Report Overview
Visitedpublic
2026-02-08 16:51:03
Tags
Submit Tags
URL
158.94.210.195/aws
Finishing URL
158.94.210.195/aws
IP / ASN
158.94.210.195
Title
158.94.210.195/aws
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
1
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
158.94.210.195 3 alert(s) on this Host | unknown | unknown | No data | No data | 1.2 kB | 3.5 kB |  0.0.0.0 |   |
CentOS (Operating systems)
CentOS is a Linux distribution that provides a free, community-supported computing platform functionally compatible with its upstream source, Red Hat Enterprise Linux (RHEL).Apache HTTP Server:2.4.6 (Web servers)
Apache is a free and open-source cross-platform web server software.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| high | 158.94.210.195 | Client IP | ETPRO MALWARE ELF/Likely Evil Shell Script Content Inbound |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| YARAhub by abuse.ch | 158.94.210.195/aws | malware | Detects Generic ShellScript Downloader |
File detected
URL
158.94.210.195/aws
IP / ASN
158.94.210.195
File Overview
File TypeBourne-Again shell script, ASCII text executable
Size2.8 kB (2835 bytes)
MD59f0b20d5aa4cb467af0ae5b5382403fa
SHA10e2fbaf624bd9c5fd5f7f8220fbff7f91a1a3659
Detections
| Analyzer | Verdict | Alert |
|---|---|---|
| YARAhub by abuse.ch | malware | Detects Generic ShellScript Downloader |
JavaScript (0)
No JavaScripts
HTTP Transactions (3)
| URL | IP | Response | Size |
|---|