IOC Radar
IPMediumSignal 100/100

27.72.244.199

Location
VietnamVietnam
Hanoi, Hanoi
ASN
AS7552
Newass2011xDSLHN
First Seen
Feb 8, 2021
Last Seen
Jun 7, 2026
Feb 8
First Seen
1949d ago
Jun 7
Last Seen
3d ago
11
Reports
source reports
99%
Confidence
medium
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

40 techniques

Network Information

CountryVNVietnam
RegionHanoi, Hanoi
ASNAS7552
OrganizationNewass2011xDSLHN

Feed Intelligence Summary

11 reports99% confidence
11
Source reports
99%
Confidence score
Category tags
360 f.c.u.abuseaccess attemptsaccess controlaccount compromiseactive scanactive scanningaerospace & defenseasiaattackauthentication attacksautomotive manufacturingbad reputationbanco santander colombiabarclays bank plcbotnetbotnet activitybrute forcebrute force attackbrute force attemptsbrute-forcebruteforcecitizens trust companycivil servicescloud infrastructurecloud infrastructure attackcloud servicescommand and controlcommand executioncommercial sexcommercial spamcommunication protocolconfigcowriecredential accesscredential harvestingcredential stuffingctadata encryptiondata exfiltrationdata store exposuredatabase securityddosddos attacksdecoy systemdefensedefense contractingdefense logisticsdefense systemsdefense technologydelhidenial of servicedhcpdiners club internationaldionaeadistributed attackselasticsearchelectronics manufacturingencryptionenergyexecutable fileexploitation activityexploited hostfattfirst security bankftpftp brute forcegovernment technologygreat western bankgurgaonhackinghttp brute forcehttp scannerhttp scanningicici bank canadaidentity & access exploitationillegal servicesimapindiaindicatorindustrial automationindustrial iotindustrial productioninformation gatheringinitial accessinjection activityinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attackjpmorgan chase banklateral movementldaplogberg trust corp.loginmalicious activitymalicious softwaremalwaremanufacturing technologymedia & entertainmentmilitary operationsmirai botnetmssqlmysql brute forcenational securitynetworknetwork attacksnetwork monitoringnetwork protocolnetwork scanningnetwork securitynextraynoidanorth americantporaclep0fpassword attackpassword attacksphishingphishing attackphpprocess injectionprocess manufacturingprotocol exploitationpublic administrationpublic infrastructurepublic policyquality controlreconnaissanceregulatory agenciesremote accessremote servicesresearchedresource hijackingscanscannerscannerssecurity operationssecurity policysensor-taggedserverserver exploitationslugsmtp brute forcesocial engineeringsociete generalesocks5spamspam advertisementspam advertisement campaignsql injectionssh attacksupply chain attacksupply chain managementsurface webt1016t1021t1021.001t1021.002t1040t1046t1055t1056t1059t1059.003t1059.005t1071.001t1076t1077t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.001t1499.002t1499.003t1505.002t1505.004t1563t1565t1566t1566.001t1566.002t1566.003t1595t1595.001t1595.002t1595.003t1598t1598.003tannertargeting databasetcp protocoltelnet threatthreat actorthreat intelligencethreat preventiontor nodetpotunauthorized accessunited statesunited states of americaunited workers f.c.u.unsolicited communicationunsolicited contactunsolicited contentviet namvietnamvnvnc protocolweb trafficwestpac banking corporation

Activity Timeline

1 total obs
Jun 7Jun 7

Threat Activity Heatmap

· Peak: 2026-06-07
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
11
Reports
First seenFeb 8, 2021
Last seenJun 7, 2026
GeolocationVN
CountryVietnam
LocationHanoi, Hanoi
ASNAS7552
OrgNewass2011xDSLHN
Coords21.0184, 105.8461

VirusTotal

Not checked

WHOIS

description
seen in Dionaea honeypot logs; events=4; services=smbd; ports=445; cc=VN; asn=7552; asn_org=Viettel Group

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 5 years ago · Last seen 3 days ago
Appeared in 11 threat reports