ThreatFox IOC Database

You are browsing the Indicator Of Compromise (IOC) database of ThreatFox. If you would like to contribute IOCs to the corpuse, you can do so through either the web form or the API.

307

IOCs shared (past 24 hours)

Cobalt Strike

Most seen malware family (past 24 hours)

1'084'690

IOCs in corpus

Using the form below, you can search for malware samples by a hash (MD5, SHA256, SHA1), imphash, tlsh hash, ClamAV signature, tag or malware family.

Browse Database

Search syntax is as follow: keyword:search_term

Following is a list of accepted keywords along with an example search_term

ioc:ms-debug-services.com ( run)
malware:CobaltStrike ( run)
tag:TA505 ( run)
threat_type:cc_skimming ( run)
uuid:87f310f3-540b-11eb-922c-42010aa4000a ( run)

Date (UTC)	IOC	Malware	Tags	Reporter
2023-06-08 16:28	http://116.62.176.156:8090/api/getit	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 16:28	43.140.199.178:80	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 16:28	http://106.53.147.223/match	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 16:27	http://101.35.21.201:50001/dpixel	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 16:27	http://43.136.36.91:8080/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 16:27	46.21.153.146:443	Cobalt Strike	CobaltStrike cs-watermark-206546002 HVC-AS	drb_ra
2023-06-08 16:27	surplusofer.com	Cobalt Strike	CobaltStrike cs-watermark-206546002 HVC-AS	drb_ra
2023-06-08 16:27	https://surplusofer.com/design/query/9X5M3SOE0F	Cobalt Strike	CobaltStrike cs-watermark-206546002 HVC-AS	drb_ra
2023-06-08 16:27	http://39.104.180.151:12138/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 16:27	http://47.120.5.215:8083/cx	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-08 16:27	http://134.209.249.32:8080/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1056116905 DIGITALOCEAN-ASN	drb_ra
2023-06-08 16:27	206.237.21.190:8085	Cobalt Strike	CLOUDIE-AS-AP Cloudie Limited CobaltStrike cs-watermark-102816	drb_ra
2023-06-08 16:27	http://129.211.163.19:4499/load	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 16:27	43.140.203.115:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 16:27	http://43.140.203.115/cm	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 16:26	165.22.10.64:443	Cobalt Strike	CobaltStrike cs-watermark-1199750611 DIGITALOCEAN-ASN	drb_ra
2023-06-08 16:26	d1672414.azureedge.net	Cobalt Strike	CobaltStrike cs-watermark-1199750611 DIGITALOCEAN-ASN	drb_ra
2023-06-08 16:26	https://d1672414.azureedge.net/rn	Cobalt Strike	CobaltStrike cs-watermark-1199750611 DIGITALOCEAN-ASN	drb_ra
2023-06-08 16:26	http://43.139.180.193:18899/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 16:26	104.128.89.139:443	Cobalt Strike	CobaltStrike cs-watermark-987654321 IT7NET	drb_ra
2023-06-08 16:26	https://104.128.86.138/owa/	Cobalt Strike	CobaltStrike cs-watermark-987654321 IT7NET	drb_ra
2023-06-08 16:26	http://94.131.98.66:8088/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-987654321 STARK-INDUSTRIES	drb_ra
2023-06-08 16:26	http://167.172.185.27:8080/fwlink	Cobalt Strike	CobaltStrike cs-watermark-120443567 DIGITALOCEAN-ASN	drb_ra
2023-06-08 16:26	http://43.139.116.197:8045/pixel	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-08 16:26	http://193.200.134.170:8899/visit.js	Cobalt Strike	CobaltStrike cs-watermark-426352781 VH-GLOBAL VH Global Limited	drb_ra
2023-06-08 16:26	155.94.135.207:443	Cobalt Strike	CobaltStrike cs-watermark-391144938 PACIFICRACK	drb_ra
2023-06-08 16:26	https://155.94.135.207/cx	Cobalt Strike	CobaltStrike cs-watermark-391144938 PACIFICRACK	drb_ra
2023-06-08 16:26	124.221.74.23:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 16:25	1.13.249.191:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 16:25	service-jcetme20-1314507962.nj.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 16:25	https://service-jcetme20-1314507962.nj.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 16:25	118.178.133.227:443	Cobalt Strike	CobaltStrike cs-watermark-29999999	drb_ra
2023-06-08 16:25	https://118.178.133.227/j.ad	Cobalt Strike	CobaltStrike cs-watermark-29999999	drb_ra
2023-06-08 16:25	103.143.249.89:443	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 16:25	https://103.143.249.89/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 16:25	60.205.138.64:443	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-06-08 16:25	https://60.205.138.64/cx	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-06-08 16:25	178.236.45.67:443	Cobalt Strike	CobaltStrike cs-watermark-391144938 YUHONET	drb_ra
