################################################################
# ThreatFox IOCs: recent URLs - CSV format                     #
# Last updated: 2024-04-25 11:21:31 UTC                        #
#                                                              #
# Terms Of Use: https://threatfox.abuse.ch/faq/#tos            #
# For questions please contact threatfox [at] abuse.ch         #
################################################################
#
# "first_seen_utc","ioc_id","ioc_value","ioc_type","threat_type","fk_malware","malware_alias","malware_printable","last_seen_utc","confidence_level","reference","tags","anonymous","reporter"
"2024-04-25 11:21:31", "1262274", "http://service-dduj2otc-1303958398.gz.tencentapigw.com.cn/api/x", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-668899,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-25 11:21:17", "1262273", "http://88.214.26.29:8001/__utm.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Alviva Holding Limited,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-25 11:21:02", "1262271", "https://173.211.46.172/visit.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Datacamp Limited", "0", "drb_ra"
"2024-04-25 11:20:43", "1262270", "http://185.216.117.157/match", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1711276032,Overcasts Limited", "0", "drb_ra"
"2024-04-25 11:20:20", "1262268", "https://101.201.46.144:8443/vendorReact.dc6a29.chunk.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666666,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-25 11:20:16", "1262267", "http://88.214.27.89:8000/preload", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Alviva Holding Limited,CobaltStrike,cs-watermark-1580103824", "0", "drb_ra"
"2024-04-25 11:20:02", "1262266", "http://211.159.172.150:4444/g.pixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666666,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-25 11:19:53", "1262265", "http://8.134.80.227/ChromeUpdate/ShellEx/default.php", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-25 11:19:44", "1262263", "https://service-dduj2otc-1303958398.gz.tencentapigw.com.cn/api/x", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-668899,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-25 11:19:30", "1262260", "https://www.stylejason.com:2096/push", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-25 10:36:30", "1262219", "https://mopelas.top/ZjM0NjUxNDM5MmVi/", "url", "botnet_cc", "apk.coper", "ExobotCompact,Octo", "Coper", "", "80", "None", "apk,Coper", "0", "myonium1"
"2024-04-25 10:36:30", "1262220", "https://kambarca.top/ZjM0NjUxNDM5MmVi/", "url", "botnet_cc", "apk.coper", "ExobotCompact,Octo", "Coper", "", "80", "None", "apk,Coper", "0", "myonium1"
"2024-04-25 10:36:29", "1262221", "https://yedekleregldk.top/ZjM0NjUxNDM5MmVi/", "url", "botnet_cc", "apk.coper", "ExobotCompact,Octo", "Coper", "", "80", "None", "apk,Coper", "0", "myonium1"
"2024-04-25 10:36:29", "1262222", "https://karaklpak.top/ZjM0NjUxNDM5MmVi/", "url", "botnet_cc", "apk.coper", "ExobotCompact,Octo", "Coper", "", "80", "None", "apk,Coper", "0", "myonium1"
"2024-04-25 10:34:04", "1262259", "http://1.gamithou.cyou/login", "url", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "", "botnet,c2,CnC,Nosviak,Version4", "0", "abus3reports"
"2024-04-25 10:26:52", "1262257", "https://kuramaservices.xyz/login", "url", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "", "Botnet,c2,CnC,Nosviak,Version4", "0", "abus3reports"
"2024-04-25 10:26:52", "1262258", "http://78.40.116.170:3000/login", "url", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "", "Botnet,c2,CnC,Nosviak,Version4", "0", "abus3reports"
"2024-04-25 10:26:51", "1262256", "http://91.92.254.165:7070/login", "url", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "", "Botnet,c2,CnC,Nosviak,Version4", "0", "abus3reports"
"2024-04-25 10:26:50", "1262255", "https://158.220.106.37:3000/login", "url", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "", "Botnet,c2,CnC,Nosviak,Version4", "0", "abus3reports"
