HoneyMire Hub

Attack #291700 ssh

Captured 2026-06-29 18:20:33Z by Ka on honeypot FR1 ⬜ docker-edge · firmware 0.1.0.

Source187.191.48.4:60412
Target port22
Authenticatedyes
Commands1
Duration1.9s

Session recording

Loading session…

Transcript

Server output and attacker input as captured, line-grain. Malware URLs are obscured until sign-in. 

uname -a
Linux ubuntu-server 5.15.0-91-generic #101-Ubuntu SMP Tue Nov 14 13:30:08 UTC 2023 x86_64 GNU/Linux

Credentials

Username: root

Password: Myka80

1 login attempt(s) before disconnect.

Geolocation hub-resolved

🇲🇽Mexico · Baja California · Tijuana

Total Play Telecomunicaciones SA De CV · AS22884 TOTAL PLAY TELECOMUNICACIONES, S.A.P.I. DE C.V. · 32.40,-116.82

Network: unknown · Total Play Telecomunicaciones SA De CV · geoip · low confidence

Behavioral classification

🤖 55% confidence

Automated tool, unknown family — uniform timing but no matched signature.

Command summary

uname -a

Reported to threat intel

none

HoneyMire Hub · open feed: / · API: /api · docs: /docs · blocklists: /blocklists · about: /about · firmware: github.com/HoneyMire/HoneyMire