IOC Radar
IPMediumSignal 100/100

45.116.77.59

Location
Hong KongHong Kong
San Po Kong, Wong Tai Sin District
ASN
AS24544
Digital Based System Company Limited
First Seen
Jan 24, 2025
Last Seen
May 17, 2026
Jan 24
First Seen
504d ago
May 17
Last Seen
27d ago
20
Reports
source reports
99%
Confidence
medium
Found in 20 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

44 techniques

Network Information

CountryHKHong Kong
RegionSan Po Kong, Wong Tai Sin District
ASNAS24544
OrganizationDigital Based System Company Limited

Feed Intelligence Summary

20 reports99% confidence
20
Source reports
99%
Confidence score
Category tags
abuseaccess controlaccount accessaccount discoveryaccount profilingaccount takeoveractive scanactive scanningasiaasnattackattack sourceaustraliaauthenticationauthentication attackauthentication attacksauthentication attemptsauthentication failurebad reputationblacklisted ipbotnetbotnet activitybrute forcebrute force attackbrute force attemptbrute-forcbrute-forcebruteforcecliftoncocos (keeling) islandscommand and controlcommunication protocolcompromise attemptcowrie honeypotcredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposuredecoy systemdigitalocean vpsdionaea honeypotdistributed attackseuropeexploit attemptexploitation activityfail2ban alertfail2ban eventfail2ban triggeredfailed loginfailed login attemptsftpftp brute forcegeographic locationgeoiphkhoneytrap honeypothong kongidentity & access exploitationimap brute forceindicatorinformation technologyinfrastructure acquisitionreconnaissanceinjection activityintrusion detectionipv4it infrastructurelamplogin attacklogin attemptlogin attemptslogin brute forcemalicious activitymalicious payloadmalicious softwaremalwaremalware behaviourmalware capturemanualnetworknetwork accessnetwork attacksnetwork enumerationnetwork intrusionnetwork intrusion attemptnetwork probingnetwork scannetwork scanningnetwork securitynetwork security monitoringnetwork service scanningnoticeoceaniapassword attackpassword attackspassword crackingphishingphishing attackpotential vulnerability exploitationprocess injectionproxyransomwarereconnaissanceremote accessremote service exploitationremote servicesresearchedscanscannerscanning activitysecurity operationssecurity policyservice scansftp attacksocial engineeringsocradar honeypotsoftware developmentsshssh attackssh brute-force attemptssh monitoringsystem discoveryt1018t1021t1021.001t1021.003t1021.004t1040t1041t1046t1055t1059t1059.004t1071.001t1078t1078.004t1110t1110 credential accesst1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1204.002t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1567t1583t1587.001t1588t1588.002t1589t1589.002t1590.001t1595t1595.001t1595.002t1595.003tcp protocoltelecommunicationsthreat actorthreat detectionthreat intelligencethreat preventiontor nodeunauthorized accessunauthorized access attemptsunited kingdomutc+1:00voipvpsvps securityvulnerability scanweb brute forceweb login

Activity Timeline

1 total obs
May 17May 17

Threat Activity Heatmap

· Peak: 2026-05-17
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), an IPv4 address with a perfect malicious score of 100.0, represents a severe and immediate threat to organizational security. Its presence in network logs or security telemetry strongly indicates an active attempt at unauthorized access, reconnaissance, or direct attack against critical assets. If left unaddressed, this malicious IP address could facilitate successful brute-force attacks, leading to compromised credentials, unauthorized system access, data exf…

Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
20
Reports
First seenJan 24, 2025
Last seenMay 17, 2026
GeolocationHK
CountryHong Kong
LocationSan Po Kong, Wong Tai Sin District
ASNAS24544
OrgDigital Based System Company Limited
Coords22.3364, 114.1990

VirusTotal

Not checked

WHOIS

description
Host bruteforcing SSH
raw
inetnum: 45.116.76.0 - 45.116.79.255 netname: DBSCL-HK descr: UNIT D 12/F SEABRIGHT PLAZA 9-23 SHELL ST NORTH POINT country: HK geoloc: 22.335066 114.19588 org: ORG-DBSC1-AP admin-c: DBSC1-AP tech-c: DBSC1-AP abuse-c: AD774-AP status: ALLOCATED PORTABLE remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-DBSCL-HK mnt-routes: MAINT-DBSCL-HK mnt-irt: IRT-DBSCL-HK last-modified: 2020-06-22T15:15:26Z source: APNIC irt: IRT-DBSCL-HK address: UNIT D 12/F SEABRIGHT PLAZA 9-23 SHELL ST NORTH POINT, HongKong HongKong e-mail: [email protected] abuse-mailbox: [email protected] admin-c: DBSC1-AP tech-c: DBSC1-AP auth: # Filtered remarks: [email protected] is invalid mnt-by: MAINT-DBSCL-HK last-modified: 2025-06-18T13:05:31Z source: APNIC organisation: ORG-DBSC1-AP org-name: Digital Based System Company Limited org-type: LIR country: HK address: UNIT D 12/F SEABRIGHT PLAZA 9-23 SHELL ST NORTH POINT phone: +852-6438-8192 e-mail: [email protected] mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2023-09-05T02:16:36Z source: APNIC role: ABUSE DBSCLHK country: ZZ address: UNIT D 12/F SEABRIGHT PLAZA 9-23 SHELL ST NORTH POINT, HongKong HongKong phone: +000000000 e-mail: [email protected] admin-c: DBSC1-AP tech-c: DBSC1-AP nic-hdl: AD774-AP remarks: Generated from irt object IRT-DBSCL-HK remarks: [email protected] is invalid abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-06-18T13:06:07Z source: APNIC role: Digital Based System Company Limited administrator address: UNIT D 12/F SEABRIGHT PLAZA 9-23 SHELL ST NORTH POINT, HongKong HongKong country: HK phone: +852-6438-8192 fax-no: +852-6438-8192 e-mail: [email protected] admin-c: DBSC1-AP tech-c: DBSC1-AP nic-hdl: DBSC1-AP mnt-by: MAINT-DBSCL-HK last-modified: 2015-04-30T07:34:27Z source: APNIC route: 45.116.76.0/22 descr: Colocation at Shatin China Telecom origin: AS134120 mnt-by: MAINT-DBSCL-HK last-modified: 2015-05-14T16:36:46Z source: APNIC route: 45.116.76.0/22 descr: Colocation at Shatin China Telecom origin: AS134121 mnt-by: MAINT-DBSCL-HK last-modified: 2015-06-22T18:20:09Z source: APNIC
references
https://github.com/telekom-security/tpotce, https://redpiranha.net, https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 27 days ago
Appeared in 20 threat reports