← Back to feed
Location
🇺🇸 US / Washington
ASN
AS8075 · Microsoft Corporation
Cloud Provider
Microsoft Azure
Total Events
959
Top 5% by volume
Agent Count
1
First / Last Seen
2026-05-08 12:08 — 2026-05-08 15:07
Attack Types
MITRE ATT&CK Techniques
Reconnaissance
Initial Access
Command and Control
External Corroboration
Not flagged by any external feeds
Campaigns
Not associated with any campaigns
Session Forensics
Sessions
54 (53 with login)
Avg Depth Score
0.99
Commands Executed
530
Files Downloaded
53
Notable Commands
- echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;; echo "===UNAME==="; uname -a 2>/dev/null || echo EMPTY;; echo "===WHOAMI==="; whoami 2>/dev/null || echo EMPTY;; echo "===PWD==="; pwd 2>/dev/null || echo EMPTY;; echo "===LS_ROOT==="; ls -la / 2>/dev/null | head -10 || echo EMPTY;; echo "===PS==="; ps aux 2>/dev/null | head -15 || echo EMPTY;; echo "===NETSTAT==="; netstat -tulpn 2>/dev/null | head -10 || echo EMPTY;; echo "===HISTORY==="; history 2>/dev/null | tail -5 || echo EMPTY;; echo "===SSH_VERSION==="; ssh -V 2>&1 || echo EMPTY;; echo "===UPTIME==="; uptime 2>/dev/null || echo EMPTY;; echo "===MOUNT==="; mount 2>/dev/null | head -5 || echo EMPTY;; echo "===ENV==="; env 2>/dev/null | head -10 || echo EMPTY;; echo "===CPU_CORES==="; nproc 2>/dev/null || grep -c '^processor' /proc/cpuinfo 2>/dev/null || echo 0;; echo "===ARCH==="; uname -m 2>/dev/null || echo unknown;; echo "===CPU_MODEL==="; grep 'model name' /proc/cpuinfo 2>/dev/null | head -1 | cut -d ':' -f2- | sed 's/^ *//' || echo unknown;; echo "===RESOURCES==="; echo MEMKB=$(awk '/MemTotal/{print $2}' /proc/meminfo 2>/dev/null) DISKKB=$(df / 2>/dev/null | awk 'NR==2{print $2}') USERCNT=$(wc -l < /etc/passwd 2>/dev/null) PKGCNT=$(dpkg -l 2>/dev/null | grep -c '^ii' || rpm -qa 2>/dev/null | wc -l || echo 0);; echo "===CONTAINER==="; cat /proc/1/cgroup 2>/dev/null | head -3; test -f /.dockerenv && echo DOCKERENV; test -f /run/.containerenv && echo CONTAINERENV; echo;; echo "===COWRIE==="; ls /opt/cowrie /home/richard /etc/cowrie 2>&1;; echo "===DMESG==="; dmesg 2>/dev/null | head -5 || echo EMPTY;; echo "===PORTS==="; ss -tulpn 2>/dev/null | grep LISTEN | head -20 || netstat -tulpn 2>/dev/null | grep LISTEN | head -20 || echo EMPTY;; echo "===NETCFG==="; ls -la /etc/network/interfaces /etc/sysconfig/network-scripts/ /etc/netplan/ 2>/dev/null | head -3 || echo EMPTY;; echo "===IPADDR==="; ip addr show 2>/dev/null | grep -E '^[0-9]+:' | head -5 || echo EMPTY;; echo "===IPROUTE==="; ip route show 2>/dev/null | head -3 || echo EMPTY;; echo "===WRITE==="; TF=/tmp/t_$$; echo test > $TF 2>&1 && echo WRITEOK && rm -f $TF || echo WRITEFAIL;; echo "===IDCHECK==="; id 2>/dev/null && echo IDOK || echo IDFAIL; whoami 2>/dev/null && echo WHOAMIOK || echo WHOAMIFAIL;; echo "===PKGMGR==="; which apt 2>/dev/null || which yum 2>/dev/null || which pacman 2>/dev/null || which zypper 2>/dev/null || echo NOPKG;; echo "===SERVICES==="; systemctl list-units --type=service --state=running 2>/dev/null | head -10 || echo NOSVC;; echo "===SOCKETS==="; ss -tuln 2>/dev/null | wc -l || echo 0;; echo "===GPU==="; nvidia-smi --query-gpu=name,memory.total,driver_version --format=csv,noheader 2>/dev/null || echo NOGPU;; echo "===MAXDISK==="; df -BG 2>/dev/null | awk 'NR>1{gsub("G","",$2); if($2+0>max) max=$2+0} END{print max+0}' || echo 0;; echo "===END==="
- awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null
- df / 2 > /dev/null | awk NR==2{print $2}
- wc -l < /etc/passwd 2 > /dev/null
- dpkg -l 2 > /dev/null | grep -c ^ii
- rpm -qa 2 > /dev/null | wc -l
- rpm -qa
- echo 0
- systemctl list-units --type=service --state=running
- nvidia-smi --query-gpu=name,memory.total,driver_version --format=csv,noheader
Fingerprints
HASSH
SSH Client
Evidence Timeline
Malware Dropper
4d7d82c729ce
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
6739bc0a1f9b
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
682af159589a
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
3ac799f83988
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
750fa719577c
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
bd8afb47685e
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
428934f4f889
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
9953649b593c
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
c20892e995a3
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
346e679437d1
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
bd06706506e0
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
bf9e0336c81b
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
38440dce27a6
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
485ef7df8e1a
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
f082cf867fcf
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
2de95f50e017
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
06aead7893f4
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
31f3dae1e55a
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
6de2ca3e20ec
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
2f072a701e5d
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
f5581a3b35a3
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
662c0d2b253f
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
fd8d3dd36f45
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
86a491dc107f
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
ebc9e962adf2
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
a36480fe5232
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
8488255bd810
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
9c6f8ada9ca0
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
156d7754fde6
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
176e580ba833
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
761a59fab97f
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
f61639647f19
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
8f10fa6a7072
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
a826d667f70e
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
d6a847576bbe
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
ed1709f20a60
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
1c22b47a6759
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
c50f93902d2f
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
e7efed3affc0
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
e712baf008f8
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
b22aa980346a
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
caa3b32a078a
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
1888d6e2a857
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
9d5abcb10528
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
f187e7daf74a
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
644ba0287f3c
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
fc46a87cd083
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
a5e5dd97678b
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
6d6e97d8e071
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
53c6a28a2c8d
LOGIN
10
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii