IntrusionLabs IntrusionLabs
← Back to feed

66.116.199.61

TAGGED SUSPICIOUS how we decide →
Threat Confidence
14%
Location
🇮🇳 IN / Mumbai
ASN
AS31898 · Oracle Corporation
Cloud Provider
Total Events
23
Average by volume
Agent Count
1
First / Last Seen
2026-05-19 15:49 — 2026-05-20 08:13
Attack Types
ssh:bruteforce
MITRE ATT&CK Techniques
Reconnaissance
T1595.002
Initial Access
T1078
Credential Access
T1110 T1110.001
Discovery
T1016 T1082
External Corroboration
Not flagged by any external feeds
Campaigns
Not associated with any campaigns
Session Forensics
reconnaissance ×1 credential_probe ×3
Sessions
4 (1 with login)
Avg Depth Score
0.3
Commands Executed
1
Files Downloaded
0
Notable Commands
  • uname -a
Fingerprints
HASSH
16443846184eafde36765c9bab2f4397
SSH Client
SSH-2.0-Go
Evidence Timeline
Reconnaissance ead33e5b8133 newark_01 · 2026-05-20 08:13
1 1 60%
Loading events...
Credential Probe 8ee9dd1d3243 newark_01 · 2026-05-20 02:33
1 20%
Loading events...
Credential Probe 2aef62d069d4 newark_01 · 2026-05-19 21:09
1 20%
Loading events...
Credential Probe 7c954094bf9f newark_01 · 2026-05-19 15:49
1 20%
Loading events...