"2024-04-25 10:26:49", "1262253", "http://51.38.70.1/login", "url", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "", "Botnet,c2,CnC,Nosviak,Version4", "0", "abus3reports"
"2024-04-25 10:26:49", "1262254", "http://89.117.151.8/login", "url", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "", "Botnet,c2,CnC,Nosviak,Version4", "0", "abus3reports"
"2024-04-25 10:26:48", "1262252", "https://57.129.16.213:3000/login", "url", "botnet_cc", "unknown", "None", "Unknown malware", "", "100", "", "Botnet,c2,CnC,Nosviak,Version4", "0", "abus3reports"
"2024-04-25 10:13:36", "1262247", "https://qax.gsldedie.sbs:2087/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,TENCENT-NET-AP-CN Tencent Building Kejizhongyi Avenue", "0", "drb_ra"
"2024-04-25 10:13:29", "1262244", "https://dvbtools.com/DocumentId", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "BITWEB-AS,CobaltStrike,cs-watermark-1158277545", "0", "drb_ra"
"2024-04-25 10:13:21", "1262243", "https://101.200.197.134/g.pixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-25 08:30:18", "1262214", "http://176.123.168.151/4track/TesttrafficEternal/private3/Secure7db/7private3/WordpressLocal/Windows/cpuvoiddbtraffic/2Base/ProviderExternalpipeJavascriptupdateSqldbasyncTemporary.php", "url", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "", "100", "None", "DCRat", "0", "abuse_ch"
"2024-04-25 08:15:16", "1262213", "http://a0947291.xsph.ru/1606aca9.php", "url", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "", "100", "None", "DCRat", "0", "abuse_ch"
"2024-04-25 07:58:24", "1262211", "http://118.31.118.253/j.ad", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-25 07:57:35", "1262210", "https://118.31.118.253/activity", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-25 07:40:15", "1262209", "http://45.77.223.48/~blog/?ajax=ee", "url", "botnet_cc", "win.lokipws", "Burkina,Loki,LokiBot,LokiPWS", "Loki Password Stealer (PWS)", "", "100", "None", "Loki", "0", "abuse_ch"
"2024-04-25 05:16:13", "1262148", "http://107.172.157.239:8000/", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "", "cobaltstrike,supershell,Yakit", "0", "Abodovic"
"2024-04-25 03:10:15", "1262165", "http://45.77.223.48/~blog/?ajax=posts.php", "url", "botnet_cc", "win.lokipws", "Burkina,Loki,LokiBot,LokiPWS", "Loki Password Stealer (PWS)", "", "100", "None", "Loki", "0", "abuse_ch"
"2024-04-25 02:57:00", "1262164", "https://123.57.85.206:4000/fwlink", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-24 23:55:13", "1262159", "http://golovkcc.beget.tech/L1nc0In.php", "url", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "", "100", "None", "DCRat", "0", "abuse_ch"
"2024-04-24 22:55:17", "1262156", "https://www.fiash.info:2053/api/3", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,UCLOUD-HK-AS-AP UCLOUD INFORMATION TECHNOLOGY HK LIMITED", "0", "drb_ra"
"2024-04-24 22:13:15", "1262151", "https://45.148.120.189/ptj", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,PHANES-NETWORKS", "0", "drb_ra"
"2024-04-24 22:13:11", "1262149", "https://193.32.179.234/c/msdownload/update/others/2016/12/29136388_", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,FORTIS-AS Hosting services", "0", "drb_ra"
"2024-04-24 21:04:51", "1262110", "https://www.briccodeldente.it/wp-content/themes/white-rock-progression/l3h0y5.php?id=1", "url", "botnet_cc", "win.wikiloader", "WailingCrab", "WikiLoader", "", "100", "", "Wikiloader", "0", "cyberja"
"2024-04-24 21:04:46", "1262109", "https://dreamerz.vn/wp-content/themes/twentytwentyone/0srbuw.php?id=1", "url", "botnet_cc", "win.wikiloader", "WailingCrab", "WikiLoader", "", "100", "", "Wikiloader", "0", "cyberja"
"2024-04-24 21:04:44", "1262107", "https://www.savetheworldpodcast.com/wp-content/themes/twentytwentyone/msecgc.php?id=1", "url", "botnet_cc", "win.wikiloader", "WailingCrab", "WikiLoader", "", "100", "", "Wikiloader", "0", "cyberja"
"2024-04-24 21:04:43", "1262108", "https://retrobox.rocks/wp-content/themes/twentytwentyfour/vhpg2j.php?id=1", "url", "botnet_cc", "win.wikiloader", "WailingCrab", "WikiLoader", "", "100", "", "Wikiloader", "0", "cyberja"
