← Back to feed

196.196.53.139

TAGGED SUSPICIOUS how we decide →

Threat Confidence

49%

Location

🇱🇻 LV / Riga

ASN

AS41564 · Orion Network Limited

Cloud Provider

—

Total Events

Average by volume

Agent Count

First / Last Seen

2026-05-04 01:40 — 2026-05-04 19:26

Attack Types

ssh:bruteforce

MITRE ATT&CK Techniques

Reconnaissance

T1595.002

Initial Access

T1078

Credential Access

T1110 T1110.001

Discovery

T1016 T1082

External Corroboration

VPN Detection (X4BNet)

Reported 2026-05-04 19:05

vpn:detected

Blocklist.de

Reported 2026-05-04 19:01

blocklist_de:reported

Campaigns

HASSH 16443846184e… — SSH-2.0-Go (50 IPs, 12 countries) HASSH Active high 🇷🇴 RO

50 IPs 113843 events

ssh:bruteforce

2026-02-22 — ongoing · 50 IPs are running an identical SSH client (HASSH fingerprint 16443846184e…). Top network: Unmanaged Ltd (AS47890). Geographic and …

Session Forensics

reconnaissance ×1 credential_probe ×9 opportunistic_bruter ×2

Sessions

12 (3 with login)

Avg Depth Score

0.28

Commands Executed

Files Downloaded

Notable Commands

uptime

Fingerprints

HASSH

16443846184eafde36765c9bab2f4397

SSH Client

SSH-2.0-Go

Evidence Timeline

Credential Probe 28c936d64632 w4m_singapore_01 · 2026-05-04 19:26

1 20%

Loading events...

Credential Probe 438dd95da8ff w4m_singapore_01 · 2026-05-04 17:40

1 20%

Loading events...

Credential Probe ec19cee12495 w4m_singapore_01 · 2026-05-04 15:58

1 20%

Loading events...

Credential Probe fa4cfa6f249f w4m_singapore_01 · 2026-05-04 14:16

1 20%

Loading events...

Credential Probe 1b22cd4733ee w4m_singapore_01 · 2026-05-04 12:33

1 20%

Loading events...

Credential Probe 016f68c88516 w4m_singapore_01 · 2026-05-04 10:47

1 20%

Loading events...

Credential Probe 1e47e2c4316e w4m_singapore_01 · 2026-05-04 09:01

1 20%

Loading events...

Credential Probe 21c94811c859 w4m_singapore_01 · 2026-05-04 07:13

1 20%

Loading events...

Opportunistic Bruter 4f665810962e w4m_singapore_01 · 2026-05-04 05:23

1 50%

Loading events...

Credential Probe 2b4028506e77 w4m_singapore_01 · 2026-05-04 03:32

1 20%

Loading events...

Opportunistic Bruter 91fbac052853 w4m_singapore_01 · 2026-05-04 01:40

1 50%

Loading events...

Reconnaissance a20b849594eb w4m_singapore_01 · 2026-05-03 23:46

1 1 60%

Loading events...