⚠TROYANOSYVIRUS
Active Threat β€’ HIGH

190.156.238.162

Country of OriginπŸ‡¨πŸ‡΄ Colombia
First Detection1/6/2026
Last Activity1/9/2026
ISPTelmex Colombia S.A.
🎯
585
Total Attacks
πŸ”Œ
1
Ports
πŸ“‘
1
Attack Types
🦠
24
Malware

Geolocation

Country
πŸ‡¨πŸ‡΄ Colombia
City
MedellΓ­n
ASN
AS10620
ISP
Telmex Colombia S.A.

Attack Types

cowrie

Attacked Ports

22

Associated Malware

a25a86deed0962f6f645...β†’28720365c5e7476a011e...β†’afd0dd76c8d59e416fec...β†’acbb1076610f28e65138...β†’50e721e49c013f00c62c...β†’

Attempted Credentials

πŸ”teamspeak/0000
1x
πŸ”frappe/Abc@123456
1x
πŸ”nginx/12345678
1x
πŸ”syncthing/syncthing
1x
πŸ”newuser/newuser123
1x
πŸ”root/root
1x
πŸ”tester/tester
1x
πŸ”teamspeak/1234567890
1x
πŸ”root/Aa12345678
1x
πŸ”vpn/changeme
1x
πŸ”botuser/qwe123
1x
πŸ”hysteria/hysteria
1x
πŸ”git/admin
1x
πŸ”postgres/changeme123
1x
πŸ”admin/admin2012
1x

Executed Commands

$top4x
$w4x
$Enter new UNIX password:4x
$uname -m4x
$uname4x
$free -m | grep Mem | awk '{print $2 ,$3, $4, $5, $6, $7}'4x
$cat /proc/cpuinfo | grep name | wc -l4x
$cd ~; chattr -ia .ssh; lockr -ia .ssh4x
$whoami4x
$df -h | head -n 2 | awk 'FNR == 2 {print $2;}'4x

Risk Assessment

62
/100
LowMediumHighCritical