"2024-04-24 21:04:42", "1262106", "https://djibek.com/wp-content/themes/twentytwentyone/sb9ivy.php?id=1", "url", "botnet_cc", "win.wikiloader", "WailingCrab", "WikiLoader", "", "100", "", "Wikiloader", "0", "cyberja"
"2024-04-24 18:10:25", "1262114", "http://a0804818.xsph.ru/providerEternalprotectDbasync.php", "url", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "", "100", "None", "DCRat", "0", "abuse_ch"
"2024-04-24 17:51:34", "1262113", "https://43.138.73.164:56701/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-24 17:51:11", "1262112", "https://152.136.100.26:4444/ca", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-24 17:50:39", "1262111", "http://123.57.85.206/cx", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-24 15:22:17", "1262101", "http://20.106.253.207:8899/api/3", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,MICROSOFT-CORP-MSN-AS-BLOCK", "0", "drb_ra"
"2024-04-24 14:52:33", "1261787", "https://hearthingdirecwi.shop/api", "url", "botnet_cc", "win.lumma", "LummaC2 Stealer", "Lumma Stealer", "", "100", "https://tria.ge/240424-nr6xgahd49/behavioral1", "lumma,stealer", "0", "g0njxa"
"2024-04-24 14:52:33", "1261856", "https://116.211.228.233:60000/", "url", "botnet_cc", "apk.viper_rat", "None", "Viper RAT", "", "100", "https://urlscan.io/result/95ff05bd-ba45-4047-b63b-a6b80efb585b/#summary", "c2,RAT", "0", "k1r1on"
"2024-04-24 14:51:52", "1261858", "http://18.162.61.95/en_US/all.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "https://search.censys.io/hosts/18.162.61.95", "AMAZON-02,AS16509,c2,censys,CobaltStrike,cs-watermark-987654321", "0", "DonPasci"
"2024-04-24 14:48:37", "1261855", "http://3.139.18.182/dpixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "https://search.censys.io/hosts/3.139.18.182", "AMAZON-02,AS16509,c2,censys,CobaltStrike,cs-watermark-1236301411", "0", "DonPasci"
"2024-04-24 14:35:56", "1261851", "http://116.205.188.138/__utm.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "https://search.censys.io/hosts/116.205.188.138", "AS55990,c2,censys,CobaltStrike,cs-watermark-987654321,HWCSNET", "0", "DonPasci"
"2024-04-24 14:31:39", "1261849", "https://8.130.70.205/ca", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "https://search.censys.io/hosts/8.130.70.205/", "ALIBABA-CN-NET,AS37963,c2,censys,CobaltStrike,cs-watermark-987654321", "0", "DonPasci"
"2024-04-24 13:08:28", "1261846", "http://45.116.79.9/cm", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Cloudie Limited,CobaltStrike,cs-watermark-6", "0", "drb_ra"
"2024-04-24 13:08:19", "1261844", "https://167.71.242.213/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-970865301,DigitalOcean LLC", "0", "drb_ra"
"2024-04-24 13:08:18", "1261843", "https://165.227.108.186/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-970865301,DigitalOcean LLC", "0", "drb_ra"
"2024-04-24 13:08:17", "1261842", "https://45.55.199.36/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-970865301,DigitalOcean LLC", "0", "drb_ra"
"2024-04-24 13:07:44", "1261840", "https://47.92.131.203/query/info", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666666,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-24 13:07:37", "1261839", "http://1.94.13.86:9090/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,Huawei Cloud Service data center", "0", "drb_ra"
"2024-04-24 13:07:10", "1261838", "http://123.57.85.206:8181/push", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-24 13:07:05", "1261837", "http://107.150.47.82/visit.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,Nocix LLC", "0", "drb_ra"
"2024-04-24 13:06:51", "1261836", "http://154.3.1.252:8000/en_US/all.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,IPTELECOM Global", "0", "drb_ra"
"2024-04-24 13:06:47", "1261835", "http://172.247.44.182/updates.rss", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CNSERVERS LLC,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-24 13:06:41", "1261833", "http://173.211.46.172/MREw", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Datacamp Limited", "0", "drb_ra"
"2024-04-24 13:06:29", "1261831", "http://61.240.29.221:7777/push", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CHINA UNICOM China169 Backbone,CobaltStrike,cs-watermark-391144938", "0", "drb_ra"
