhd
First Seen
Nov 26, 2025
Last Seen
Apr 24, 2026
Nov 26
First Seen
199d ago
Apr 24
Last Seen
50d ago
8
Reports
source reports
52%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
52%
Signal Score
52 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

3 techniques

Network Information

CountryMYMalaysia
RegionKuala Lumpur, 14
ASNAS38466
OrganizationU Mobile Sdn Bhd

Feed Intelligence Summary

8 reports52% confidence
8
Source reports
52%
Confidence score
Category tags
active scanactive scanningaptasiaddosddos attackexploitation activityimapimap attackindicatormalaysianetworkreconnaissanceresearchedscannersmtpsmtp attackert1595.001t1595.002t1595.003threat actortor node

Activity Timeline

1 total obs
Apr 24Apr 24

Threat Activity Heatmap

· Peak: 2026-04-24
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
52
SIGNAL
Signal Score
52%
Confidence
8
Reports
First seenNov 26, 2025
Last seenApr 24, 2026
GeolocationMY
CountryMalaysia
LocationKuala Lumpur, 14
ASNAS38466
OrgU Mobile Sdn Bhd
Coords3.1191, 101.6747

VirusTotal

Not checked

WHOIS

description
The following is the full list of names given to Vye32GsS2g38eKhmaKrLdDjgrnf2YBT4/FGx8SNCa4txePA
raw
inetnum: 27.125.250.0 - 27.125.250.255 netname: SUBS-UMOBILE descr: UMOBILE country: MY admin-c: WL3119-AP tech-c: WL3119-AP abuse-c: AU196-AP status: ASSIGNED NON-PORTABLE mnt-by: MAINT-MY-UMOBILE mnt-irt: IRT-UMOBILE-MY last-modified: 2021-08-13T06:00:12Z language: en geoloc: 3.1422 101.7106 source: APNIC irt: IRT-UMOBILE-MY address: Lot 11.01, Level 11, East Wing address: Berjaya Times Square address: 1, Jalan Imbi address: 55100 Kuala Lumpur, Malaysia e-mail: [email protected] abuse-mailbox: [email protected] admin-c: WL1006-AP admin-c: CT1486-AP tech-c: WL1006-AP tech-c: CT1486-AP auth: # Filtered remarks: [email protected] was validated on 2025-11-24 remarks: [email protected] was validated on 2025-12-24 mnt-by: MAINT-MY-UMOBILE last-modified: 2026-03-31T05:32:04Z source: APNIC role: ABUSE UMOBILEMY country: ZZ address: Lot 11.01, Level 11, East Wing address: Berjaya Times Square address: 1, Jalan Imbi address: 55100 Kuala Lumpur, Malaysia phone: +000000000 e-mail: [email protected] admin-c: WL1006-AP admin-c: CT1486-AP tech-c: WL1006-AP tech-c: CT1486-AP nic-hdl: AU196-AP remarks: Generated from irt object IRT-UMOBILE-MY remarks: [email protected] was validated on 2025-11-24 remarks: [email protected] was validated on 2025-12-24 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-12-24T14:07:29Z source: APNIC role: Wilton Lee address: Lot 11.01, Level 11, East Wing country: MY phone: +60 (3) 2117-9888 e-mail: [email protected] admin-c: WL3119-AP tech-c: WL3119-AP nic-hdl: WL3119-AP notify: [email protected] mnt-by: MAINT-MY-MI3G last-modified: 2021-08-13T05:58:10Z source: APNIC route: 27.125.250.0/24 origin: AS38466 descr: U Mobile Sdn Bhd Lot 11.01, Level 11, East Wing Berjaya Times Square 1, Jalan Imbi, 55100 Kuala Lumpur, Malaysia mnt-by: MAINT-MY-UMOBILE last-modified: 2020-06-23T06:36:03Z source: APNIC
references
https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 6 months ago · Last seen 1 month ago
Appeared in 8 threat reports