TROYANOSYVIRUS
Active Threat β€’ MEDIUM

185.66.88.88

Country of OriginπŸ‡ΊπŸ‡¦ Ukraine
First Detection5/6/2026
Last Activity5/6/2026
ISPVirtual Systems LLC
🎯
32
Total Attacks
πŸ”Œ
3
Ports
πŸ“‘
2
Attack Types
🦠
2
Malware

Geolocation

Country
πŸ‡ΊπŸ‡¦ Ukraine
City
Unknown
ASN
AS30860
ISP
Virtual Systems LLC

Attack Types

ssh_telnet_honeypot
malware_capture

Attacked Ports

22135445

Associated Malware

a56145270ce6b3bebd1d...β†’f05a746b8cef7e4a19ba...β†’

Attempted Credentials

πŸ”HelpAssistant/HelpAssistant
1x
πŸ”SUPPORT_388945a0/SUPPORT_388945a0
1x
πŸ”Administrator/Administrator
1x
πŸ”Guest/Guest
1x

Executed Commands

$whoami /priv1x
$id1x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
22
Hostnames
dedicated.vsys.host
CPEs
cpe:/o:canonical:ubuntu_linuxcpe:/a:openbsd:openssh:9.6p1

Risk Assessment

40
/100
LowMediumHighCritical