"2024-04-24 13:06:25", "1261830", "http://91.92.242.190:82/ca", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Limenet", "0", "drb_ra"
"2024-04-24 13:06:03", "1261829", "http://35.221.150.166/ga.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Google LLC", "0", "drb_ra"
"2024-04-24 13:05:56", "1261828", "https://65.20.107.130:8443/open/js/jweixin-1.4.0.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,The Constant Company LLC", "0", "drb_ra"
"2024-04-24 13:05:24", "1261827", "http://129.204.169.101/push", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-305419896,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-24 13:05:15", "1261825", "http://service-6qlmfr7s-1312562872.gz.tencentapigw.com.cn/api/x", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,HostPapa", "0", "drb_ra"
"2024-04-24 13:04:52", "1261824", "http://8.130.30.60/cx", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-24 13:04:38", "1261823", "http://18.166.113.176:7777/milu_image/", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Amazon.com Inc.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-24 13:04:22", "1261822", "https://berita-timur.kumbaraan.biz.id/logo.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,DigitalOcean LLC", "0", "drb_ra"
"2024-04-24 13:04:08", "1261821", "https://49.232.157.82/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666666,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-24 13:04:03", "1261820", "http://157.245.12.65:4444/fwlink", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,DigitalOcean LLC", "0", "drb_ra"
"2024-04-24 13:03:54", "1261818", "http://156.224.20.92/en_US/all.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Aodao Inc,CobaltStrike,cs-watermark-100000", "0", "drb_ra"
"2024-04-24 13:03:50", "1261817", "http://107.174.254.9:8888/cm", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666,HostPapa", "0", "drb_ra"
"2024-04-24 13:03:41", "1261815", "https://www.alipan.lol:8443/api/3", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,DigitalOcean LLC", "0", "drb_ra"
"2024-04-24 13:03:27", "1261814", "https://107.172.159.139:8443/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,HostPapa", "0", "drb_ra"
"2024-04-24 13:03:21", "1261813", "http://20.2.202.15:81/cx", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Microsoft Corporation", "0", "drb_ra"
"2024-04-24 13:03:15", "1261812", "https://192.227.155.201:4443/fwlink", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,HostPapa", "0", "drb_ra"
"2024-04-24 13:03:09", "1261810", "https://bliblyuvblfds.work.gd:8443/_/scs/mail-static/_/js/", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1234567890,IT7 Networks Inc", "0", "drb_ra"
"2024-04-24 13:02:55", "1261809", "https://keolisgroup.azureedge.net/onedrive", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-323058833,DigitalOcean LLC", "0", "drb_ra"
"2024-04-24 13:02:43", "1261808", "http://8.212.71.0:8008/updates.rss", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Alibaba (US) Technology Co. Ltd.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-24 13:02:39", "1261807", "http://60.204.222.75/j.ad", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666666,Huawei Cloud Service data center", "0", "drb_ra"
"2024-04-24 13:02:34", "1261806", "http://47.92.131.203/user/profile", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666666,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-24 13:02:25", "1261805", "https://139.155.134.117:8443/jquery-3.3.2.N2cQ4mXdZ4nIo9XIhttp.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666666,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-24 13:02:16", "1261803", "https://service-j78tszan-1319584009.sh.apigw.tencentcs.com/product", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-24 13:02:00", "1261802", "http://175.178.50.68/g.pixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-24 13:01:49", "1261801", "https://129.204.169.101/pixel.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-305419896,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-24 13:01:41", "1261799", "http://23.102.7.180/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1622004588,Microsoft Corporation", "0", "drb_ra"
