TROYANOSYVIRUS
Active Threat β€’ LOW

104.36.21.137

First Detection4/29/2026
Last Activity4/29/2026
ISPiCastCenter
🎯
65
Total Attacks
πŸ”Œ
1
Ports
πŸ“‘
1
Attack Types
🦠
1
Malware

Geolocation

Country
πŸ‡ΊπŸ‡Έ United States
City
Phoenix
ASN
AS53767
ISP
iCastCenter

Attack Types

ssh_telnet_honeypot

Attacked Ports

22

Associated Malware

0eea9ca9f3fbc41811e1...β†’

Attempted Credentials

πŸ”root/root
1x
πŸ”admin/(empty)
1x
πŸ”user/P@ssw0rd
1x
πŸ”root/qaszde123
1x
πŸ”root/qwerty123
1x
πŸ”admin/1234
1x
πŸ”user/user
1x
πŸ”admin/admin
1x
πŸ”root/12345678
1x
πŸ”ubuntu/ubuntu
1x
πŸ”root/Qaszde123@
1x

Executed Commands

$echo SHELL_TEST2x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
228031210
Vulnerabilities
CVE-2025-23419CVE-2023-44487
CPEs
cpe:/o:canonical:ubuntu_linuxcpe:/a:openbsd:openssh:8.2p1cpe:/a:f5:nginxcpe:/a:f5:nginx:1.21.0

Risk Assessment

35
/100
LowMediumHighCritical