⚠TROYANOSYVIRUS
Active Threat β€’ MEDIUM

52.159.228.211

First Detection2/25/2026
Last Activity2/25/2026
ISPMicrosoft Corporation
🎯
67
Total Attacks
πŸ”Œ
1
Ports
πŸ“‘
1
Attack Types
🦠
8
Malware

Geolocation

Country
πŸ‡ΊπŸ‡Έ United States
City
San Jose
ASN
AS8075
ISP
Microsoft Corporation

Attack Types

cowrie

Attacked Ports

22

Associated Malware

013e4f878c37bf7d147c...β†’28ba533b0f3c4df63d6b...β†’3b6409aecd4af0f82f5a...β†’54b13bf37f0f1c6d20bb...β†’8737483f9dc335904b0d...β†’

Attempted Credentials

πŸ”root/123
3x
πŸ”root/1
3x
πŸ”root/12
3x

Executed Commands

$env | head -101x
$pwd1x
$nproc 2>/dev/null || (grep -c '^processor' /proc/cpuinfo 2>/dev/null) || echo 01x
$grep model name /proc/cpuinfo 2 > /dev/null | head -1 | cut -d : -f2- | sed s/^ *// | xargs1x
$grep 'model name' /proc/cpuinfo 2>/dev/null | head -1 | cut -d ':' -f2- | sed 's/^ *//' | xargs || echo unknown1x
$uname -a1x
$grep -c ^processor /proc/cpuinfo 2 > /dev/null1x
$uname -m 2>/dev/null || echo unknown1x

Risk Assessment

45
/100
LowMediumHighCritical