IPMediumSignal 42/100
47.237.112.152
Location
SingaporeSingapore, North West
ASN
AS45102
Alibaba.com LLC
First Seen
Oct 25, 2024
Last Seen
Jun 14, 2026
Found in 18 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
42%
Signal Score
42 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountrySingapore
SingaporeRegionSingapore, North West
ASNAS45102
OrganizationAlibaba.com LLC
Feed Intelligence Summary
18 reports42% confidence
18
Source reports
42%
Confidence score
Category tags
abuseactive scanactive scanningasiaasnattackaustraliaauthentication attackauto-generated securityautomated attackbad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptbrute-forcc2 communicationc2 servercommand & controlcommand and controlcompromised hostcompromised hostscowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredata theftddosdecoy systemdistributed attacksexploitation activitygeoipidentity & access exploitationinfoinformation technologyinfrastructure acquisitionreconnaissanceinjection activityiocit infrastructurelogin attacklogin bruteforcemalicious activitymalicious softwaremalwaremalware distributionmanualnetworknetwork traffic analysisnorth americanoticepassword attackpassword attacksphishingphishing attackprocess injectionproxyreconnaissanceremote accessresearchedscannersftp attacksgsingaporesocial engineeringsoftware developmentspamssh attackssh monitoringt1021.004t1041t1046t1055t1059t1071t1071.001t1078t1078.004t1105t1110t1110.001t1110.002t1110.003t1110.004t1486t1496t1499.002t1499.003t1555t1565t1566.001t1566.002t1566.003t1573t1573.001t1587.001t1589t1589.002t1590.001t1595t1595.001t1595.002t1595.003tannerthreat actorthreat intelligencetor nodeunited statesutc+1:00vulnerability scan
Activity Timeline
Jun 14Jun 14
Threat Activity Heatmap
· Peak: 2026-06-14LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
42
SIGNAL
Signal Score
42%
Confidence
18
Reports
First seenOct 25, 2024
Last seenJun 14, 2026
GeolocationSG
CountrySingapore
LocationSingapore, North West
ASNAS45102
OrgAlibaba.com LLC
Coords37.7510, -97.8220
VirusTotal
Not checked
WHOIS
- description
- Global Threat Feed. 14,000+ Verified targets. Archive Ref: 2026-06-04
- raw
- inetnum: 47.0.0.0 - 47.255.255.255 netname: IANA-NETBLOCK-47 descr: This network range is not allocated to APNIC. descr: descr: If your whois search has returned this message, then you have descr: searched the APNIC whois database for an address that is descr: allocated by another Regional Internet Registry (RIR). descr: descr: Please search the other RIRs at whois.arin.net or whois.ripe.net descr: for more information about that range. country: AU admin-c: IANA1-AP tech-c: IANA1-AP remarks: For general info on spam complaints email [email protected]. remarks: For general info on hacking & abuse complaints email [email protected]. mnt-by: MAINT-APNIC-AP mnt-lower: MAINT-APNIC-AP status: ALLOCATED PORTABLE last-modified: 2008-09-04T06:51:28Z source: APNIC role: Internet Assigned Numbers Authority address: see http://www.iana.org. admin-c: IANA1-AP tech-c: IANA1-AP nic-hdl: IANA1-AP remarks: For more information on IANA services remarks: go to IANA web site at http://www.iana.org. mnt-by: MAINT-APNIC-AP last-modified: 2018-06-22T22:34:30Z source: APNIC
- references
- https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt, https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://redpiranha.net, https://github.com/telekom-security/tpotce
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 11 days ago
Appeared in 18 threat reports