2023-06-08 16:25	https://agency.baidubet.com/azure/api/v2/userinfo/get	Cobalt Strike	CobaltStrike cs-watermark-391144938 YUHONET	drb_ra
2023-06-08 16:25	agency.baidubet.com	Cobalt Strike	CobaltStrike cs-watermark-391144938 YUHONET	drb_ra
2023-06-08 16:25	http://175.178.113.63:801/	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 16:25	23.106.130.64:80	Cobalt Strike	CobaltStrike cs-watermark-666666 IT7NET	drb_ra
2023-06-08 16:25	http://23.106.130.64/wp06/wp-includes/po.php	Cobalt Strike	CobaltStrike cs-watermark-666666 IT7NET	drb_ra
2023-06-08 16:24	101.43.45.243:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 16:24	https://101.43.45.243/api/info	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 16:24	http://124.223.200.131:8080/admin/login	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-08 16:24	http://172.245.180.61:12000/g.pixel	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-391144938	drb_ra
2023-06-08 15:59	52.90.87.208:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1770750822	drb_ra
2023-06-08 15:58	lecture.liveritehealthcare.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1770750822	drb_ra
2023-06-08 15:58	3.80.37.26:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1075868718	drb_ra
2023-06-08 15:58	cross.tradinginhealth.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1075868718	drb_ra
2023-06-08 15:58	18.234.34.31:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1344051375	drb_ra
2023-06-08 15:58	alarm.bettermoneyhelp.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1344051375	drb_ra
2023-06-08 15:58	18.206.212.19:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-945885036	drb_ra
2023-06-08 15:58	highway.steelcdn.org	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-945885036	drb_ra
2023-06-08 15:58	52.0.66.129:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1555371100	drb_ra
2023-06-08 15:58	description.bettermoneyhelp.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1555371100	drb_ra
2023-06-08 15:58	52.90.160.176:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-284549993	drb_ra
2023-06-08 15:57	active.clarusbank.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-284549993	drb_ra
2023-06-08 15:57	18.214.164.202:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1900307348	drb_ra
2023-06-08 15:57	recover.healthcarecdn.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1900307348	drb_ra
2023-06-08 15:57	52.90.52.159:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1071717204	drb_ra
2023-06-08 15:57	primary.dreamwellfarms.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1071717204	drb_ra
2023-06-08 15:57	39.105.143.177:1	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 15:57	ns2.zengjunhe.top	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 15:57	ns1.zengjunhe.top	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 15:57	23.22.83.86:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1151947237	drb_ra
2023-06-08 15:57	master.drobenhealth.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1151947237	drb_ra
2023-06-08 15:57	18.233.102.241:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-2077848568	drb_ra
2023-06-08 15:56	stop.lycanfinance.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-2077848568	drb_ra
2023-06-08 15:56	18.212.64.222:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-867090819	drb_ra
2023-06-08 15:56	ask.healthgurues.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-867090819	drb_ra
2023-06-08 12:29	http://124.222.19.112:9999/cm	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 12:28	https://103.42.214.78/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-08 12:26	http://39.105.143.177:7777/updates	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 11:15	103.149.200.79:9530	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 11:07	http://8.140.37.238:9090/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 11:05	https://139.155.154.67/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 11:04	http://111.230.52.21:8000/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-08 11:03	https://js.msedgeupdate.com/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 11:01	http://120.48.12.88:20000/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 10:50	https://175.24.177.84:50001/cx	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 10:48	https://1.14.65.206:49564/j.ad	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-08 10:38	http://121.43.108.230:86/match	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 10:38	http://124.222.129.148:1111/fwlink	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-08 10:37	http://8.217.192.147/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 10:37	https://194.165.16.74/pixel	Cobalt Strike	CobaltStrike cs-watermark-1580103824 FLYSERVERS-ENDCLIENTS	drb_ra