"2024-04-24 13:01:35", "1261797", "http://berita-timur.kumbaraan.biz.id/image", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,DigitalOcean LLC", "0", "drb_ra"
"2024-04-24 13:01:17", "1261796", "http://192.227.152.217/MicrosoftUpdate/ShellEx/KB242742/default.aspx", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,HostPapa", "0", "drb_ra"
"2024-04-24 13:01:09", "1261794", "https://www.614110.xyz/milu_image/", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Amazon.com Inc.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-24 13:00:47", "1261792", "http://154.213.17.132:90/dot.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,Hong Kong FireLine Network LTD", "0", "drb_ra"
"2024-04-24 12:33:09", "1261790", "http://www.fiash.info:2052/api/3", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,UCLOUD-HK-AS-AP UCLOUD INFORMATION TECHNOLOGY HK LIMITED", "0", "drb_ra"
"2024-04-24 12:32:54", "1261789", "http://101.36.111.175:123/api/3", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,UCLOUD-HK-AS-AP UCLOUD INFORMATION TECHNOLOGY HK LIMITED", "0", "drb_ra"
"2024-04-24 10:18:57", "1261786", "http://39.100.109.229:8888/mall_100_100.html", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-391144938", "0", "drb_ra"
"2024-04-24 10:18:50", "1261785", "https://150.158.141.97/updates.rss", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-24 10:18:44", "1261784", "http://107.174.235.118:55501/Complete/pr/H6TCQRWR", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "AS-COLOCROSSING,CobaltStrike,cs-watermark-666666666", "0", "drb_ra"
"2024-04-24 10:18:39", "1261782", "http://120.46.91.175/updates.rss", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,HWCSNET Huawei Cloud Service data center", "0", "drb_ra"
"2024-04-24 10:18:34", "1261780", "https://39.100.79.87/ga.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-391144938", "0", "drb_ra"
"2024-04-24 10:18:23", "1261777", "https://www.huawei.com/mall_100_100.html", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-391144938", "0", "drb_ra"
"2024-04-24 09:18:12", "1261768", "https://karakalanda346.shop/Y2JhNzZhZWRjMzlm/", "url", "botnet_cc", "apk.coper", "ExobotCompact,Octo", "Coper", "", "80", "None", "apk,Coper", "0", "myonium1"
"2024-04-24 09:18:11", "1261769", "https://karakafsafndan5.shop/Y2JhNzZhZWRjMzlm/", "url", "botnet_cc", "apk.coper", "ExobotCompact,Octo", "Coper", "", "80", "None", "apk,Coper", "0", "myonium1"
"2024-04-24 09:18:10", "1261770", "https://karakalanfgdfg.shop/Y2JhNzZhZWRjMzlm/", "url", "botnet_cc", "apk.coper", "ExobotCompact,Octo", "Coper", "", "80", "None", "apk,Coper", "0", "myonium1"
"2024-04-24 09:18:10", "1261771", "https://karakalaasdgtg.shop/Y2JhNzZhZWRjMzlm/", "url", "botnet_cc", "apk.coper", "ExobotCompact,Octo", "Coper", "", "80", "None", "apk,Coper", "0", "myonium1"
"2024-04-24 08:02:39", "1261767", "http://115.159.62.32/dpixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-426352781,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-24 08:01:20", "1261764", "https://firmware-yrs-conflicts-favorites.trycloudflare.com/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666,PEG TECH INC", "0", "drb_ra"
"2024-04-24 02:58:01", "1261742", "https://60.205.245.29/compare/sf/1G3FVHTE94", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-24 02:57:26", "1261741", "https://47.98.247.113:2222/activity", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 22:58:12", "1261737", "https://101.201.54.74:9999/load", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 22:30:16", "1261110", "http://89.105.198.253/300e6d86f44da037.php", "url", "botnet_cc", "win.stealc", "None", "Stealc", "", "100", "None", "Stealc", "0", "abuse_ch"
"2024-04-23 22:12:13", "1261005", "http://115.159.62.32:81/load", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-426352781,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 22:12:08", "1261003", "https://45.144.3.139/visit.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ASBAXET,CobaltStrike,cs-watermark-1234567890", "0", "drb_ra"
