⚠TROYANOSYVIRUS

Monthly Report

December 2023

Complete analysis of malicious activity detected during the month.

373,957

Total Attacks

200

Unique IPs

30

Malware Samples

10

Source Countries

Top Countries

1🇺🇸US

254,235

2🇩🇪DE

24,076

3🇧🇷BR

23,147

4🇵🇱PL

23,055

5🇨🇳CN

8,348

6🇷🇴RO

6,287

7🇸🇮SI

4,784

8🇳🇱NL

3,982

9🇬🇧GB

3,716

10🇸🇬SG

2,774

Top Malicious IPs

#	IP	Country	Attacks	Risk
1	77.83.240.70	🇺🇸	237,744	85
2	209.38.252.85	🇩🇪	105	85
3	3.134.148.59	🇺🇸	905	85
4	134.122.65.144	🇩🇪	132	85
5	3.130.96.91	🇺🇸	1,288	85
6	91.224.92.14	🇬🇧	597	80
7	46.101.193.56	🇩🇪	134	80
8	198.98.56.220	🇺🇸	642	80
9	165.232.74.217	🇩🇪	162	80
10	95.214.55.246	🇵🇱	23,055	75
11	80.13.153.140	🇫🇷	171	75
12	92.154.95.236	🇫🇷	136	75
13	89.42.231.179	🇳🇱	351	75
14	3.132.23.201	🇺🇸	940	75
15	46.101.248.36	🇩🇪	110	75

Top Malware

1x

1x

1x

1x

1x

1x

1x

1x

1x

1x

Top Commands

1lockr -ia .ssh825x

2cd ~; chattr -ia .ssh; lockr -ia .ssh825x

3cd ~ && rm -rf .ssh && mkdir .ssh && echo "ssh-rsa AAAAB3Nza...814x

4uname -a700x

5cat /proc/cpuinfo | grep name | wc -l700x

6df -h | head -n 2 | awk 'FNR == 2 {print $2;}'690x

7lscpu | grep Model688x

8cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$...687x

9uname687x

10whoami684x

← Previous month View all Next month →