← Back to feed

130.185.239.222

TAGGED SUSPICIOUS how we decide →

Threat Confidence

50%

Location

🇺🇸 US / Chicago

ASN

AS32181 · GigeNET

Cloud Provider

—

Total Events

Above average by volume

Agent Count

First / Last Seen

2026-05-08 17:04 — 2026-06-07 09:17

Attack Types

ssh:bruteforce

MITRE ATT&CK Techniques

Reconnaissance

T1595.002

Credential Access

T1110 T1110.001

External Corroboration

Blocklist.de

Reported 2026-06-07 11:02

blocklist_de:reported

Campaigns

Multi-Agent Scan SCAN Active medium

207 IPs 239337 events

2026-05-21 — ongoing · 207 IPs independently targeted the same honeypot sensors within a 24-hour window. Scanning the same targets in close …

Multi-Agent Scan SCAN Active medium

184 IPs 257843 events

2026-05-08 — ongoing · 184 IPs independently targeted the same honeypot sensors within a 24-hour window. Scanning the same targets in close …

Multi-Agent Scan SCAN Active medium

13 IPs 4890 events

2026-05-03 — ongoing · 13 IPs independently targeted the same honeypot sensors within a 24-hour window. Scanning the same targets in close …

Multi-Agent Scan SCAN Active medium

4 IPs 772 events

2026-05-03 — ongoing · 4 IPs independently targeted the same honeypot sensors within a 24-hour window. Scanning the same targets in close …

Multi-Agent Scan SCAN Active medium

12 IPs 4095 events

2026-04-16 — ongoing · 12 IPs independently targeted the same honeypot sensors within a 24-hour window. Scanning the same targets in close …

Multi-Agent Scan SCAN Active medium

38 IPs 26809 events

2026-04-16 — ongoing · 38 IPs independently targeted the same honeypot sensors within a 24-hour window. Scanning the same targets in close …

Multi-Agent Scan SCAN Active medium

9 IPs 1533 events

2026-02-24 — ongoing · 9 IPs independently targeted the same honeypot sensors within a 24-hour window. Scanning the same targets in close …

Session Forensics

credential_probe ×1 credential_harvester ×4

Sessions

Avg Depth Score

0.36

Commands Executed

Files Downloaded

Fingerprints

HASSH

14b2ddda386a4d1006108ccd231b42fc

SSH Client

SSH-2.0-libssh2_1.11.0

Evidence Timeline

Credential Harvester 9426864ca53d w4m_seattle_01 · 2026-05-28 21:36

5 40%

Loading events...

Credential Harvester 7d1ed84fdced w4m_seattle_01 · 2026-05-18 10:02

5 40%

Loading events...

Credential Harvester 5deb52db8091 w4m_seattle_01 · 2026-05-18 08:41

5 40%

Loading events...

Credential Harvester ef1171ca69e0 w4m_seattle_01 · 2026-05-11 03:00

5 40%

Loading events...

Credential Probe 2e7614f0fab2 w4m_seattle_01 · 2026-05-08 17:04

1 20%

Loading events...