IntrusionLabs / threat intelligence

Sign in

← Back to feed

27.79.1.85

Threat Confidence

45%

Location

🇻🇳 VN / Da Nang

ASN

AS7552 · Viettel Group

Cloud Provider

—

Total Events

206

Above average by volume

Agent Count

1

First / Last Seen

2026-04-09 15:34 — 2026-04-09 16:12

Attack Types

ssh:bruteforce

MITRE ATT&CK Techniques

Reconnaissance

T1595

Credential Access

T1110 T1110.001

Discovery

T1046

Command and Control

T1090 T1572

External Corroboration

Not flagged by any external feeds

Campaigns

AS7552 Viettel Group ASN Active medium 🇻🇳 VN

10 IPs 2053 events

2026-02-16 — ongoing · 10 IPs from the same network (Viettel Group, AS7552) were active during overlapping time periods. Temporal correlation across …

Session Forensics

scanner ×2 proxy_abuser ×8 credential_harvester ×27

Sessions

37 (8 with login)

Avg Depth Score

0.45

Commands Executed

0

Files Downloaded

0

Fingerprints

HASSH

fda360b1b4f4d3455cb75c6e7edb1d11

SSH Client

SSH-2.0-AsyncSSH_2.1.0

Evidence Timeline

Credential Harvester 3cda592648b0 w4m_singapore_01 · 2026-04-09 16:12

1 35%

Loading events...

Credential Harvester a1974c4953b0 w4m_singapore_01 · 2026-04-09 16:11

1 35%

Loading events...

Credential Harvester a0aa7f62c53c w4m_singapore_01 · 2026-04-09 16:10

1 35%

Loading events...

Credential Harvester 6f34619b115f w4m_singapore_01 · 2026-04-09 16:09

1 35%

Loading events...

Credential Harvester 74a9331eb940 w4m_singapore_01 · 2026-04-09 16:08

1 35%

Loading events...

Proxy Abuser fb35ba7dce7f w4m_singapore_01 · 2026-04-09 16:07

1 85%

Loading events...

Credential Harvester 7ffc07d64b25 w4m_singapore_01 · 2026-04-09 16:06

1 35%

Loading events...

Credential Harvester fc9a5b435800 w4m_singapore_01 · 2026-04-09 16:05

1 35%

Loading events...

Credential Harvester 06399daa44f5 w4m_singapore_01 · 2026-04-09 16:05

1 35%

Loading events...

Credential Harvester 623ba703d3ba w4m_singapore_01 · 2026-04-09 16:04

1 35%

Loading events...

Credential Harvester 192c1abd224e w4m_singapore_01 · 2026-04-09 16:03

1 35%

Loading events...

Credential Harvester ab3b8fd77ab4 w4m_singapore_01 · 2026-04-09 16:02

1 35%

Loading events...

Proxy Abuser e9985c6299cf w4m_singapore_01 · 2026-04-09 16:02

1 85%

Loading events...

Proxy Abuser 5e0d056a610c w4m_singapore_01 · 2026-04-09 16:00

1 85%

Loading events...

Proxy Abuser 2dec68ddf7a6 w4m_singapore_01 · 2026-04-09 15:58

1 85%

Loading events...

Credential Harvester dc84b55313f8 w4m_singapore_01 · 2026-04-09 15:58

1 35%

Loading events...

Credential Harvester 04c37e6431c3 w4m_singapore_01 · 2026-04-09 15:56

1 35%

Loading events...

Credential Harvester 03530d73e6cb w4m_singapore_01 · 2026-04-09 15:55

1 35%

Loading events...

Scanner 0fb79cbf9a71 w4m_singapore_01 · 2026-04-09 15:54

15%

Loading events...

Credential Harvester 6176f73b672f w4m_singapore_01 · 2026-04-09 15:54

1 35%

Loading events...

Credential Harvester 4e2c5bd56a8c w4m_singapore_01 · 2026-04-09 15:51

1 35%

Loading events...

Scanner ee0aedd9f30a w4m_singapore_01 · 2026-04-09 15:50

15%

Loading events...

Credential Harvester 53362af25755 w4m_singapore_01 · 2026-04-09 15:50

1 35%

Loading events...

Credential Harvester fd4cf743ebfb w4m_singapore_01 · 2026-04-09 15:48

1 35%

Loading events...

Proxy Abuser 22d554f847c3 w4m_singapore_01 · 2026-04-09 15:48

1 85%

Loading events...

Proxy Abuser 25f25c69397b w4m_singapore_01 · 2026-04-09 15:48

1 85%

Loading events...

Credential Harvester fe7e69fafcc3 w4m_singapore_01 · 2026-04-09 15:45

1 35%

Loading events...

Credential Harvester a3536b113a6e w4m_singapore_01 · 2026-04-09 15:45

1 35%

Loading events...

Credential Harvester a28121e70a38 w4m_singapore_01 · 2026-04-09 15:43

1 35%

Loading events...

Credential Harvester 2f4e05ced69a w4m_singapore_01 · 2026-04-09 15:43

1 35%

Loading events...

Credential Harvester 1b0a627035d0 w4m_singapore_01 · 2026-04-09 15:41

1 35%

Loading events...

Proxy Abuser bbf45fdd843c w4m_singapore_01 · 2026-04-09 15:40

1 85%

Loading events...

Credential Harvester 0b9bf313de39 w4m_singapore_01 · 2026-04-09 15:40

1 35%

Loading events...

Credential Harvester a58cd36672e8 w4m_singapore_01 · 2026-04-09 15:39

1 35%

Loading events...

Credential Harvester a7e3f4bb72f3 w4m_singapore_01 · 2026-04-09 15:38

1 35%

Loading events...

Proxy Abuser 81d51de10931 w4m_singapore_01 · 2026-04-09 15:36

1 85%

Loading events...

Credential Harvester cc2770ee22e3 w4m_singapore_01 · 2026-04-09 15:34

1 35%

Loading events...