IOC Radar
IPMediumSignal 45/100

8.213.215.187

Location
United KingdomUnited Kingdom
Bangkok, Bangkok
ASN
AS45102
Alibaba.com Singapore E-Commerce Private Limited
First Seen
Jul 6, 2024
Last Seen
Jun 6, 2026
Jul 6
First Seen
704d ago
Jun 6
Last Seen
4d ago
20
Reports
source reports
45%
Confidence
medium
8/91
VirusTotal
detections
Found in 20 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
45%
Signal Score
45 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

51 techniques

Network Information

CountryGBUnited Kingdom
RegionBangkok, Bangkok
ASNAS45102
OrganizationAlibaba.com Singapore E-Commerce Private Limited

IP Category

Proxy
Proxy server
VPN
VPN exit node

Feed Intelligence Summary

20 reports45% confidence
20
Source reports
45%
Confidence score
Category tags
aaaaacceptaccept encodingaccount securityactive scanactive scanningaddressadult content hostingalertsanalysis dateapacheasiaasnone relatedav detectionsazerbaijan asnbackdoorbad web botblog vonbodybotnetbotnet activitybrute forcebrute force attackbrute force attackerchromecivil servicesck idck matrixclick-based attackcommandcommand and controlcompromise ipv4compromised communicationcorporate lawcredential accesscredential harvestingcredential stuffingcredential theftcryptocurrencycryptocurrency threatscryptojackingcycbotdata exfiltrationdata store exposuredclocalddosddos attacksdecoy systemdefense evasiondelete cdenial of servicedennis schrderdennis schroderdistributed attacksdns attackdnssecdynamicloaderdyndns domainelementemailsencryptencryptionentrieset smtpeuropeexploitation activityfilesfiles ipfinancefor privacyformatfoundfraudgeckogermany asngovernment technologyguardhello2malwarehelloworldhighhosthostname addhostname enumerationhstrhttp attackhttps domainhttps proxyhybrididentity & access exploitationids detectionsiframeinformation gatheringinformation technologyinfrastructure acquisitionreconnaissanceingress tool transferinitial accessinjection activityinput validation bypassinsertinstallintellectual property lawinternet of thingsiocsiot botnetiot securityiot/ics attackipv4 addipv4 portit infrastructurejapan unknownkhtmlkiller geckolaw practicelearnlegal consultinglegal researchlegal sectorlegal serviceslegal technologylesslevel domainlinuxlocalmalicious linksmalicious softwaremalwaremanualmediummessagemetadata analysismirai botnetmitre attmovedmoviemsiename serversname tacticsnamed pipenetworknetwork scanningnext associatednidsok acceptoperating system securitypassive dnspassword attackspath traversalpdf libraryphishingphishing attackphone interceptionportpragmapresentpresent junpresent novpresent sepprocess injectionproxproxypublic administrationpublic infrastructurepublic policyransomransomwarereconnaissancerecord valueredacted forregulatory agenciesregulatory compliancerelated pulsesremote accessresearchedresource hijackingreverse dnsscams & fraudscannerscript domainsscript urlsself-signedserverssingaporesite topsocial engineeringsocial media securitysocks proxysoftware developmentspamssh attacksslstealsstringst1027t1031t1045t1055t1057t1059t1060t1063t1069t1071t1071.001t1078t1083t1105t1110.001t1110.002t1110.003t1110.004t1113t1119t1133t1140t1190t1203t1204.001t1204.002t1210t1480t1486t1496t1499.001t1499.002t1499.003t1553t1565t1566t1566.001t1566.002t1566.003t1567.001t1568t1583t1583.005t1587.001t1589.001t1590t1590.001t1595.001t1595.002t1595.003t1598ththailandthreat actorthreat intelligencetls snitoggletor nodetotaltrojan malwaretrojandroppertwittertype indicatorunitedunited kingdomurlsuser executionverdictvpnweb application attackweb application exploitationweb exploitationweb securityweb spamwindows ntwritewrite cxserverxxx adultyara detectionsyara rule

Activity Timeline

1 total obs
Jun 6Jun 6

Threat Activity Heatmap

· Peak: 2026-06-06
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
45
SIGNAL
Signal Score
45%
Confidence
20
Reports
First seenJul 6, 2024
Last seenJun 6, 2026
GeolocationGB
CountryUnited Kingdom
LocationBangkok, Bangkok
ASNAS45102
OrgAlibaba.com Singapore E-Commerce Private Limited
Coords13.7499, 100.5170
ProxyVPN

VirusTotal

8/ 91vendors flagged
9% detection rateJun 7, 2026

WHOIS

description
proxy-proxy_http search result.
raw
inetnum: 8.208.0.0 - 8.223.255.255 netname: ASEPL-SG descr: Alibaba Cloud (Singapore) Private Limited descr: 51 Bras Basah Road #03-06 Lazada One Singapore 189554, Singapore country: SG org: ORG-ASEP1-AP admin-c: ASEP1-AP tech-c: ASEP1-AP abuse-c: AA1926-AP status: ALLOCATED PORTABLE remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-ASEPL-SG mnt-routes: MAINT-ASEPL-SG mnt-irt: IRT-ASEPL-SG last-modified: 2023-11-09T06:37:20Z source: APNIC irt: IRT-ASEPL-SG address: 1 Raffles Place # 59-00 One Raffles Place, Tower One Singapore, Singapore e-mail: [email protected] abuse-mailbox: [email protected] admin-c: ASEP1-AP tech-c: ASEP1-AP auth: # Filtered remarks: [email protected] was validated on 2025-04-14 mnt-by: MAINT-ASEPL-SG last-modified: 2025-04-14T07:19:15Z source: APNIC organisation: ORG-ASEP1-AP org-name: Alibaba Cloud (Singapore) Private Limited org-type: LIR country: SG address: 51 Bras Basah Road # 03-06 Lazada One Singapore 189554 phone: +8657185022088-76449 e-mail: [email protected] mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2024-07-11T12:55:24Z source: APNIC role: ABUSE ASEPLSG country: ZZ address: 1 Raffles Place # 59-00 One Raffles Place, Tower One Singapore, Singapore phone: +000000000 e-mail: [email protected] admin-c: ASEP1-AP tech-c: ASEP1-AP nic-hdl: AA1926-AP remarks: Generated from irt object IRT-ASEPL-SG remarks: [email protected] was validated on 2025-04-14 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-04-14T07:19:41Z source: APNIC role: Alibabacom Singapore E-Commerce Private Limited a address: 1 Raffles Place #59-00 One Raffles Place, Tower One Singapore, Singapore country: SG phone: +86-571-85022088 fax-no: +86-571-85022088 e-mail: [email protected] admin-c: ASEP1-AP tech-c: ASEP1-AP nic-hdl: ASEP1-AP mnt-by: MAINT-ASEPL-SG last-modified: 2025-07-01T06:25:24Z source: APNIC route: 8.213.215.0/24 origin: AS134963 descr: Alibaba.com Singapore E-Commerce Private Limited 8 Shenton Way, #45-01 AXA Tower, Singapore 068811 mnt-by: MAINT-ASEPL-SG last-modified: 2020-01-20T07:50:40Z source: APNIC route: 8.213.215.0/24 origin: AS45102 descr: Alibaba.com Singapore E-Commerce Private Limited 8 Shenton Way, #45-01 AXA Tower, Singapore 068811 mnt-by: MAINT-ASEPL-SG last-modified: 2020-01-20T07:12:58Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 4 days ago
Appeared in 20 threat reports