2023-06-08 10:29	http://120.46.177.219/api/getit	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-08 10:29	http://47.108.137.190:8080/match	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-06-08 10:28	https://39.108.109.127/fwlink	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 10:24	https://oss-update.duckdns.org/load	Cobalt Strike	CobaltStrike CONTABO cs-watermark-987654321	drb_ra
2023-06-08 10:18	https://8.130.84.57/cm	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-08 10:15	http://82.157.238.73:8835/cx	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-08 10:11	http://103.149.200.79:8080/ptj	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 10:04	https://114.115.212.24/visit.js	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-08 10:03	http://cs.kingsoft365.top:8083/j.ad	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 10:02	http://103.149.200.79:9530/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 09:59	https://1.12.55.126/visit.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-08 09:57	srvupdate.duckdns.org	Cobalt Strike	CobaltStrike cs-watermark-987654321 ORACLE-BMC-31898	drb_ra
2023-06-08 09:57	https://srvupdate.duckdns.org/load	Cobalt Strike	CobaltStrike cs-watermark-987654321 ORACLE-BMC-31898	drb_ra
2023-06-08 09:24	https://139.59.120.61:8443/dpixel	Cobalt Strike	CobaltStrike cs-watermark-987654321 DIGITALOCEAN-ASN	drb_ra
2023-06-08 09:24	139.9.216.32:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-08 09:24	https://139.9.216.32/owa/	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-08 08:55	http://194.87.46.87/load	Cobalt Strike	CobaltStrike cs-watermark-120443567 RETNNET-AS	drb_ra
2023-06-08 07:57	167.179.112.36:1	Cobalt Strike	CobaltStrike cs-watermark-987654321 The Constant Company LLC	drb_ra
2023-06-08 07:57	ns4.kagotsurube.org	Cobalt Strike	CobaltStrike cs-watermark-987654321 The Constant Company LLC	drb_ra
2023-06-08 07:57	ns3.kagotsurube.org	Cobalt Strike	CobaltStrike cs-watermark-987654321 The Constant Company LLC	drb_ra
2023-06-08 07:56	20.94.177.31:1	Cobalt Strike	CobaltStrike cs-watermark-856409489 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-08 07:55	111.230.26.9:1	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 07:54	ns1.staticjs.xyz	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-08 07:53	119.29.249.120:1	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 07:53	asssaaass1.qianxinsecurity.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 07:53	abc1.qianxinsecurity.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 07:53	bot1.qianxinsecurity.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-08 07:52	216.219.86.212:1	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Interserver Inc	drb_ra
2023-06-08 07:52	dns.antegivi.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Interserver Inc	drb_ra
2023-06-08 07:52	antegivi.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Interserver Inc	drb_ra
2023-06-08 07:51	185.74.222.16:1	Cobalt Strike	ADCDATA.COM CobaltStrike cs-watermark-1359593325	drb_ra
2023-06-08 07:51	dnsproxy.blueseaedu.com	Cobalt Strike	ADCDATA.COM CobaltStrike cs-watermark-1359593325	drb_ra
2023-06-08 07:50	23.98.137.196:1	Cobalt Strike	CobaltStrike cs-watermark-856409489 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-08 07:50	vigorouseuclid.zscaler.skytapdns.com	Cobalt Strike	CobaltStrike cs-watermark-856409489 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-08 07:49	64.176.35.130:1	Cobalt Strike	CobaltStrike cs-watermark-1234567890 The Constant Company LLC	drb_ra
2023-06-08 07:49	ns2.cdnmax.info	Cobalt Strike	CobaltStrike cs-watermark-1234567890 The Constant Company LLC	drb_ra
2023-06-08 07:49	ns1.cdnmax.info	Cobalt Strike	CobaltStrike cs-watermark-1234567890 The Constant Company LLC	drb_ra
2023-06-08 07:47	64.176.7.118:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-2029527128	drb_ra
2023-06-08 07:47	ns4.digitelela.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-2029527128	drb_ra
2023-06-07 23:43	114.117.241.225:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 23:43	http://114.117.241.225/j.ad	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 23:43	http://182.43.76.21:3000/cm	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 23:43	159.223.140.130:443	Cobalt Strike	CobaltStrike cs-watermark-153084849 DIGITALOCEAN-ASN	drb_ra
2023-06-07 23:43	https://206.81.10.52/fwlink	Cobalt Strike	CobaltStrike cs-watermark-153084849 DIGITALOCEAN-ASN	drb_ra
