← Back to feed

AS3786 LG DACOM Corporation

ASN Active medium
Why this campaign was detected
5 IPs from the same network (LG DACOM Corporation, AS3786) were active during overlapping time periods. Temporal correlation across a shared autonomous system suggests infrastructure controlled by the same entity.
Primary ASN
AS3786 · LG DACOM Corporation
Subnet
Country
🇰🇷 KR
Cloud Provider
Member Count
5 IPs
Below average
Total Events
3990
Below average by volume
Started / Ended
2026-02-18 22:21 — ongoing
Attack Types
ssh:bruteforce
MITRE ATT&CK Techniques
Reconnaissance
Initial Access
Credential Access
Discovery
Command and Control
Member Actors
IP Address Behavior Confidence Flags Events Agents Attack Types Hostname Last Seen
112.219.151.50 credential_harvester 71% 1x OSINT 1349 3 ssh:bruteforce 2026-06-26 20:21 evidence →
1.222.42.237 credential_harvester 71% 1x OSINT 1299 3 ssh:bruteforce 2026-07-08 02:09 evidence →
112.217.188.122 credential_harvester 71% 1x OSINT 1082 3 ssh:bruteforce 2026-06-28 19:15 evidence →
1.214.214.114 credential_harvester 53% 1x OSINT 175 2 ssh:bruteforce 2026-06-29 05:04 evidence →
58.76.159.170 credential_harvester 47% 1x OSINT 215 1 ssh:bruteforce 2026-07-17 17:46 evidence →
VPN Known VPN or proxy provider
DROP ASN on Spamhaus DROP list
Nx OSINT Corroborated by N external threat feeds