IOC Radar
IPMediumSignal 36/100

36.37.223.18

Location
CambodiaCambodia
Phnom Penh, Phnom Penh
ASN
AS38623
Viettel (cambodia) Pte., Ltd.
First Seen
Jan 2, 2025
Last Seen
Apr 7, 2026
Jan 2
First Seen
528d ago
Apr 7
Last Seen
68d ago
10
Reports
source reports
36%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
36%
Signal Score
36 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

48 techniques

Network Information

CountryKHCambodia
RegionPhnom Penh, Phnom Penh
ASNAS38623
OrganizationViettel (cambodia) Pte., Ltd.

IP Category

Proxy
Proxy server

Feed Intelligence Summary

10 reports36% confidence
10
Source reports
36%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningattackbad reputationbotnetbotnet activitybotnet activity detectedbrute forcebrute force attackbrute force attacksbrute force attemptc2c2 communicationcambodiacommand & controlcommand and controlcommunication protocolcompromised hostscredential accesscredential stuffingdata exfiltrationdata store exposureddosddos attacksddos preparationdecoy systemdistributed attacksexploit attemptsexploitation activityexploited hostftp brute forcehackinghttp scanninghttps scanningidentity & access exploitationindicatorinjection activityinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attacklateral movementmalicious activitymalicious softwaremalwaremalware distributionmirai botnetnetworknetwork attacksnetwork enumerationnetwork intrusionnetwork scanningnetwork securitynetwork service scanningpassword attacksprocess injectionprotocol exploitationproxyproxy activityreconnaissanceresearchedscanscannersecurity policyservice scansmtp scanningssh attackt1003t1005t1016t1018t1021t1021.002t1040t1043t1046t1047t1053t1053.005t1055t1056t1059t1071t1071.001t1071.002t1071.004t1078t1083t1090t1090.001t1090.002t1090.003t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1497t1499.001t1499.002t1499.003t1550t1552t1555t1556t1565t1573t1595t1595.001t1595.002t1595.003tcp protocoltcp/23telnet threatthreat actorthreat intelligencethreat preventiontor node

Activity Timeline

1 total obs
Apr 7Apr 7

Threat Activity Heatmap

· Peak: 2026-04-07
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
36
SIGNAL
Signal Score
36%
Confidence
10
Reports
First seenJan 2, 2025
Last seenApr 7, 2026
GeolocationKH
CountryCambodia
LocationPhnom Penh, Phnom Penh
ASNAS38623
OrgViettel (cambodia) Pte., Ltd.
Coords13.0000, 105.0000
Proxy

VirusTotal

Not checked

WHOIS

raw
inetnum: 36.37.208.0 - 36.37.223.255 netname: VIETTEL-CAMBODIA descr: VIETTEL (CAMBODIA) PTE., LTD. country: KH admin-c: VAT6-AP tech-c: VAT6-AP abuse-c: AV489-AP status: ASSIGNED NON-PORTABLE remarks: Updating % IP Address is used notify: [email protected] mnt-by: MAINT-KH-VIETTELCAMBODIA mnt-lower: MAINT-KH-VIETTELCAMBODIA mnt-routes: MAINT-KH-VIETTELCAMBODIA mnt-irt: IRT-VIETTEL-CAMBODIA-KH last-modified: 2021-01-20T06:45:09Z source: APNIC irt: IRT-VIETTEL-CAMBODIA-KH address: e-mail: [email protected] abuse-mailbox: [email protected] admin-c: VAT6-AP tech-c: VAT6-AP auth: # Filtered remarks: [email protected] was validated on 2025-08-04 mnt-by: MAINT-KH-VIETTELCAMBODIA last-modified: 2025-09-04T05:29:37Z source: APNIC role: ABUSE VIETTELCAMBODIAKH country: ZZ address: # 199, Mao Tse Toung Blvd(245), Phnom Penh, Cambodia. phone: +000000000 e-mail: [email protected] admin-c: VAT6-AP tech-c: VAT6-AP nic-hdl: AV489-AP remarks: Generated from irt object IRT-VIETTEL-CAMBODIA-KH remarks: [email protected] was validated on 2025-08-04 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-08-04T10:30:24Z source: APNIC person: Vo Anh Tu address: #42, STR 242, SANGKAT CHATUMUK, KHAN DAUN PENH, PHNOM PENH. country: KH phone: +855 977068079 e-mail: [email protected] nic-hdl: VAT6-AP mnt-by: MAINT-NEW last-modified: 2011-01-27T07:25:27Z source: APNIC route: 36.37.223.0/24 origin: AS38623 descr: VIETTEL (CAMBODIA) PTE., LTD VIETTEL (Cambodia) PTE.,LTD #199, Mao Tse Toung St.(245) mnt-by: MAINT-KH-VIETTELCAMBODIA last-modified: 2021-08-09T17:22:49Z source: APNIC
references
https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 10 threat reports