2023-06-07 22:38	http://139.155.154.67:8089/cx	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 22:38	47.96.106.103:9443	Cobalt Strike	CobaltStrike cs-watermark-1	drb_ra
2023-06-07 22:38	https://120.48.83.89:9443/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-1	drb_ra
2023-06-07 22:37	http://5.188.86.194/push	Cobalt Strike	CobaltStrike cs-watermark-100000 GLOBALLAYER	drb_ra
2023-06-07 22:37	http://5.188.86.194/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-100000 GLOBALLAYER	drb_ra
2023-06-07 22:35	https://43.143.30.148:44334/ptj	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-07 17:11	43.136.130.29:6666	Cobalt Strike	CobaltStrike cs-watermark-6	drb_ra
2023-06-07 16:25	http://144.48.241.108:8080/push	Cobalt Strike	CLOUDIE-AS-AP Cloudie Limited CobaltStrike cs-watermark-0	drb_ra
2023-06-07 16:25	46.101.149.239:443	Cobalt Strike	CobaltStrike cs-watermark-1455341464 DIGITALOCEAN-ASN	drb_ra
2023-06-07 16:25	https://46.101.149.239/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-1455341464 DIGITALOCEAN-ASN	drb_ra
2023-06-07 16:25	http://101.37.88.59:5998/cx	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-07 16:25	http://101.34.222.38:8081/load	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 16:25	http://110.185.104.124:12345/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 16:25	101.35.196.8:80	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 16:25	http://service-ln38c3rd-1257826321.sh.apigw.tencentcs.com/api/getit	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 16:25	service-ln38c3rd-1257826321.sh.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 16:25	3.91.240.152:443	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 16:25	https://3.91.240.152/dot.gif	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 16:24	http://120.46.136.219:10001/activity	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 16:24	8.146.201.155:443	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-07 16:24	https://8.146.201.155/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-07 16:24	http://121.4.88.169:8081/visit.js	Cobalt Strike	CobaltStrike cs-watermark-1	drb_ra
2023-06-07 16:24	http://120.46.193.16:8666/ptj	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-07 16:24	45.92.127.141:8008	Cobalt Strike	CobaltStrike cs-watermark-674054486 DEDIPATH-LLC	drb_ra
2023-06-07 16:24	101.43.154.138:443	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-07 16:24	https://10.23.204.166/ca	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-07 16:24	43.139.51.52:80	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-07 16:24	http://43.139.51.52/fwlink	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-07 16:24	43.143.30.148:443	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-07 16:24	http://120.48.117.104:8081/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 16:24	http://101.37.91.138:8080/www/handle/doc	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 16:24	52.63.12.65:443	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-0	drb_ra
2023-06-07 16:24	https://52.63.12.65/ga.js	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-0	drb_ra
2023-06-07 16:23	http://101.35.196.8:8080/api/getit	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 16:23	http://114.132.218.55:2222/pixel	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 16:23	185.225.74.55:80	Cobalt Strike	AS_DELIS CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 16:23	http://185.225.74.55/en_US/all.js	Cobalt Strike	AS_DELIS CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 16:23	http://123.56.226.153:9999/ca	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 16:23	http://47.104.163.239:9999/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-07 16:23	104.225.149.156:443	Cobalt Strike	CobaltStrike cs-watermark-987654321 IT7NET	drb_ra
2023-06-07 16:23	https://104.225.149.156/cm	Cobalt Strike	CobaltStrike cs-watermark-987654321 IT7NET	drb_ra
2023-06-07 16:23	http://118.89.203.184:10081/api/x	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 14:49	http://104.249.174.108:10333/cm	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-07 14:48	http://104.249.174.78:10333/pixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-07 14:48	http://104.249.174.79:10333/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-07 14:48	http://103.139.2.185:10333/ptj	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-07 14:46	http://103.139.2.185:8000/cx	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-07 14:38	http://124.222.129.148:1111/ga.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 14:26	http://47.93.60.109:8013/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 14:24	https://103.39.78.208/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-100000 VH-GLOBAL VH Global Limited	drb_ra
