IntrusionLabs IntrusionLabs
← Back to feed

204.168.220.82

Threat Confidence
26%
Location
🇫🇮 FI / Helsinki
ASN
AS24940 · Hetzner Online GmbH
Cloud Provider
Total Events
16
Average by volume
Agent Count
1
First / Last Seen
2026-04-04 06:51 — 2026-04-04 08:14
Attack Types
ssh:bruteforce
MITRE ATT&CK Techniques
Initial Access
T1078
Persistence
T1053.003
Credential Access
T1110 T1110.001 T1552.003
Discovery
T1016 T1082 T1083
External Corroboration
Not flagged by any external feeds
Campaigns
Not associated with any campaigns
Session Forensics
reconnaissance ×2
Sessions
2 (2 with login)
Avg Depth Score
0.6
Commands Executed
2
Files Downloaded
0
Notable Commands
  • hostname; echo '___BSEP_A1B2C3___'; uname -a; echo '___BSEP_A1B2C3___'; whoami; echo '___BSEP_A1B2C3___'; pwd; echo '___BSEP_A1B2C3___'; ls -la /; echo '___BSEP_A1B2C3___'; ps aux | head -15; echo '___BSEP_A1B2C3___'; netstat -tulpn | head -10; echo '___BSEP_A1B2C3___'; history | tail -5; echo '___BSEP_A1B2C3___'; ssh -V 2>&1; echo '___BSEP_A1B2C3___'; uptime; echo '___BSEP_A1B2C3___'; mount | head -5; echo '___BSEP_A1B2C3___'; env | head -10; echo '___BSEP_A1B2C3___'; cat /etc/os-release 2>/dev/null | head -6; echo '___BSEP_A1B2C3___'; grep MemTotal /proc/meminfo 2>/dev/null; echo '___BSEP_A1B2C3___'; df -h / 2>/dev/null | tail -1; echo '___BSEP_A1B2C3___'; cat /proc/version 2>/dev/null; echo '___BSEP_A1B2C3___'; grep 'model name' /proc/cpuinfo 2>/dev/null | head -1; echo '___BSEP_A1B2C3___'; cat /etc/issue 2>/dev/null; echo '___BSEP_A1B2C3___'; last -n 3 2>/dev/null | head -3; echo '___BSEP_A1B2C3___'; ls /dev 2>/dev/null | wc -l; echo '___BSEP_A1B2C3___'; ls /var/log 2>/dev/null | wc -l; echo '___BSEP_A1B2C3___'; ls /opt 2>/dev/null; echo '___BSEP_A1B2C3___'; crontab -l 2>/dev/null | head -5; echo '___BSEP_A1B2C3___'; nproc 2>/dev/null || grep -c '^processor' /proc/cpuinfo 2>/dev/null
Fingerprints
HASSH
16443846184eafde36765c9bab2f4397
SSH Client
SSH-2.0-Go
Evidence Timeline
Reconnaissance 81f39eac3627 w4m_singapore_01 · 2026-04-04 08:14
1 1 60%
Loading events...
Reconnaissance 6ae3ea1423f2 w4m_singapore_01 · 2026-04-04 06:51
1 1 60%
Loading events...