← Back to feed
13.66.174.85
Location
🇺🇸 US
ASN
AS8075 · Microsoft Corporation
Cloud Provider
Microsoft Azure
Total Events
220
Above average by volume
Agent Count
1
First / Last Seen
2026-04-08 17:09 — 2026-04-08 20:09
Attack Types
MITRE ATT&CK Techniques
External Corroboration
Not flagged by any external feeds
Campaigns
Not associated with any campaigns
Session Forensics
Sessions
28 (26 with login)
Avg Depth Score
0.58
Commands Executed
28
Files Downloaded
0
Notable Commands
- hostname
- netstat -tulpn | head -10
- env | head -10
- mount | head -5
- nproc 2>/dev/null || (grep -c '^processor' /proc/cpuinfo 2>/dev/null) || echo 0
- grep -c ^processor /proc/cpuinfo 2 > /dev/null
- pwd
- history | tail -5
- whoami
- ls -la /
- uname -a
- uptime
- uname -m 2>/dev/null || echo unknown
Fingerprints
HASSH
SSH Client
Evidence Timeline
Reconnaissance
d873472dc137
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ hostname
Reconnaissance
4848bb4d82fb
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ netstat -tulpn | head -10
Reconnaissance
75e63421c9fd
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ hostname
Reconnaissance
a664b2ba1966
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ env | head -10
Reconnaissance
def223577945
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ mount | head -5
Reconnaissance
1609a4dfbeda
LOGIN
2
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ nproc 2>/dev/null || (grep -c '^processor' /proc/cpuinfo 2>…$ grep -c ^processor /proc/cpuinfo 2 > /dev/null
Reconnaissance
d51b95eb1169
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ pwd
Reconnaissance
fe46d2bed280
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ hostname
Reconnaissance
afb4268d6a00
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ history | tail -5
Reconnaissance
5b7b46d25a3e
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ whoami
Reconnaissance
56a586073087
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ ls -la /
Reconnaissance
c4fe1d91d20b
LOGIN
2
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ nproc 2>/dev/null || (grep -c '^processor' /proc/cpuinfo 2>…$ grep -c ^processor /proc/cpuinfo 2 > /dev/null
Reconnaissance
4c689f89483e
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ uname -a
Reconnaissance
0b502d6373cb
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ uname -a
Reconnaissance
ff9c0fc5575d
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ netstat -tulpn | head -10
Reconnaissance
8bf6b74115e5
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ uname -a
Reconnaissance
3349a1f3e8d1
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ history | tail -5
Reconnaissance
d61d7d3e0f80
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ whoami
Credential Harvester
9c78eaae6aa4
1
35%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
Reconnaissance
ed7ea0d2d64f
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ mount | head -5
Reconnaissance
abf91916ecbb
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ hostname
Reconnaissance
3dc887de1f18
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ hostname
Reconnaissance
9abba222fc54
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ uptime
Reconnaissance
cd054e38aae7
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ mount | head -5
Credential Harvester
2e2eca516336
1
35%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
Reconnaissance
c5fc04cff4da
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ uname -m 2>/dev/null || echo unknown
Reconnaissance
4e00dd4327ed
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ whoami
Reconnaissance
1a809e3b281a
LOGIN
1
1
60%
Loading events...
HASSH 16443846184eafd…
SSH-2.0-Go
$ uname -a