"2024-04-23 22:12:02", "1261001", "http://60.205.245.29/compare/sf/1G3FVHTE94", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 21:15:15", "1260999", "http://blockbeerman.fun/api", "url", "botnet_cc", "win.lumma", "LummaC2 Stealer", "Lumma Stealer", "", "100", "None", "LummaStealer", "0", "abuse_ch"
"2024-04-23 21:05:14", "1260997", "http://fghjdtgujkjdgkdettygdbnbbn.000webhostapp.com/_Defaultwindows.php", "url", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "", "100", "None", "DCRat", "0", "abuse_ch"
"2024-04-23 20:40:13", "1260996", "http://45.130.42.16/6/api144/9Wp/ImagevmcpuBigloaddefault.php", "url", "botnet_cc", "win.dcrat", "DarkCrystal RAT", "DCRat", "", "100", "None", "DCRat", "0", "abuse_ch"
"2024-04-23 20:20:13", "1260992", "http://cajgtus.com/test2/get.php", "url", "botnet_cc", "win.teambot", "FINTEAM", "TeamBot", "", "100", "None", "TeamBot", "0", "abuse_ch"
"2024-04-23 20:15:13", "1260991", "http://cajgtus.com/test1/get.php", "url", "botnet_cc", "win.teambot", "FINTEAM", "TeamBot", "", "100", "None", "TeamBot", "0", "abuse_ch"
"2024-04-23 19:45:20", "1260987", "http://smartoffice-eg.com/include/rili/gate.php", "url", "botnet_cc", "win.pony", "Siplog,Fareit", "Pony", "", "100", "None", "Pony", "0", "abuse_ch"
"2024-04-23 19:25:09", "1260980", "http://185.161.248.78/6ef96e7190cc7acd.php", "url", "botnet_cc", "win.stealc", "None", "Stealc", "", "100", "None", "Stealc", "0", "abuse_ch"
"2024-04-23 18:08:03", "1260927", "http://103.146.50.218/en_US/all.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-305419896,YISU CLOUD LTD", "0", "drb_ra"
"2024-04-23 18:07:58", "1260926", "https://112.124.34.225/match", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-426352781,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:07:53", "1260925", "http://8.141.13.130:8098/visit.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-0,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:07:49", "1260924", "http://8.137.108.208/ptj", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:07:44", "1260923", "http://47.243.59.237/cx", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Alibaba (US) Technology Co. Ltd.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 18:07:40", "1260922", "http://47.101.37.46:8000/pixel.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:07:35", "1260921", "http://47.113.150.236/cx", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:07:30", "1260920", "http://120.78.139.9/dot.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:07:27", "1260919", "http://106.54.236.42:8081/Claim/v5.6/ZZ1QB9MLS", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:07:22", "1260918", "https://103.150.10.45:9443/cm", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,Nanjing Jiangsu Province P.R.China.", "0", "drb_ra"
"2024-04-23 18:07:16", "1260915", "https://api.rayob2.shop/Content", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Tencent Building Kejizhongyi Avenue", "0", "drb_ra"
"2024-04-23 18:07:08", "1260913", "http://8.210.236.92:6653/image/", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Alibaba US Technology Co. Ltd.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 18:07:03", "1260912", "http://117.50.188.167/ga.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "China Unicom Beijing Province Network,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 18:06:58", "1260911", "https://8.147.132.135:8443/IE9CompatViewList.xml", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:06:54", "1260910", "http://157.245.12.65/ca", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,DigitalOcean LLC", "0", "drb_ra"
