Amenaza Activa • MEDIO

104.251.226.148

Pais de Origen🇭🇰 Hong Kong

Primera Deteccion4/4/2026

Ultima Actividad4/4/2026

ISPZhipinshang Hongkong Electron Communication Technology Limited

🎯

194

Ataques Totales

🔌

Puertos

📡

Tipos Ataque

🦠

Malware

Geolocalizacion

Pais: 🇭🇰 Hong Kong
Ciudad: Hong Kong
ASN: AS140042
ISP: Zhipinshang Hongkong Electron Communication Technology Limited

Tipos de Ataque

ssh_telnet_honeypot

Puertos Atacados

Malware Asociado

09a3e612f8cad1560057...→14af4ca846e6f2df5dfe...→28720365c5e7476a011e...→28ba533b0f3c4df63d6b...→3f1f9a5db692d999bb3d...→

Credenciales Intentadas

🔐sebas/sebas

🔐steam/1qaz@WSXEDC

🔐n8n/n8n08!

🔐intel/intel@123

🔐zero/zero

🔐user/12345a

🔐ubuntuftp/ubuntuftp

🔐root/QQaa123

🔐postgres/Passw0rd

🔐admin/test23

🔐zero/3245gs5662d34

🔐testmail1/testmail1

🔐test/testuser

🔐root/@WSX3edc$RFV

🔐root/12345678AA

Comandos Ejecutados

$Enter new UNIX password:2x

$lscpu | grep Model1x

$ls -lh $(which ls)1x

$cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'1x

$uname -a1x

$w1x

$cat /proc/cpuinfo | grep name | wc -l1x

$crontab -l1x

$cat /proc/cpuinfo | grep model | grep name | wc -l1x

$which ls1x

Exposicion segun Shodan InternetDBShodan

Datos de InternetDB, actualizacion no en tiempo real

Puertos

802222

CPEs

cpe:/a:f5:nginx

Evaluacion de Riesgo

/100

BajoMedioAltoCritico