RST Threat feed. IOC: 120.78.76.255

2021-09-18T00:00:00
ID RST:F76346D6-B122-3D5F-878E-A8546C5EF2C2
Type rst
Reporter RST Threat Feed
Modified 2021-06-28T00:00:00

Description

Found 120[.]78.76.255 in RST Threat Feed with score 10. First seen: 2021-06-28T03:00:00, Last seen: 2021-09-17T03:00:00. IOC tags: c2. We found that the IOC is used by: cobalt_strike. ASN 37963: (First IP 120.77.194.0, Last IP 120.79.255.255). ASN Name "CNNICALIBABACNNETAP" and Organisation "Hangzhou Alibaba Advertising CoLtd". ASN hosts 2411466 domains. GEO IP information: City "Shenzhen", Country "China". IOC could be a False Positive (Cloud provider IP). https://rstcloud.net/