⚠TROYANOSYVIRUS
Active Threat β€’ MEDIUM

101.47.142.22

First Detection1/13/2026
Last Activity1/13/2026
ISPByteplus Pte. Ltd.
🎯
237
Total Attacks
πŸ”Œ
1
Ports
πŸ“‘
1
Attack Types
🦠
20
Malware

Geolocation

Country
πŸ‡ΈπŸ‡¬ Singapore
City
Singapore
ASN
AS150436
ISP
Byteplus Pte. Ltd.

Attack Types

cowrie

Attacked Ports

22

Associated Malware

ab1fb68311b4d2a71812...β†’f25297859cf0a70af5c0...β†’a28dd0be4d71a20d853d...β†’afd0dd76c8d59e416fec...β†’5c0be87ed7434d69005f...β†’

Attempted Credentials

πŸ”botuser1/!
1x
πŸ”alex/P@ssw0rd1!
1x
πŸ”vpsuser/password1
1x
πŸ”ftp-admin/20252025
1x
πŸ”sftp/sftppass
1x
πŸ”administrador/P@ssw0rd1!
1x
πŸ”ftpadmin/3245gs5662d34
1x
πŸ”arkserver/password@123
1x
πŸ”odoo15/odoo15test
1x
πŸ”ftpadmin/Password1
1x
πŸ”botuser1/3245gs5662d34
1x
πŸ”backupuser/2026
1x
πŸ”sammy/123456789
1x
πŸ”deployer/Passw0rd@123
1x
πŸ”builduser/123456789
1x

Executed Commands

$cd ~; chattr -ia .ssh; lockr -ia .ssh2x
$lscpu | grep Model2x
$ls -lh $(which ls)2x
$cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'2x
$Enter new UNIX password: 2x
$uname -a2x
$w2x
$cat /proc/cpuinfo | grep name | wc -l2x
$lockr -ia .ssh2x
$top2x

Risk Assessment

55
/100
LowMediumHighCritical