IntrusionLabs / threat intelligence

Sign in

← Back to feed

152.32.188.207

TAGGED SUSPICIOUS how we decide →

Threat Confidence

28%

Location

🇭🇰 HK / Hong Kong

ASN

AS135377 · UCLOUD INFORMATION TECHNOLOGY HK LIMITED

Cloud Provider

—

Total Events

11

Below average by volume

Agent Count

1

First / Last Seen

2026-04-08 07:33 — 2026-06-02 15:04

Attack Types

ftp:bruteforce ssh:bruteforce

MITRE ATT&CK Techniques

Reconnaissance

T1595 T1595.002

Credential Access

T1110 T1110.001

Discovery

T1046

External Corroboration

CINS Army

Reported 2026-06-14 00:04

cins:bad_reputation

Campaigns

Not associated with any campaigns

Session Forensics

scanner ×3 ftp_probe ×1

Sessions

4

Avg Depth Score

0.16

Commands Executed

0

Files Downloaded

0

Fingerprints

HASSH

e788c657d1a22971d5026526ffd2e918 ec9ea89c70f5fc71cf61061bff5e4740

SSH Client

SSH-2.0-OpenSSH_7.4

Evidence Timeline

Scanner a35b23b25262 w4m_singapore_01 · 2026-06-02 15:04

15%

Loading events...

Scanner deee061fca48 w4m_singapore_01 · 2026-06-02 15:04

15%

Loading events...

Scanner 5c20a8e0bfb0 w4m_singapore_01 · 2026-06-02 15:04

15%

Loading events...

FTP Probe 2402db5cc77c1525 w4m_singapore_01 · 2026-04-08 07:33

1 20%

Loading events...

Non-Session Events

Timestamp	Port	Proto	Event	Source	Location
2026-04-08 07:33:48	:21	ftp	FTP connection	opencanary	sin