Loading threats
Execution of uname -a followed by a hex-encoded string output and a conditional download of a remote script using wget or curl, with the retrieved content piped directly into sh for execution ((wget … || curl …) | sh -s ssh). This pattern reflects remote payload retrieval with immediate in-memory shell execution using dual-tool fallback logic.
| IP Address | Risk | Events | Sessions | Country | ASN | Last Seen |
|---|---|---|---|---|---|---|
| 130.12.180.51 | 100% | 28,131 | 18,040 | 🇳🇱 NL | AS202412 | 2026-04-28 |