14.53.19.74

Korea, Republic of

0

Resolved hostnames

2

Contacting malwares

0

Online malicious URLs allocated

0

Offline malicious URLs allocated


Blacklist timeline


First seen: Wed Oct 06 2021 07:00:13 GMT+0000
Last seen: Wed Oct 06 2021 08:00:13 GMT+0000
Period: an hour

Whois information


Autonomous System
AS Name:
AS4766 Korea Telecom

Registrant information
Country Code:
KR (Korea, Republic of)
City:
Namyangju

Dates
Indexed:
Sun Nov 22 2020 04:48:56 GMT+0000
Last modified:
Thu May 09 2024 13:31:53 GMT+0000

Location - Namyangju - Korea, Republic of


Developers can check API Specification here:


Request:

          
curl -H "Authorization: Bearer <API_KEY>" https://api.maltiverse.com/ip/14.53.19.74
        

Request:

Alternatively you can use Maltiverse Python3 Library:
          
import requests
import json

url = 'https://api.maltiverse.com/ip/14.53.19.74'
response = requests.get(url)
print(json.dumps(response.json(), indent=4, sort_keys=True))
        

Request:

          
$url = 'https://api.maltiverse.com/ip/14.53.19.74'
$headers =  @{Authorization=("Bearer {0}" -f "<API_KEY>")}
$response = Invoke-RestMethod $url -Headers $headers
Write-Output $response
        

Response:

      
{
    "as_name": "AS4766 Korea Telecom",
    "as_number": "4766",
    "blacklist": [
        {
            "count": 2,
            "description": "Malware site",
            "first_seen": "2021-10-06 08:00:13",
            "last_seen": "2021-10-06 08:00:13",
            "source": "Hybrid-Analysis"
        },
        {
            "count": 2,
            "description": "Malicious site",
            "first_seen": "2021-10-01 16:30:38",
            "last_seen": "2021-10-01 16:30:38",
            "source": "Hybrid-Analysis"
        },
        {
            "count": 4,
            "description": "Malware Download",
            "first_seen": "2020-11-22 08:30:32",
            "labels": [
                "malicious-activity"
            ],
            "last_seen": "2020-11-24 21:30:56",
            "source": "Abuse.ch"
        },
        {
            "count": 4,
            "description": "Mail Spammer",
            "first_seen": "2020-11-22 04:48:59",
            "last_seen": "2020-11-24 21:30:59",
            "source": "Abuseat.org"
        },
        {
            "count": 2,
            "description": "Malicious Host",
            "first_seen": "2020-11-21 00:00:00",
            "labels": [
                "malicious-activity"
            ],
            "last_seen": "2020-11-21 00:00:00",
            "source": "HoneyDB"
        }
    ],
    "city": "Namyangju",
    "classification": "suspicious",
    "country_code": "KR",
    "creation_time": "2020-11-22 04:48:56",
    "ip_addr": "14.53.19.74",
    "ip_version": 4,
    "is_cdn": false,
    "is_cnc": false,
    "is_distributing_malware": false,
    "is_hosting": false,
    "is_iot_threat": false,
    "is_known_attacker": false,
    "is_known_scanner": false,
    "is_mining_pool": false,
    "is_open_proxy": false,
    "is_sinkhole": false,
    "is_tor_node": false,
    "is_vpn_node": false,
    "location": {
        "lat": 37.6367,
        "lon": 127.2183
    },
    "modification_time": "2024-05-09 13:31:53",
    "number_of_blacklisted_domains_resolving": 0,
    "number_of_domains_resolving": 0,
    "number_of_offline_malicious_urls_allocated": 0,
    "number_of_online_malicious_urls_allocated": 0,
    "number_of_whitelisted_domains_resolving": 0,
    "tag": [
        "32-bit",
        "elf"
    ],
    "type": "ip"
}
    

Malware that contacts this IP

DateFilenameBlacklist
Wed Oct 06 2021 07:42:10 GMT+0000 http://14.53.19.74:40008/bin.sh
Fri Oct 01 2021 16:11:13 GMT+0000 http://14.53.19.74:40008/i