IntrusionLabs / threat intelligence

Sign in

← Back to feed

8.154.1.148

TAGGED MALICIOUS how we decide →

Threat Confidence

50%

Location

🇨🇳 CN / Hangzhou

ASN

AS37963 · Hangzhou Alibaba Advertising Co.,Ltd.

Cloud Provider

—

Total Events

12

Below average by volume

Agent Count

1

First / Last Seen

2026-05-30 06:58 — 2026-05-30 19:11

Attack Types

ssh:bruteforce

MITRE ATT&CK Techniques

Initial Access

T1078

Credential Access

T1110 T1110.001

Exfiltration

T1048

External Corroboration

Not flagged by any external feeds

Campaigns

Not associated with any campaigns

Session Forensics

data_exfiltrator ×2

Sessions

2 (2 with login)

Avg Depth Score

0.9

Commands Executed

0

Files Downloaded

0

Fingerprints

HASSH

98ddc5604ef6a1006a2b49a58759fbe6

SSH Client

SSH-2.0-Go

Evidence Timeline

Data Exfiltrator 439e17f2d79c newark_01 · 2026-05-30 19:10

1 90%

Loading events...

Data Exfiltrator ddece56a3b40 newark_01 · 2026-05-30 06:58

1 90%

Loading events...