2023-06-07 14:17	https://120.26.46.50:8879/activity	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-07 14:16	http://webcopy.cloud/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-999999	drb_ra
2023-06-07 14:15	http://103.39.78.208:8080/cx	Cobalt Strike	CobaltStrike cs-watermark-100000 VH-GLOBAL VH Global Limited	drb_ra
2023-06-07 14:13	https://124.221.246.224:4430/pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 14:12	https://oss-update.duckdns.org/ga.js	Cobalt Strike	CobaltStrike CONTABO cs-watermark-987654321	drb_ra
2023-06-07 14:00	https://103.149.200.79:990/match	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 13:51	http://59.38.109.66:2001/ptj	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-07 13:43	http://168.61.36.253:668/fwlink	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-07 13:40	http://172.174.64.174:668/load	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-07 13:38	http://173.82.227.238:8011/cm	Cobalt Strike	CobaltStrike cs-watermark-987654321 MULTA-ASN1	drb_ra
2023-06-07 13:30	http://120.26.46.50:8873/cx	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-07 13:25	http://47.102.120.55:8888/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 13:10	http://175.24.177.84:50002/cx	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-07 12:59	https://8.140.37.238:9999/fwlink	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 12:52	http://47.109.47.215:8888/ptj	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 12:51	http://175.178.42.176:9999/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-07 12:43	https://154.221.17.44:2080/load	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 12:40	http://81.68.215.53:9999/match	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 12:39	43.136.180.115:80	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 12:39	http://service-k6swyxf1-1258536377.cd.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 12:38	http://39.98.184.70:6666/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 12:38	194.50.153.1:443	Cobalt Strike	CobaltStrike cs-watermark-587247372 VTX Services SA	drb_ra
2023-06-07 12:38	43.136.180.115:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 12:38	service-k6swyxf1-1258536377.cd.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 12:38	https://service-k6swyxf1-1258536377.cd.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 12:38	143.42.120.105:443	Cobalt Strike	Akamai Connected Cloud CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 12:38	https://143.42.120.105/jquery-3.3.1.min.js	Cobalt Strike	Akamai Connected Cloud CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 12:37	http://123.249.5.196:8000/j.ad	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 12:37	45.55.194.199:443	Cobalt Strike	CobaltStrike cs-watermark-1905905741 DigitalOcean LLC	drb_ra
2023-06-07 12:37	121.36.242.11:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 12:36	http://121.36.242.11/sugrec	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 12:36	143.42.120.105:80	Cobalt Strike	Akamai Connected Cloud CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 12:36	http://143.42.120.105/jquery-3.3.1.min.js	Cobalt Strike	Akamai Connected Cloud CobaltStrike cs-watermark-391144938	drb_ra
2023-06-07 12:36	http://82.157.142.84:8099/jquery_2.4.0/5eN1bjq8AAUYm2zgoY3K/ll_9354efa.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 12:35	121.36.242.11:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 12:35	http://124.222.166.63:8011/ga.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-07 12:35	https://121.36.242.11/sugrec	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 12:35	47.115.215.203:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 12:35	http://47.115.215.203/activity	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 12:35	194.50.153.1:80	Cobalt Strike	CobaltStrike cs-watermark-587247372 VTX Services SA	drb_ra
2023-06-07 12:33	http://8.218.203.19/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-07 10:05	https://blacktulip.tk/visit.js	Cobalt Strike	CobaltStrike cs-watermark-1447076490	drb_ra
2023-06-07 10:05	https://95.160.103.159/j.ad	Cobalt Strike	CobaltStrike cs-watermark-1447076490	drb_ra
