← Back to feed

64.236.142.131

Threat Confidence
27%
Location
🇺🇸 US / Chicago
ASN
AS8075 · Microsoft Corporation
Cloud Provider
Microsoft Azure
Total Events
24
Average by volume
Agent Count
1
First / Last Seen
2026-02-27 17:58 — 2026-02-27 19:45
Attack Types
ssh:bruteforce
External Corroboration
Not flagged by any external feeds
Campaigns
Not associated with any campaigns
Session Forensics
reconnaissance ×3
Sessions
3 (3 with login)
Avg Depth Score
0.6
Commands Executed
3
Files Downloaded
0
Notable Commands
Fingerprints
HASSH
16443846184eafde36765c9bab2f4397
SSH Client
SSH-2.0-Go
Recent Events (last 50)
Timestamp Port Proto Event Location
2026-02-27 19:45:41 :22 ssh cowrie.session.closed sea
2026-02-27 19:45:41 :22 ssh cowrie.log.closed sea
2026-02-27 19:45:41 :22 ssh cowrie.command.input sea
2026-02-27 19:45:41 :22 ssh cowrie.session.params sea
2026-02-27 19:45:41 :22 ssh cowrie.login.success sea
2026-02-27 19:45:41 :22 ssh cowrie.client.kex sea
2026-02-27 19:45:40 :22 ssh cowrie.client.version sea
2026-02-27 19:45:40 :22 ssh cowrie.session.connect sea
2026-02-27 18:51:24 :22 ssh cowrie.session.closed sea
2026-02-27 18:51:24 :22 ssh cowrie.log.closed sea
2026-02-27 18:51:24 :22 ssh cowrie.command.input sea
2026-02-27 18:51:24 :22 ssh cowrie.session.params sea
2026-02-27 18:51:24 :22 ssh cowrie.login.success sea
2026-02-27 18:51:24 :22 ssh cowrie.client.kex sea
2026-02-27 18:51:24 :22 ssh cowrie.client.version sea
2026-02-27 18:51:24 :22 ssh cowrie.session.connect sea
2026-02-27 17:58:25 :22 ssh cowrie.session.closed sea
2026-02-27 17:58:25 :22 ssh cowrie.log.closed sea
2026-02-27 17:58:25 :22 ssh cowrie.command.input sea
2026-02-27 17:58:25 :22 ssh cowrie.session.params sea
2026-02-27 17:58:25 :22 ssh cowrie.login.success sea
2026-02-27 17:58:25 :22 ssh cowrie.client.kex sea
2026-02-27 17:58:25 :22 ssh cowrie.client.version sea
2026-02-27 17:58:25 :22 ssh cowrie.session.connect sea