IntrusionLabs IntrusionLabs
← Back to feed

66.116.243.206

TAGGED SUSPICIOUS how we decide →
Threat Confidence
28%
Location
🇮🇳 IN / Mumbai
ASN
AS31898 · Oracle Corporation
Cloud Provider
Total Events
43
Average by volume
Agent Count
1
First / Last Seen
2026-05-19 19:39 — 2026-05-21 12:18
Attack Types
ssh:bruteforce
MITRE ATT&CK Techniques
Reconnaissance
T1595.002
Initial Access
T1078
Credential Access
T1110 T1110.001
Discovery
T1016 T1082
External Corroboration
Not flagged by any external feeds
Campaigns
Not associated with any campaigns
Session Forensics
reconnaissance ×1 credential_probe ×7
Sessions
8 (1 with login)
Avg Depth Score
0.25
Commands Executed
1
Files Downloaded
0
Notable Commands
  • uname -a
Fingerprints
HASSH
16443846184eafde36765c9bab2f4397
SSH Client
SSH-2.0-Go
Evidence Timeline
Reconnaissance 48b36cc3929d newark_01 · 2026-05-21 12:18
1 1 60%
Loading events...
Credential Probe 2c29dc36809c newark_01 · 2026-05-21 06:14
1 20%
Loading events...
Credential Probe bb71f8834b87 newark_01 · 2026-05-21 00:11
1 20%
Loading events...
Credential Probe 50142b3944f0 newark_01 · 2026-05-20 18:25
1 20%
Loading events...
Credential Probe 6fb56d7ec068 newark_01 · 2026-05-20 12:18
1 20%
Loading events...
Credential Probe 7bfe6c73ded1 newark_01 · 2026-05-20 06:31
1 20%
Loading events...
Credential Probe 5c94fabb1471 newark_01 · 2026-05-20 00:59
1 20%
Loading events...
Credential Probe 50858310eaf5 newark_01 · 2026-05-19 19:39
1 20%
Loading events...