{"id": "RST:D6C6A5ED-872E-3A0A-AAB9-E47434265CFF", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 121.151.245.250", "description": "Found **121[.]151.245.250** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **20**.\n First seen: 2021-01-28T03:00:00, Last seen: 2021-02-15T03:00:00.\n IOC tags: **shellprobe**.\nASN 4766: (First IP 121.150.51.0, Last IP 121.156.68.255).\nASN Name \"KIXSASKR\" and Organisation \"Korea Telecom\".\nASN hosts 619680 domains.\nGEO IP information: City \"Sangju\", Country \"South Korea\".\nIOC could be a **False Positive** (May be a Cloud provider IP).\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-02-16T00:00:00", "modified": "2021-01-28T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-02-15T00:00:00", "edition": 1, "viewCount": 0, "enchantments": {"vulnersScore": "PENDING"}, "iocType": "ip", "ip": ["121.151.245.250"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.74, "ioc_src": 64.59, "ioc_tags": 0.75, "ioc_total": 20.0}, "tags": ["shellprobe"], "fp": {"alarm": "possible", "descr": "May be a Cloud provider IP"}, "whois": {}, "geodata": {"city": "Sangju", "country": "South Korea", "region": "Gyeongsangbukdo"}, "asn": {"cloud": "", "domains": 619680, "firstip": {"netv4": "121.150.51.0", "num": "2039886592"}, "isp": "KIXSASKR", "lastip": {"netv4": "121.156.68.255", "num": "2040284415"}, "num": 4766, "org": "Korea Telecom"}, "threat": []}

{}