IOC Radar
IPLowSignal 63/100

59.63.214.86

Location
ChinaChina
Taohua, Jiangxi
ASN
AS134238
Chinanet JX
First Seen
Jun 27, 2025
Last Seen
Dec 5, 2025
Jun 27
First Seen
352d ago
Dec 5
Last Seen
191d ago
12
Reports
source reports
63%
Confidence
low
0/91
VirusTotal
detections
Found in 12 reports. Confidence: low. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
63%
Signal Score
63 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

48 techniques

Network Information

CountryCNChina
RegionTaohua, Jiangxi
ASNAS134238
OrganizationChinanet JX

Feed Intelligence Summary

12 reports63% confidence
12
Source reports
63%
Confidence score
Category tags
abuseaccess controlactive scanningasiaattackauthentication attackbotnetbotnet activity detectedbrute forcebrute force attackbrute force attacksbrute force attemptc2c2 communicationchinacommand and controlcommunication protocolcompromised hostscredential accesscredential stuffingdata exfiltrationddos preparationdistributed attackseuropeexploit attemptsfinlandftp brute forcehttp scanninghttps scanningindicatorlateral movementlogin attackmalicious activitymalicious softwaremalwaremalware distributionnetworknetwork attacksnetwork enumerationnetwork intrusionnetwork scanningnetwork securitynetwork service scanningpassword attacksprocess injectionprotocol exploitationproxy activityreconnaissanceresearchedscannersecurity policysmtp scanningssh attackt1003t1005t1016t1018t1021t1021.004t1040t1043t1047t1053t1053.005t1055t1056t1059t1071t1071.001t1071.002t1071.004t1078t1078.004t1083t1090t1090.001t1090.002t1090.003t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1497t1499.002t1499.003t1550t1552t1555t1556t1565t1573t1588.004t1589.002t1595.001t1595.002t1595.003tcp protocoltelnet threatthreat actorthreat prevention

Activity Timeline

1 total obs
Dec 5Dec 5

Threat Activity Heatmap

· Peak: 2025-12-05
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
63
SIGNAL
Signal Score
63%
Confidence
12
Reports
First seenJun 27, 2025
Last seenDec 5, 2025
GeolocationCN
CountryChina
LocationTaohua, Jiangxi
ASNAS134238
OrgChinanet JX
Coords34.7732, 113.7220

VirusTotal

0/ 91vendors flagged
0% detection rateJun 8, 2026

WHOIS

raw
inetnum: 59.62.0.0 - 59.63.255.255 netname: CHINANET-JX descr: CHINANET Jiangxi province network descr: China Telecom descr: No.31,jingrong street descr: Beijing 100032 country: CN admin-c: CH93-AP tech-c: JN113-AP abuse-c: AC1573-AP status: ALLOCATED PORTABLE remarks: service provider mnt-by: APNIC-HM mnt-lower: MAINT-IP-WWF mnt-irt: IRT-CHINANET-CN last-modified: 2021-06-15T08:05:16Z source: APNIC irt: IRT-CHINANET-CN address: No.31 ,jingrong street,beijing address: 100032 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH93-AP tech-c: CH93-AP auth: # Filtered remarks: [email protected] was validated on 2025-04-24 mnt-by: MAINT-CHINANET last-modified: 2025-04-24T03:21:26Z source: APNIC role: ABUSE CHINANETCN country: ZZ address: No.31 ,jingrong street,beijing address: 100032 phone: +000000000 e-mail: [email protected] admin-c: CH93-AP tech-c: CH93-AP nic-hdl: AC1573-AP remarks: Generated from irt object IRT-CHINANET-CN remarks: [email protected] was validated on 2025-04-24 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-04-24T03:21:54Z source: APNIC role: JXDCB NET address: Jiangxi telecom network operation support department address: No.2009, Beijing East Road , nanchang,jiangxi province country: CN phone: +86 79186600000 e-mail: [email protected] remarks: send spam reports to [email protected] remarks: and abuse reports to [email protected] remarks: http://www.online.jx.cn admin-c: XY1-AP tech-c: WZ1-CN tech-c: WW49-AP nic-hdl: JN113-AP notify: [email protected] mnt-by: MAINT-IP-WWF last-modified: 2020-04-02T08:23:08Z source: APNIC person: Chinanet Hostmaster nic-hdl: CH93-AP e-mail: [email protected] address: No.31 ,jingrong street,beijing address: 100032 phone: +86-10-58501724 fax-no: +86-10-58501724 country: CN mnt-by: MAINT-CHINANET last-modified: 2022-02-28T06:53:44Z source: APNIC
references
https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

low
First detected 11 months ago · Last seen 6 months ago
Appeared in 12 threat reports