Active Threat • MEDIUM

186.64.123.41

Country of Origin🇨🇱 CL

First Detection1/6/2026

Last Activity1/6/2026

ISPZAM LTDA.

🎯

238

Total Attacks

🔌

Ports

📡

Attack Types

🦠

Malware

Geolocation

Country: 🇨🇱 CL
City: Curicó
ASN: AS52368
ISP: ZAM LTDA.

Attack Types

cowrie

Attacked Ports

Associated Malware

01ba4719c80b6fe911b0...→a8460f446be540410004...→28720365c5e7476a011e...→afd0dd76c8d59e416fec...→50e721e49c013f00c62c...→

Attempted Credentials

🔐arjun/arjun123

🔐root/!QAZxsw2#EDCvfr4

🔐root/ZAQ!2wsxcde3

🔐claude/claude

🔐ronaldo/ronaldo

🔐ubuntu/123qweASD

🔐oficina/oficina

🔐debian/test123

🔐root/A1b2C3d4

🔐ubuntu/kuanke

🔐morteza/morteza@123

🔐root/Dd123456.

🔐claude/123

🔐claude/claude123

🔐root/1@qwaszX

Executed Commands

$crontab -l1x

$cat /proc/cpuinfo | grep model | grep name | wc -l1x

$which ls1x

$lscpu | grep Model1x

$echo "root:9aX3BZEyMcjK"|chpasswd|bash1x

$uname1x

$whoami1x

$df -h | head -n 2 | awk 'FNR == 2 {print $2;}'1x

$ls -lh $(which ls)1x

$cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'1x

Risk Assessment

/100

LowMediumHighCritical