IOC Radar
IPMediumSignal 80/100

42.55.60.241

Location
ChinaChina
Shenyang, LN
ASN
AS4837
China Unicom Liaoning Province Network
First Seen
May 26, 2025
Last Seen
Mar 19, 2026
May 26
First Seen
383d ago
Mar 19
Last Seen
87d ago
11
Reports
source reports
80%
Confidence
medium
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
80%
Signal Score
80 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

29 techniques

Network Information

CountryCNChina
RegionShenyang, LN
ASNAS4837
OrganizationChina Unicom Liaoning Province Network

Feed Intelligence Summary

11 reports80% confidence
11
Source reports
80%
Confidence score
Category tags
abuseactive scanningasiaattackbotnetbrute forcebrute force attackchinacommand and controlcommunication technologiescredential accesscredential stuffingdata exfiltrationddosdenial of servicedistributed attacksexploit attemptsftp brute forcehackinghttp brute forceindicatorlateral movementmalicious activitymalicious softwaremalwaremalware propagationmalware scanningmobile carriersmobile networksnetworknetwork probingnetwork scanningpassword attacksprocess injectionreconnaissanceremote accessremote servicesresearchedscannersmtp brute forcesocradar honeypotsql injection attemptsssh attackt1021t1021.001t1046t1055t1059t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1210t1486t1496t1499.002t1499.003t1563t1565t1588t1595t1595.001t1595.002t1595.003telecom servicestelecommunicationsthreat actor

Activity Timeline

1 total obs
Mar 19Mar 19

Threat Activity Heatmap

· Peak: 2026-03-19
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
80
SIGNAL
Signal Score
80%
Confidence
11
Reports
First seenMay 26, 2025
Last seenMar 19, 2026
GeolocationCN
CountryChina
LocationShenyang, LN
ASNAS4837
OrgChina Unicom Liaoning Province Network
Coords40.6398, 122.5119

VirusTotal

Not checked

WHOIS

raw
inetnum: 42.52.0.0 - 42.55.255.255 netname: UNICOM-LN descr: UNICOM Liaoning Province Network descr: China Unicom descr: No.21, Jin-Rong Street descr: Beijing 100033 country: CN admin-c: CH444-AP tech-c: ZB17-AP abuse-c: AC1718-AP status: ALLOCATED PORTABLE remarks: service provider remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-CNCGROUP mnt-routes: MAINT-CNCGROUP-RR mnt-irt: IRT-CU-CN last-modified: 2025-01-22T13:06:37Z source: APNIC irt: IRT-CU-CN address: No.21,Financial Street address: Beijing,100033 address: P.R.China e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH1302-AP tech-c: CH1302-AP auth: # Filtered remarks: [email protected] was validated on 2025-02-24 mnt-by: MAINT-CNCGROUP last-modified: 2025-02-24T06:16:57Z source: APNIC role: ABUSE CUCN country: ZZ address: No.21,Financial Street address: Beijing,100033 address: P.R.China phone: +000000000 e-mail: [email protected] admin-c: CH1302-AP tech-c: CH1302-AP nic-hdl: AC1718-AP remarks: Generated from irt object IRT-CU-CN remarks: [email protected] was validated on 2025-02-24 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-02-24T06:17:45Z source: APNIC person: CNCGroup Hostmaster nic-hdl: CH444-AP e-mail: [email protected] address: No.21,Financial Street address: Beijing,100033,P.R.China phone: +86-10-66259764 fax-no: +86-10-66259764 country: CN mnt-by: MAINT-CN-CUCGROUP last-modified: 2017-09-05T06:36:14Z source: APNIC person: ZHAO BO address: 96,JieFang Road ChangChun 130021 China. country: CN phone: +86-431-8925217 fax-no: +86-431-8925190 e-mail: [email protected] nic-hdl: ZB17-AP mnt-by: MAINT-CHINANET-JL last-modified: 2008-09-04T07:30:04Z source: APNIC route: 42.52.0.0/14 descr: China Unicom Liaoning Province Network country: CN origin: AS4837 mnt-by: MAINT-CNCGROUP-RR last-modified: 2011-03-02T05:24:02Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 11 threat reports