IPMediumSignal 24/100
27.222.252.114
Location
ChinaJinan, Shandong
ASN
AS4837
China Unicom Shandong Province Network
First Seen
Jan 31, 2025
Last Seen
Feb 13, 2025
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
24%
Signal Score
24 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryChina
ChinaRegionJinan, Shandong
ASNAS4837
OrganizationChina Unicom Shandong Province Network
Feed Intelligence Summary
8 reports24% confidence
8
Source reports
24%
Confidence score
Category tags
abuseactive scanactive scanningasiabad reputationbotnetbotnet activitybrute forcebrute force attackc2chinacncommand & controlcommand and controlcredential accesscredential stuffingdata exfiltrationdata store exposureddosddos attacksdistributed attacksexploitation activityidentity & access exploitationindicatorinjection activityinternet of thingsiot botnetiot securityiot/ics attackmalicious softwaremalwaremirai botnetnetworkpassword attacksprocess injectionreconnaissanceresearchedscannert1055t1071.001t1110.001t1110.002t1110.003t1110.004t1486t1496t1499.002t1499.003t1565t1595.001t1595.002t1595.003
Activity Timeline
Feb 13Feb 13
Threat Activity Heatmap
LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreLow Risk
24
SIGNAL
Signal Score
24%
Confidence
8
Reports
First seenJan 31, 2025
Last seenFeb 13, 2025
GeolocationCN
CountryChina
LocationJinan, Shandong
ASNAS4837
OrgChina Unicom Shandong Province Network
Coords36.6518, 117.1200
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 27.192.0.0 - 27.223.255.255 netname: UNICOM-SD descr: China Unicom Shandong province network descr: China Unicom country: CN admin-c: CH1302-AP tech-c: XZ14-AP abuse-c: AC1718-AP status: ALLOCATED PORTABLE remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-CNCGROUP mnt-lower: MAINT-CNCGROUP-SD mnt-routes: MAINT-CNCGROUP-RR mnt-irt: IRT-CU-CN last-modified: 2025-01-22T13:11:14Z source: APNIC irt: IRT-CU-CN address: No.21,Financial Street address: Beijing,100033 address: P.R.China e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH1302-AP tech-c: CH1302-AP auth: # Filtered remarks: [email protected] was validated on 2025-10-17 mnt-by: MAINT-CNCGROUP last-modified: 2025-11-18T00:26:20Z source: APNIC role: ABUSE CUCN country: ZZ address: No.21,Financial Street address: Beijing,100033 address: P.R.China phone: +000000000 e-mail: [email protected] admin-c: CH1302-AP tech-c: CH1302-AP nic-hdl: AC1718-AP remarks: Generated from irt object IRT-CU-CN remarks: [email protected] was validated on 2025-10-17 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-10-17T02:26:56Z source: APNIC person: ChinaUnicom Hostmaster nic-hdl: CH1302-AP e-mail: [email protected] address: No.21,Jin-Rong Street address: Beijing,100033 address: P.R.China phone: +86-10-66259764 fax-no: +86-10-66259764 country: CN mnt-by: MAINT-CNCGROUP last-modified: 2017-08-17T06:13:16Z source: APNIC person: XIAOFENG ZHANG nic-hdl: XZ14-AP e-mail: [email protected] address: Jinan,Shandong P.R China phone: +86-531-6666666 fax-no: +86-531-6666666 country: CN mnt-by: MAINT-ZXF last-modified: 2008-09-04T07:29:35Z source: APNIC route: 27.192.0.0/11 descr: China Unicom Shandong Province Network country: CN origin: AS4837 mnt-by: MAINT-CNCGROUP-RR last-modified: 2010-04-14T05:24:01Z source: APNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 1 year ago
Appeared in 8 threat reports