âš TROYANOSYVIRUS
Active Threat • MEDIUM

92.35.66.80

Country of Origin🇸🇪 SE
First Detection1/4/2026
Last Activity1/13/2026
ISPTelenor Sverige AB
🎯
40
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
4
Malware

Geolocation

Country
🇸🇪 SE
City
Södertälje
ASN
AS8434
ISP
Telenor Sverige AB

Attack Types

adbhoney

Attacked Ports

5555

Associated Malware

d7188b8c575367e10ea8...→d4e8c642ac8485d2ac31...→608ee011537005f368c9...→7a48c93c5cb63a09505a...→

Executed Commands

$rm -rf /data/local/tmp/*4x
$ps | grep log2x
$/data/local/tmp/nohup su -c /data/local/tmp/log2x
$rm /data/local/tmp/tv.apk2x
$pm install /data/local/tmp/tv.apk2x
$/data/local/tmp/nohup /data/local/tmp/log2x
$pm path com.google.home.tv2x
$chmod 0755 /data/local/tmp/nohup2x
$chmod 0755 /data/local/tmp/log2x
$ps | grep rig2x

Risk Assessment

40
/100
LowMediumHighCritical