⚠TROYANOSYVIRUS
Active Threat β€’ MEDIUM

20.109.38.241

First Detection2/11/2026
Last Activity2/12/2026
ISPMicrosoft Corporation
🎯
1515
Total Attacks
πŸ”Œ
1
Ports
πŸ“‘
1
Attack Types
🦠
6
Malware

Geolocation

Country
πŸ‡ΊπŸ‡Έ United States
City
Boydton
ASN
AS8075
ISP
Microsoft Corporation

Attack Types

cowrie

Attacked Ports

22

Associated Malware

013e4f878c37bf7d147c...β†’352110e27ca54240da15...β†’7063dece7cccf374d9fa...β†’cbee11b9c5516e395e25...β†’e8be2a33d35f63951906...β†’

Attempted Credentials

πŸ”root/1936
4x
πŸ”root/1997
4x
πŸ”root/1923
4x
πŸ”root/1966
4x
πŸ”root/1958
4x
πŸ”root/1971
4x
πŸ”root/1950
4x
πŸ”root/12
4x
πŸ”root/123123aa!
4x
πŸ”root/1977
4x
πŸ”root/1992
4x
πŸ”root/1932
4x
πŸ”root/1930
4x
πŸ”root/1960
4x
πŸ”root/1929
4x

Executed Commands

$grep model name /proc/cpuinfo 2 > /dev/null | head -1 | cut -d : -f2- | sed s/^ *// | xargs1x
$hostname1x
$grep 'model name' /proc/cpuinfo 2>/dev/null | head -1 | cut -d ':' -f2- | sed 's/^ *//' | xargs || echo unknown1x
$ps aux | head -101x
$netstat -tulpn | head -101x
$uname -m 2>/dev/null || echo unknown1x

Risk Assessment

55
/100
LowMediumHighCritical