2023-06-07 10:04	http://119.96.233.154:8088/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-07 10:01	121.4.69.24:1	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 10:00	test3.imortal.icu	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 10:00	test2.imortal.icu	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 10:00	test1.imortal.icu	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 10:00	ns3.imortal.icu	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 10:00	ns2.imortal.icu	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 09:59	ns1.imortal.icu	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 09:46	https://light.tsinghua.fyi:8443/owa/LXnpttWVHHt2PDiF2JCq	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-07 09:08	https://47.115.43.112:10443/Shelter	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-07 09:08	179.43.142.52:2053	Cobalt Strike	CobaltStrike cs-watermark-666666 PLI-AS	drb_ra
2023-06-07 09:07	52.170.97.124:668	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-07 09:07	http://172.174.64.174:668/activity	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-07 02:32	https://139.155.148.159:8080/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 22:36	146.190.15.152:80	Cobalt Strike	CobaltStrike cs-watermark-2080184617 DIGITALOCEAN-ASN	drb_ra
2023-06-06 22:35	128.199.11.222:80	Cobalt Strike	CobaltStrike cs-watermark-2080184617 DIGITALOCEAN-ASN	drb_ra
2023-06-06 22:35	http://128.199.11.222/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-2080184617 DIGITALOCEAN-ASN	drb_ra
2023-06-06 22:05	154.8.193.49:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 22:05	https://154.8.193.49/activity	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 22:05	43.142.191.38:2443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 22:05	https://service-9op9r1ye-1306177445.gz.apigw.tencentcs.com:2443/api/user	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 22:04	43.138.36.61:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 22:04	https://43.138.36.61/owa/	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 22:04	http://175.178.90.192:6603/ga.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 22:04	http://182.92.202.43:81/fwlink	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:14	45.77.195.73:443	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-587247372	drb_ra
2023-06-06 16:14	resysmon.net	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-587247372	drb_ra
2023-06-06 16:14	https://resysmon.net/dev/coke/CQHL5IYQF	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-587247372	drb_ra
2023-06-06 16:14	120.132.81.198:9000	Cobalt Strike	CobaltStrike cs-watermark-6	drb_ra
2023-06-06 16:14	http://121.40.192.133:8099/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-06 16:14	http://81.71.17.43:8000/ptj	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 16:14	137.175.66.41:443	Cobalt Strike	CobaltStrike cs-watermark-100000 PEGTECHINC	drb_ra
2023-06-06 16:14	https://137.175.66.41/ga.js	Cobalt Strike	CobaltStrike cs-watermark-100000 PEGTECHINC	drb_ra
2023-06-06 16:13	118.31.164.133:80	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 16:13	http://118.31.164.133/dpixel	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 16:13	http://47.104.163.239:5678/fwlink	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-06 16:13	https://194.180.48.160:8943/cx	Cobalt Strike	AS_DELIS CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 16:13	40.112.62.173:668	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-06 16:13	144.217.241.206:80	Cobalt Strike	CobaltStrike cs-watermark-0 OVH	drb_ra
2023-06-06 16:13	http://144.217.241.206/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-0 OVH	drb_ra
2023-06-06 16:13	http://139.155.148.159:9080/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 16:13	http://124.220.160.23:8054/mht_image/	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 16:13	116.62.176.156:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 16:13	8.134.15.56:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:13	service-536yrr0s-1305465584.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:13	https://service-536yrr0s-1305465584.gz.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:12	117.50.172.217:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:12	http://117.50.172.217/api/getit	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:12	47.107.115.48:443	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-06 16:12	https://47.107.115.48/push	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-06 16:12	207.148.117.162:80	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 16:12	http://207.148.117.162/IE9CompatViewList.xml	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 16:12	40.71.99.148:668	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-06 16:12	http://168.61.36.253:668/match	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-06 16:12	117.50.172.217:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:12	service-j815x7l4-1302505002.