⚠TROYANOSYVIRUS
Active Threat β€’ HIGH

185.116.160.35

First Detection2/2/2026
Last Activity2/20/2026
ISPOVH SAS
🎯
755
Total Attacks
πŸ”Œ
1
Ports
πŸ“‘
1
Attack Types
🦠
25
Malware

Geolocation

Country
πŸ‡ΈπŸ‡¬ Singapore
City
Unknown
ASN
AS16276
ISP
OVH SAS

Attack Types

cowrie

Attacked Ports

22

Associated Malware

0104c5fe1f8a9644b172...β†’09a3e612f8cad1560057...β†’28720365c5e7476a011e...β†’28ba533b0f3c4df63d6b...β†’317f30a0d1f2e80317bb...β†’

Attempted Credentials

πŸ”345gs5662d34/345gs5662d34
4x
πŸ”claude/claude123
2x
πŸ”sammy/Aa123123
1x
πŸ”root/Aa_123456
1x
πŸ”launcher/launcher123
1x
πŸ”luna/luna
1x
πŸ”frappe/password
1x
πŸ”root/c9p5au8naa
1x
πŸ”maman/12345678
1x
πŸ”ssh-user/0
1x
πŸ”exam/exam@123
1x
πŸ”socksuser/1234
1x
πŸ”postfixtester/123
1x
πŸ”pa/pa
1x
πŸ”root/456789
1x

Executed Commands

$Enter new UNIX password:4x
$cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'4x
$lockr -ia .ssh4x
$w4x
$top4x
$lscpu | grep Model3x
$uname3x
$free -m | grep Mem | awk '{print $2 ,$3, $4, $5, $6, $7}'3x
$cd ~; chattr -ia .ssh; lockr -ia .ssh3x
$uname -a3x

Risk Assessment

65
/100
LowMediumHighCritical