{"id": "RST:CBD1F6BA-FC87-3678-A910-0062D812DB59", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 119.202.139.178", "description": "Found **119[.]202.139.178** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **20**.\n First seen: 2020-12-09T03:00:00, Last seen: 2020-12-18T03:00:00.\n IOC tags: **shellprobe**.\nASN 4766: (First IP 119.202.118.0, Last IP 119.203.214.255).\nASN Name \"KIXSASKR\" and Organisation \"Korea Telecom\".\nASN hosts 607758 domains.\nGEO IP information: City \"Gumi\", Country \"South Korea\".\nIOC could be a **False Positive** (May be a Cloud provider IP).\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2020-12-19T00:00:00", "modified": "2020-12-09T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2020-12-18T00:00:00", "edition": 1, "viewCount": 0, "enchantments": {"vulnersScore": "PENDING"}, "iocType": "ip", "ip": ["119.202.139.178"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.85, "ioc_src": 64.84, "ioc_tags": 0.75, "ioc_total": 20.0}, "tags": ["shellprobe"], "fp": {"alarm": "possible", "descr": "May be a Cloud provider IP"}, "whois": {}, "geodata": {"city": "Gumi", "country": "South Korea", "region": "Gyeongsangbukdo"}, "asn": {"cloud": "", "domains": 607758, "firstip": {"netv4": "119.202.118.0", "num": "2009757184"}, "isp": "KIXSASKR", "lastip": {"netv4": "119.203.214.255", "num": "2009847551"}, "num": 4766, "org": "Korea Telecom"}, "threat": []}

{}