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:12	https://service-j815x7l4-1302505002.gz.apigw.tencentcs.com/api/getit	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:12	http://47.107.115.48:5432/fwlink	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-06 16:12	124.223.91.53:10000	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-06 16:12	139.155.154.67:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 16:12	https://139.155.154.67/j.ad	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 16:12	81.69.5.139:443	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-06 16:12	https://81.69.5.139/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-06 16:11	8.217.192.147:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:11	http://8.217.192.147/fwlink	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 16:11	43.131.246.242:80	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 16:11	http://43.131.246.242/_/scs/mail-static/_/js/	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 16:11	http://47.117.163.173:4447/j.ad	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 16:11	123.207.3.132:443	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-06 16:11	https://123.207.3.132/activity	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-06 16:11	103.148.186.127:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 16:11	https://103.148.186.127/dpixel	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 15:11	139.199.3.221:443	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-06 15:11	https://139.199.3.221/admin/login	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-06 15:10	https://166.0.95.43:8443/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-587247372 RouterHosting LLC	drb_ra
2023-06-06 15:10	111.90.151.167:80	Cobalt Strike	CobaltStrike cs-watermark-0 Shinjiru Technology Sdn Bhd	drb_ra
2023-06-06 15:10	http://111.90.151.167/pixel	Cobalt Strike	CobaltStrike cs-watermark-0 Shinjiru Technology Sdn Bhd	drb_ra
2023-06-06 15:10	https://45.81.39.175:10443/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-587247372 Delis LLC	drb_ra
2023-06-06 15:09	132.145.49.27:443	Cobalt Strike	CobaltStrike cs-watermark-987654321 ORACLE-BMC-31898	drb_ra
2023-06-06 15:09	https://132.145.49.27/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321 ORACLE-BMC-31898	drb_ra
2023-06-06 15:08	120.79.3.140:9010	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 15:08	http://139.155.126.141:9010/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 15:08	74.235.194.94:443	Cobalt Strike	CobaltStrike cs-watermark-976838694 Microsoft Corporation	drb_ra
2023-06-06 15:08	citrixinfo.azureedge.net	Cobalt Strike	CobaltStrike cs-watermark-976838694 Microsoft Corporation	drb_ra
2023-06-06 15:08	https://citrixinfo.azureedge.net/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-976838694 Microsoft Corporation	drb_ra
2023-06-06 15:08	176.113.71.229:9192	Cobalt Strike	CobaltStrike cs-watermark-426352781 XNNET LLC	drb_ra
2023-06-06 15:08	https://121.41.35.65:9192/_/scs/mail-static/_/js/	Cobalt Strike	CobaltStrike cs-watermark-426352781 XNNET LLC	drb_ra
2023-06-06 15:07	http://179.43.154.137/cm	Cobalt Strike	CobaltStrike cs-watermark-0 PLI-AS	drb_ra
2023-06-06 15:07	https://47.101.41.158:37676/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-06 15:07	http://43.138.231.237:50050/ga.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 15:06	www.guestwhoami.xyz	Cobalt Strike	CHINANET-BACKBONE CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 15:06	220.173.24.251:8443	Cobalt Strike	CHINANET-BACKBONE CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 15:06	https://www.guestwhoami.xyz:8443/jquery-3.3.1.min.js	Cobalt Strike	CHINANET-BACKBONE CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 15:05	http://175.178.90.192:6605/activity	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 14:52	http://103.139.2.185:10333/fwlink	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-06 14:44	http://98.71.232.223/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1162521507 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-06 14:15	43.128.115.54:64443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 14:12	https://107.172.216.18:8082/dpixel	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-666666	drb_ra
2023-06-06 14:04	http://1.14.63.190:8888/cx	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-06 13:51	https://1.117.93.65/activity	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-06 13:27	oss-update.duckdns.org	Cobalt Strike	CobaltStrike CONTABO cs-watermark-987654321	drb_ra
