Active Threat • MEDIUM

92.191.96.171

Country of Origin🇪🇸 Spain

First Detection12/31/2025

Last Activity12/31/2025

ISPOrange Espagne SA

🎯

304

Total Attacks

🔌

Ports

📡

Attack Types

🦠

Malware

Geolocation

Country: 🇪🇸 Spain
City: Granada
ASN: AS12479
ISP: Orange Espagne SA

Attack Types

cowrie

Attacked Ports

Associated Malware

0a910ded2e9bda9450ca...→a8460f446be540410004...→28720365c5e7476a011e...→afd0dd76c8d59e416fec...→4d2d50c02237b368cfaf...→

Attempted Credentials

🔐345gs5662d34/345gs5662d34

🔐yckim/1

🔐print/P@ssw0rd123

🔐kafka/123

🔐jeff/password

🔐couchdb/3245gs5662d34

🔐nexus/P@ssw0rd123

🔐ina/1

🔐bruno/3245gs5662d34

🔐pierre/123123

🔐vincent/3245gs5662d34

🔐vps/vps123

🔐mongouser/mongouser@123

🔐vincent/1

🔐justin/justin2025

Executed Commands

$uname -m3x

$uname3x

$free -m | grep Mem | awk '{print $2 ,$3, $4, $5, $6, $7}'3x

$cat /proc/cpuinfo | grep name | wc -l3x

$cd ~; chattr -ia .ssh; lockr -ia .ssh3x

$crontab -l3x

$whoami3x

$df -h | head -n 2 | awk 'FNR == 2 {print $2;}'3x

$cat /proc/cpuinfo | grep model | grep name | wc -l3x

$which ls3x

Risk Assessment

/100

LowMediumHighCritical