TROYANOSYVIRUS
Active ThreatHIGH

120.48.82.124

Country of Origin🇨🇳 China
First Detection1/22/2026
Last Activity4/6/2026
ISPBeijing Baidu Netcom Science and Technology Co., Ltd.
🎯
101
Total Attacks
🔌
2
Ports
📡
2
Attack Types
🦠
2
Malware

Geolocation

Country
🇨🇳 China
City
Beijing
ASN
AS38365
ISP
Beijing Baidu Netcom Science and Technology Co., Ltd.

Attack Types

ssh_telnet_honeypot
tcp_trap

Attacked Ports

2222222

Associated Malware

6fa4c8ac58e7a1d947dc...e3b0c44298fc1c149afb...

Attempted Credentials

🔐root/123
1x
🔐root/Nikhil123
1x
🔐root/---fuck_you----
1x
🔐root/12345
1x

Executed Commands

$uname -s -m1x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
2280888
Vulnerabilities
CVE-2023-51767CVE-2016-20012CVE-2025-32728CVE-2023-38408CVE-2019-6110CVE-2019-6111CVE-2023-48795CVE-2008-3844CVE-2021-36368CVE-2023-51385CVE-2020-14145CVE-2025-26465CVE-2018-15919CVE-2020-15778CVE-2021-41617CVE-2018-20685CVE-2017-15906CVE-2007-2768CVE-2018-15473CVE-2019-6109
CPEs
cpe:/a:openbsd:openssh:7.4cpe:/a:f5:nginx

Risk Assessment

65
/100
LowMediumHighCritical