← Back

REGION REPORT — Ho Chi Minh City (HCMC) - Vietnam · ho chi minh city (hcmc) - vietnam

Contextual Risk

Syndu matches the queried target properties against aggregated behavioral baselines across the IP hierarchy and calculates a contextual risk score from the matched dimensions.

Contextual Risk Score

--unknown

Computed instantly from Syndu's current trust-and-risk model.

Total Hits

86391

Total Errors

13694

First Seen

July 10, 2023, 3 a.m.

Last Seen

March 13, 2026, 2 a.m.

Risk Level

Risk Score

Dimension Baselines

In-scope matched dimensions contribute directly to the contextual score. Each value links to the corresponding report and latest computed baseline.

Create API Account Risk API Docs View Pricing

Briefing Notes

Ho Chi Minh City (HCMC) - Vietnam: risk 99 (high).
Risk rank #82 of 3219 regions.
Coverage 100.0% geolocated, confidence 88/100.
Push alert posture: Elevated (Elevated risk and active traffic).

Behavioral Risk

Model: v1 Computed: 2026-03-18 08:53:19

Risk score

Risk gradient

Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.

Annotator influence radar

Rendering annotator influence profile…

Normalized contribution (0..1) per annotator versus robust per-code envelope.

Key drivers

Sensitive file probing

Requests target commonly sensitive files, configs, backups, or administrative resources.

sfp

Points 3956.92

Path traversal attempts

Request paths/parameters resemble attempts to access files outside intended directories.

trav

Points 2359.76

Credential brute forcing

Repeated authentication attempts consistent with password guessing or credential stuffing.

cred

Points 2295.70

Scan velocity

High request rate and broad endpoint coverage suggest scanning or automated enumeration.

scan_velocity

Points 1343.88

Command injection attempts

Request content resembles attempts to execute OS commands via an application.

cmdi

Points 861.90

Automated client behavior

Traffic patterns strongly suggest automation rather than a human-operated browser.

bot

Points 503.00

Protocol anomaly

Request structure or protocol-level signals deviate from typical browser HTTP traffic.

proto

Points 154.72

User-Agent anomaly

User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.

Points 74.16

HTTP method anomaly

Unusual or unexpected HTTP methods observed for the target endpoints.

method

Points 40.80

Firewall/VPN Console Probing

Requests match known firewall, VPN, and gateway admin/login surfaces or client artifacts, indicating explicit probing of security-device endpoints.

fwprobe

Points 26.10

Request size anomaly

Requests are unusually large or shaped in a way that suggests abuse or automation.

request_size

Points 19.20

Referrer abuse

Referrer patterns look manipulated, irrelevant, or inconsistent with normal navigation.

ref

Points 1.08

Top Organizations Operating In The Region

Most-observed organizations in this region

No org rollups available.

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this region.

Loading activity…

Daily activity (hits per day). Total in window: —.

Traffic rollup

HTTP status classes, URL diversity, and totals.

2xx

55575

3xx

17024

4xx

12432

5xx

1262

Unique URLs

Total hits

86391

First seen

July 10, 2023, 3 a.m.

Last seen

March 13, 2026, 2 a.m.

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Uses totals aggregation and renders a donut.

Loading status mix…

Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this region snapshot (peer IPs with coordinates).

Loading map…

Top Autonomous System Networks

Most-observed networks in this region

No ASN rollups available.