IPMediumSignal 86/100
47.238.232.66
Location
United StatesHong Kong, Kowloon
ASN
AS45102
Alibaba Cloud - HK
First Seen
May 23, 2025
Last Seen
Jan 30, 2026
Found in 16 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
86%
Signal Score
86 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryUnited States
United StatesRegionHong Kong, Kowloon
ASNAS45102
OrganizationAlibaba Cloud - HK
Feed Intelligence Summary
16 reports86% confidence
16
Source reports
86%
Confidence score
Category tags
abuseaccess controlactive scanningapacheasiaattackaustraliaauthentication attackbotnetbotnet activity detectedbrute forcebrute force attackbrute force attacksc2c2 communicationcommand and controlcommunication protocolcompromised hostcompromised hostscowrie honeypotcredential accesscredential stuffingdata exfiltrationddosddos preparationdecoy systemdenial of servicedionaea honeypotdistributed attackseuropeexploit attemptsexploited hostfattftpftp brute forcehackinghoneytrap honeypothong konghttp scannerhttp scanninghttps scanningindicatorinformation technologyit infrastructurelateral movementmailmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware distributionmod securitynetworknetwork enumerationnetwork intrusionnetwork intrusion attemptsnetwork reconnaissancenetwork scanningnetwork securitynorth americaoceaniap0fpassword attacksphishing attackphishing trapprocess injectionprotocol exploitationproxy activityreconnaissanceremote accessremote servicesresearchedresource hijackingscannersecurity policysensor-taggedsentrypeer botnetsmtpsmtp scanningsocradar honeypotsoftware developmentssh attackssh monitoringt1003t1005t1016t1018t1021t1021.001t1040t1043t1047t1053t1053.005t1055t1056t1059t1071t1071.001t1071.002t1071.004t1076t1078t1083t1090t1090.001t1090.002t1090.003t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1486t1496t1497t1499.001t1499.002t1499.003t1550t1552t1555t1556t1563t1565t1573t1573.001t1595t1595.001t1595.002t1595.003tannertelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontpotunited kingdomunited statesvoipvoip attackweb application attackweb exploitationweb traffic
Activity Timeline
Jan 30Jan 30
Threat Activity Heatmap
· Peak: 2026-01-30LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
86
SIGNAL
Signal Score
86%
Confidence
16
Reports
First seenMay 23, 2025
Last seenJan 30, 2026
GeolocationUS
CountryUnited States
LocationHong Kong, Kowloon
ASNAS45102
OrgAlibaba Cloud - HK
Coords22.3193, 114.1690
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 47.0.0.0 - 47.255.255.255 netname: IANA-NETBLOCK-47 descr: This network range is not allocated to APNIC. descr: descr: If your whois search has returned this message, then you have descr: searched the APNIC whois database for an address that is descr: allocated by another Regional Internet Registry (RIR). descr: descr: Please search the other RIRs at whois.arin.net or whois.ripe.net descr: for more information about that range. country: AU admin-c: IANA1-AP tech-c: IANA1-AP remarks: For general info on spam complaints email [email protected]. remarks: For general info on hacking & abuse complaints email [email protected]. mnt-by: MAINT-APNIC-AP mnt-lower: MAINT-APNIC-AP status: ALLOCATED PORTABLE last-modified: 2008-09-04T06:51:28Z source: APNIC role: Internet Assigned Numbers Authority address: see http://www.iana.org. admin-c: IANA1-AP tech-c: IANA1-AP nic-hdl: IANA1-AP remarks: For more information on IANA services remarks: go to IANA web site at http://www.iana.org. mnt-by: MAINT-APNIC-AP last-modified: 2018-06-22T22:34:30Z source: APNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 4 months ago
Appeared in 16 threat reports