← Back to feed

45.194.70.248

TAGGED SUSPICIOUS how we decide →

Threat Confidence

37%

Location

🇸🇨 SC

ASN

AS135377 · UCLOUD INFORMATION TECHNOLOGY HK LIMITED

Cloud Provider

—

Total Events

Below average by volume

Agent Count

First / Last Seen

2026-05-04 22:01 — 2026-05-04 22:01

Attack Types

http:scan

MITRE ATT&CK Techniques

Reconnaissance

T1595.002

Initial Access

T1190

External Corroboration

CINS Army

Reported 2026-05-05 01:03

cins:bad_reputation

Campaigns

Subnet 45.194.70.0/24 SUBNET Active high 🇸🇨 SC

3 IPs 12 events

ftp:bruteforcehttp:scan

2026-05-04 — ongoing · 3 IPs from the same /24 subnet (45.194.70.0/24) were observed attacking our sensors within the same time window. …

Session Forensics

web_probe ×6

Sessions

Avg Depth Score

0.25

Commands Executed

Files Downloaded

Evidence Timeline

Web Probe c3d4616cc8cc461a w4m_seattle_01 · 2026-05-04 22:01

25%

Loading events...

Web Probe b3dff3b60acc4a9e w4m_seattle_01 · 2026-05-04 22:01

25%

Loading events...

Web Probe 589e5152d055fcca w4m_seattle_01 · 2026-05-04 22:01

25%

Loading events...

Web Probe 71ff557ad4cabb8e w4m_seattle_01 · 2026-05-04 22:01

25%

Loading events...

Web Probe d634e42cd1b697d8 w4m_seattle_01 · 2026-05-04 22:01

25%

Loading events...

Web Probe 7e76c17661b9bfa6 w4m_seattle_01 · 2026-05-04 22:01

25%

Loading events...

Non-Session Events

Timestamp	Port	Proto	Event	Source	Location
2026-05-04 22:01:44	:80	http	HTTP GET request	opencanary	sea
2026-05-04 22:01:43	:80	http	HTTP GET request	opencanary	sea
2026-05-04 22:01:43	:80	http	HTTP GET request	opencanary	sea
2026-05-04 22:01:42	:80	http	HTTP GET request	opencanary	sea
2026-05-04 22:01:41	:80	http	HTTP GET request	opencanary	sea
2026-05-04 22:01:41	:80	http	HTTP GET request	opencanary	sea