"2024-04-23 18:06:47", "1260908", "http://42.193.117.162/en_US/all.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1234567890,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:06:40", "1260905", "https://service-ldzftvcf-1252123187.sh.tencentapigw.com/api/getit", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-0,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:06:34", "1260903", "https://193.112.85.116/ga.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-305419896,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:06:26", "1260902", "http://47.98.247.113:9999/__utm.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:06:20", "1260900", "https://service-ku7vp6lj-1253504731.sh.tencentapigw.com/api/x", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:06:10", "1260898", "http://10.31.16.216:8889/pixel.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-305419896,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:06:03", "1260896", "https://62.234.223.69:7443/cx", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1234567890,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:05:58", "1260895", "http://156.224.25.183:9999/g.pixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Aodao Inc,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 18:05:54", "1260894", "http://81.19.136.252:82/ptj", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Alviva Holding Limited,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 18:05:48", "1260891", "https://facelove.life/functionalStatus/0CMp4E8sk1rGRjHC2NcNQf2u", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,GRIZ-INET-SERVICE", "0", "drb_ra"
"2024-04-23 18:05:42", "1260889", "https://101.201.54.74/j.ad", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:05:37", "1260888", "http://47.76.153.170/ca", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Alibaba (US) Technology Co. Ltd.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 18:05:32", "1260887", "http://8.130.118.27:8888/dpixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:05:23", "1260886", "http://121.43.33.41:8080/__utm.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666666,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:05:09", "1260883", "https://43.141.50.122/feedapi/v1/newsserver/api/getpassword", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:05:07", "1260882", "https://111.51.156.246/feedapi/v1/newsserver/api/getpassword", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:05:01", "1260881", "https://117.187.245.242/rewardsapp/ncfooter", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:05:00", "1260880", "https://43.141.11.12/feedapi/v1/newsserver/api/getpassword", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:04:54", "1260878", "https://38.107.146.158/zOMGAPT", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Akamai Connected Cloud,CobaltStrike,cs-watermark-1757407123", "0", "drb_ra"
"2024-04-23 18:04:50", "1260877", "http://39.104.28.176:7777/en_US/all.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:04:46", "1260875", "http://120.55.36.136/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:04:36", "1260871", "https://oa.dahuatec.xyz:8443/www/handle/doc", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1580103824,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:03:27", "1260869", "http://103.97.58.61/en_US/all.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Henan Angran Cloud Computing Technology Co. Ltd", "0", "drb_ra"
"2024-04-23 18:03:21", "1260868", "http://47.92.200.141/pixel.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:03:14", "1260867", "http://49.232.208.22/cx", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-305419896,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:03:09", "1260864", "https://office365.homes:4443/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,DigitalOcean LLC", "0", "drb_ra"
"2024-04-23 18:03:00", "1260862", "https://38.34.166.53/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Enzu Inc", "0", "drb_ra"
"2024-04-23 18:02:53", "1260861", "http://81.19.136.252:81/dot.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Alviva Holding Limited,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 18:02:46", "1260859", "https://service-r3og53uv-1303913364.sh.tencentapigw.com/api/x", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:02:38", "1260858", "http://37.27.11.209:8023/fwlink", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hetzner Online GmbH", "0", "drb_ra"
