Loading threats
SSH session performing remote script retrieval via wget or curl followed by immediate execution. The pattern reflects automated payload staging and execution on a compromised host, commonly used by botnets and post-exploitation frameworks to deploy malware, miners, loaders, or secondary implants.
| IP Address | Risk | Events | Sessions | Country | ASN | Last Seen |
|---|---|---|---|---|---|---|
| 130.12.180.51 | 100% | 27,984 | 17,893 | 🇳🇱 NL | AS202412 | 2026-04-27 |