← Back to feed
Location
🇺🇸 US / Cheyenne
ASN
AS8075 · Microsoft Corporation
Cloud Provider
Microsoft Azure
Total Events
1586
Top 5% by volume
Agent Count
1
First / Last Seen
2026-05-08 11:49 — 2026-05-08 15:06
Attack Types
MITRE ATT&CK Techniques
Initial Access
Command and Control
External Corroboration
Not flagged by any external feeds
Campaigns
Not associated with any campaigns
Session Forensics
Sessions
61 (61 with login)
Avg Depth Score
1.0
Commands Executed
1098
Files Downloaded
61
Notable Commands
- echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;; echo "===UNAME==="; uname -a 2>/dev/null || echo EMPTY;; echo "===WHOAMI==="; whoami 2>/dev/null || echo EMPTY;; echo "===PWD==="; pwd 2>/dev/null || echo EMPTY;; echo "===LS_ROOT==="; ls -la / 2>/dev/null | head -10 || echo EMPTY;; echo "===PS==="; ps aux 2>/dev/null | head -15 || echo EMPTY;; echo "===NETSTAT==="; netstat -tulpn 2>/dev/null | head -10 || echo EMPTY;; echo "===HISTORY==="; history 2>/dev/null | tail -5 || echo EMPTY;; echo "===SSH_VERSION==="; ssh -V 2>&1 || echo EMPTY;; echo "===UPTIME==="; uptime 2>/dev/null || echo EMPTY;; echo "===MOUNT==="; mount 2>/dev/null | head -5 || echo EMPTY;; echo "===ENV==="; env 2>/dev/null | head -10 || echo EMPTY;; echo "===CPU_CORES==="; nproc 2>/dev/null || grep -c '^processor' /proc/cpuinfo 2>/dev/null || echo 0;; echo "===ARCH==="; uname -m 2>/dev/null || echo unknown;; echo "===CPU_MODEL==="; grep 'model name' /proc/cpuinfo 2>/dev/null | head -1 | cut -d ':' -f2- | sed 's/^ *//' || echo unknown;; echo "===RESOURCES==="; echo MEMKB=$(awk '/MemTotal/{print $2}' /proc/meminfo 2>/dev/null) DISKKB=$(df / 2>/dev/null | awk 'NR==2{print $2}') USERCNT=$(wc -l < /etc/passwd 2>/dev/null) PKGCNT=$(dpkg -l 2>/dev/null | grep -c '^ii' || rpm -qa 2>/dev/null | wc -l || echo 0);; echo "===CONTAINER==="; cat /proc/1/cgroup 2>/dev/null | head -3; test -f /.dockerenv && echo DOCKERENV; test -f /run/.containerenv && echo CONTAINERENV; echo;; echo "===COWRIE==="; ls /opt/cowrie /home/richard /etc/cowrie 2>&1;; echo "===DMESG==="; dmesg 2>/dev/null | head -5 || echo EMPTY;; echo "===PORTS==="; ss -tulpn 2>/dev/null | grep LISTEN | head -20 || netstat -tulpn 2>/dev/null | grep LISTEN | head -20 || echo EMPTY;; echo "===NETCFG==="; ls -la /etc/network/interfaces /etc/sysconfig/network-scripts/ /etc/netplan/ 2>/dev/null | head -3 || echo EMPTY;; echo "===IPADDR==="; ip addr show 2>/dev/null | grep -E '^[0-9]+:' | head -5 || echo EMPTY;; echo "===IPROUTE==="; ip route show 2>/dev/null | head -3 || echo EMPTY;; echo "===WRITE==="; TF=/tmp/t_$$; echo test > $TF 2>&1 && echo WRITEOK && rm -f $TF || echo WRITEFAIL;; echo "===IDCHECK==="; id 2>/dev/null && echo IDOK || echo IDFAIL; whoami 2>/dev/null && echo WHOAMIOK || echo WHOAMIFAIL;; echo "===PKGMGR==="; which apt 2>/dev/null || which yum 2>/dev/null || which pacman 2>/dev/null || which zypper 2>/dev/null || echo NOPKG;; echo "===SERVICES==="; systemctl list-units --type=service --state=running 2>/dev/null | head -10 || echo NOSVC;; echo "===SOCKETS==="; ss -tuln 2>/dev/null | wc -l || echo 0;; echo "===GPU==="; nvidia-smi --query-gpu=name,memory.total,driver_version --format=csv,noheader 2>/dev/null || echo NOGPU;; echo "===MAXDISK==="; df -BG 2>/dev/null | awk 'NR>1{gsub("G","",$2); if($2+0>max) max=$2+0} END{print max+0}' || echo 0;; echo "===END==="
- awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null
- df / 2 > /dev/null | awk NR==2{print $2}
- wc -l < /etc/passwd 2 > /dev/null
- dpkg -l 2 > /dev/null | grep -c ^ii
- dpkg -l
- rpm -qa 2 > /dev/null | wc -l
- rpm -qa
- echo 0
- sed s/^ *//
Fingerprints
HASSH
SSH Client
Evidence Timeline
Malware Dropper
a2f641636440
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
346e3b79a46a
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
682c030eb66c
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
6592310d4611
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
f7489a8b7892
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
dfdc3d2a910c
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
0d5a13ac6841
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
e704ef279b03
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
7a4ca90ef22f
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
3d20fab68e79
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
ce64aaffa768
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
5abb3c24063c
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
4e7da1d33c1d
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
374be7561580
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
f8540c048e3e
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
022dcf66f464
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
9385918f1723
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
917c0275dcce
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
23244f61e3e0
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
2555b7a08820
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
a5cfe2576f00
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
7f03fca26b74
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
4d4e48076e68
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
9678a7bfd57e
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
313bbeccf6ee
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
b45d00db8e8c
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
487d65ab8418
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
6eca35603f6d
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
69da8743c3a6
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
40d10a4202eb
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
9d1334b74de1
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
3e06374b3668
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
ec73b74c99cf
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
dbe417401b62
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
668bece21ab3
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
35a04e815ec3
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
008752fbad03
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
627f2b40a719
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
1753ee7b12a3
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
12ce99dc161c
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
ebfad8ccaeac
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
0dfc8f0e7174
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
7f770813a9f8
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
73694404110e
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
0ca68c40b725
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
20767a0c3dad
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
a093bdc0169b
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
f03a8df179d6
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
88271ba8b8fd
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii
Malware Dropper
72c71bab9dc6
LOGIN
18
1
1
100%
Loading events...
HASSH 41436928ad6c561…
SSH-2.0-Go
$ echo "===HOSTNAME==="; hostname 2>/dev/null || echo EMPTY;;…$ awk /MemTotal/{print $2} /proc/meminfo 2 > /dev/null$ df / 2 > /dev/null | awk NR==2{print $2}$ wc -l < /etc/passwd 2 > /dev/null$ dpkg -l 2 > /dev/null | grep -c ^ii