⚠TROYANOSYVIRUS
Active Threat β€’ MEDIUM

41.63.62.103

Country of OriginπŸ‡ΏπŸ‡² ZM
First Detection1/17/2026
Last Activity1/17/2026
ISPZAMREN
🎯
278
Total Attacks
πŸ”Œ
1
Ports
πŸ“‘
1
Attack Types
🦠
22
Malware

Geolocation

Country
πŸ‡ΏπŸ‡² ZM
City
Lusaka
ASN
AS37532
ISP
ZAMREN

Attack Types

cowrie

Attacked Ports

22

Associated Malware

a7aa36c3bdff392eb5f7...β†’ab1fb68311b4d2a71812...β†’ef49c6f729132d052a0a...β†’607892c5f505cda7f14a...β†’f25297859cf0a70af5c0...β†’

Attempted Credentials

πŸ”345gs5662d34/345gs5662d34
2x
πŸ”omar/123456
1x
πŸ”network/network
1x
πŸ”root/qqqq1111
1x
πŸ”mantis/mantis
1x
πŸ”root/root@2024
1x
πŸ”root/zaq1@WSX3edc
1x
πŸ”root/Admin2024
1x
πŸ”user01/Huawei12#$
1x
πŸ”yana/yana
1x
πŸ”admin/999999999
1x
πŸ”mainuser/mainuser
1x
πŸ”root/1234@qwer
1x
πŸ”deploy/12345678910
1x
πŸ”root/s12345
1x

Executed Commands

$lockr -ia .ssh2x
$top2x
$uname -a2x
$uname -m2x
$w2x
$free -m | grep Mem | awk '{print $2 ,$3, $4, $5, $6, $7}'2x
$cd ~; chattr -ia .ssh; lockr -ia .ssh2x
$cat /proc/cpuinfo | grep name | wc -l2x
$cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'2x
$crontab -l2x

Risk Assessment

55
/100
LowMediumHighCritical