← Back to feed

49.124.153.45

Threat Confidence
32%
Location
🇲🇾 MY
ASN
AS4818 · DiGi Telecommunications Sdn. Bhd.
Cloud Provider
Total Events
11
Below average by volume
Agent Count
1
First / Last Seen
2026-02-25 13:08 — 2026-03-16 02:53
Attack Types
ssh:bruteforce
External Corroboration
Not flagged by any external feeds
Campaigns
Subnet 49.124.153.0/24
SUBNET · 3 IPs · 18 events
Session Forensics
proxy_abuser ×1 credential_harvester ×1
Sessions
2 (1 with login)
Avg Depth Score
0.6
Commands Executed
0
Files Downloaded
0
Fingerprints
HASSH
acaa53e0a7d7ac7d1255103f37901306
SSH Client
SSH-2.0-OpenSSH_7.4
Recent Events (last 50)
Timestamp Port Proto Event Location
2026-03-16 02:53:06 :22 ssh cowrie.session.closed sin
2026-03-16 02:53:02 :25 ssh cowrie.direct-tcpip.request sin
2026-03-16 02:53:02 :22 ssh cowrie.login.success sin
2026-03-16 02:53:01 :22 ssh cowrie.client.kex sin
2026-03-16 02:53:01 :22 ssh cowrie.client.version sin
2026-03-16 02:53:00 :22 ssh cowrie.session.connect sin
2026-02-25 13:08:16 :22 ssh cowrie.session.closed sin
2026-02-25 13:08:15 :22 ssh cowrie.login.failed sin
2026-02-25 13:08:13 :22 ssh cowrie.client.kex sin
2026-02-25 13:08:13 :22 ssh cowrie.client.version sin
2026-02-25 13:08:13 :22 ssh cowrie.session.connect sin