TROYANOSYVIRUS
Active ThreatHIGH

123.58.200.147

Country of Origin🇰🇷 South Korea
First Detection12/30/2025
Last Activity4/15/2026
ISPUCLOUD INFORMATION TECHNOLOGY HK LIMITED
🎯
240
Total Attacks
🔌
26
Ports
📡
3
Attack Types
🦠
0
Malware

Geolocation

Country
🇰🇷 South Korea
City
Seoul
ASN
AS135377
ISP
UCLOUD INFORMATION TECHNOLOGY HK LIMITED

Attack Types

ssh_telnet_honeypot
malware_capture
tcp_trap

Attacked Ports

221024102818832052207721053306522271708009808180838087808888899004100821025012082+6

Associated Malware

No associated malware

Attempted Credentials

🔐root/(empty)
1x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
22
Vulnerabilities
CVE-2019-16905CVE-2021-41617CVE-2023-48795CVE-2025-32728CVE-2007-2768CVE-2023-51385CVE-2023-51767CVE-2021-36368CVE-2020-15778CVE-2020-14145CVE-2008-3844CVE-2016-20012CVE-2023-38408CVE-2025-26465
CPEs
cpe:/a:openbsd:openssh:8.0

Risk Assessment

70
/100
LowMediumHighCritical