"2024-04-23 18:02:34", "1260856", "http://100.40.180.6:8083/claim/servlets-examples/I2I52XQKQQZF", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666666,HFTCL-AS-AP High Family Technology Co. Limited", "0", "drb_ra"
"2024-04-23 18:02:30", "1260855", "http://111.229.200.233:3333/pixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:02:23", "1260852", "https://dr-hoefler.de/jquery-3.3.1.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1368851023,DigitalOcean LLC", "0", "drb_ra"
"2024-04-23 18:02:16", "1260851", "http://47.76.219.122:8080/match", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Alibaba (US) Technology Co. Ltd.,CobaltStrike,cs-watermark-666666666", "0", "drb_ra"
"2024-04-23 18:02:09", "1260850", "http://45.207.38.71:8090/g.pixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666666,SonderCloud Limited", "0", "drb_ra"
"2024-04-23 18:02:04", "1260849", "http://114.132.62.71:8081/ga.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:02:00", "1260848", "http://124.156.166.78:7654/ptj", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-305419896,Tencent Building Kejizhongyi Avenue", "0", "drb_ra"
"2024-04-23 18:01:56", "1260847", "http://193.112.85.116:9999/ptj", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-305419896,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2024-04-23 18:01:53", "1260846", "http://8.137.108.208:8000/en_US/all.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:01:47", "1260845", "http://8.222.176.223:1234/Content", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "Alibaba (US) Technology Co. Ltd.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 18:01:38", "1260841", "https://zx.scsvcreg.com/tab_shop_active", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1580103824,Global Layer B.V.", "0", "drb_ra"
"2024-04-23 18:01:36", "1260839", "https://as.scsvcreg.com/eo", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1580103824,Global Layer B.V.", "0", "drb_ra"
"2024-04-23 18:01:35", "1260837", "https://qw.scsvcreg.com/tab_shop_active", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1580103824,Global Layer B.V.", "0", "drb_ra"
"2024-04-23 18:01:29", "1260836", "http://101.201.46.105:8081/g.pixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-666666", "0", "drb_ra"
"2024-04-23 18:01:22", "1260835", "http://103.47.82.210:8888/match", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CHINANET Yunnan province IDC1 network,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 18:01:17", "1260834", "http://8.141.13.130:8089/match", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-0,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:01:12", "1260833", "https://91.92.246.246/updates", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Limenet", "0", "drb_ra"
"2024-04-23 18:01:06", "1260832", "https://128.199.178.134/j.ad", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,DigitalOcean LLC", "0", "drb_ra"
"2024-04-23 18:00:52", "1260831", "http://103.47.82.210:8889/__utm.gif", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CHINANET Yunnan province IDC1 network,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2024-04-23 18:00:43", "1260830", "https://62.204.41.11/visit.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1580103824,HORIZON LLC", "0", "drb_ra"
"2024-04-23 18:00:38", "1260829", "http://101.201.54.74:1234/ca", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:00:28", "1260826", "https://www.xahoithongtins.com/jquery-3.5.6.min.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,Viet Solutions Services Trading Company Limited", "0", "drb_ra"
"2024-04-23 18:00:20", "1260825", "http://192.168.183.131/en_US/all.js", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Hangzhou Alibaba Advertising Co.Ltd.", "0", "drb_ra"
"2024-04-23 18:00:14", "1260824", "http://114.134.188.22/g.pixel", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,High Family Technology Co. Limited", "0", "drb_ra"
"2024-04-23 18:00:06", "1260822", "http://62.204.41.11/load", "url", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1580103824,HORIZON LLC", "0", "drb_ra"
# Number of entries: 193