2023-06-06 13:27	https://oss-update.duckdns.org/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike CONTABO cs-watermark-987654321	drb_ra
2023-06-06 13:20	https://47.100.180.123:3004/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-6	drb_ra
2023-06-06 13:15	https://120.48.83.89/include/template/isx.php	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 11:32	https://129.226.207.99:42443/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-06 09:12	https://81.68.215.53:4443/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 09:12	https://service-7d3qa3rc-1306912653.nj.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 09:12	service-7d3qa3rc-1306912653.nj.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-06 09:12	3.22.70.55:443	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 09:12	ddc6e733wcyh7.cloudfront.net	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 09:11	https://ddc6e733wcyh7.cloudfront.net/5aq/XP/SY75Qyw.htm	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-06-06 09:11	193.29.13.148:443	Cobalt Strike	CobaltStrike cs-watermark-674054486	drb_ra
2023-06-06 09:11	https://193.29.13.148/cm	Cobalt Strike	CobaltStrike cs-watermark-674054486	drb_ra
2023-06-06 02:33	https://114.116.101.84/en-us/silentauth	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-05 22:36	https://47.108.24.98:4433/api/x	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 22:35	https://175.24.177.84:50001/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-05 22:11	http://42.51.82.39:8088/cm	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-05 22:11	http://124.223.91.53:88/push	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-05 22:11	https://47.98.221.192:4438/visit.js	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-05 21:27	54.236.154.41:1	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1049482653	drb_ra
2023-06-05 21:27	ns1.nateeka.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1049482653	drb_ra
2023-06-05 21:25	194.135.17.31:1	Cobalt Strike	CobaltStrike cs-watermark-987654321 KRAUD-AS	drb_ra
2023-06-05 21:25	d1am0nd.ddns.net	Cobalt Strike	CobaltStrike cs-watermark-987654321 KRAUD-AS	drb_ra
2023-06-05 20:21	http://172.174.64.174:668/push	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-05 20:21	http://1.12.62.177:35465/cx	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-05 20:20	http://103.139.2.185:10333/visit.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-05 20:20	http://31.25.88.171:10333/push	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-05 20:18	http://103.70.59.130:8945/visit.js	Cobalt Strike	CobaltStrike cs-watermark-305419896 IPTELECOM-AP IPTELECOM ASIA	drb_ra
2023-06-05 20:02	https://124.223.6.231:4432/pixel	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-05 19:53	http://8.218.203.19/ga.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-05 19:51	http://43.139.146.60:2222/ga.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-05 19:36	http://116.196.68.29:50001/include/template/isx.php	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-05 19:28	http://47.100.180.123:3003/match	Cobalt Strike	CobaltStrike cs-watermark-6	drb_ra
2023-06-05 18:31	http://172.174.64.174:668/visit.js	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-05 18:25	https://117.149.201.69/en-us/silentauth	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-05 18:25	https://58.216.106.230/en-us/silentauth	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-05 18:23	http://43.138.215.2:6666/api/x	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 18:20	https://106.52.253.80/push	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 18:18	http://172.174.64.174:668/dpixel	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-05 18:14	http://88.218.192.130:8086/dpixel	Cobalt Strike	CobaltStrike cs-watermark-1873433027 XNNET	drb_ra
2023-06-05 18:04	http://172.174.64.174:668/fwlink	Cobalt Strike	CobaltStrike cs-watermark-946982952 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-05 18:03	http://106.52.253.80:8080/push	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 17:39	http://198.44.168.67:10000/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 17:37	http://13.125.173.198/activity	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-06-05 17:32	http://120.26.46.50:8873/pixel	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-05 17:24	https://45.141.119.101/image/	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-05 17:24	http://103.44.244.251:7776/activity	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:23	service-buv6fchs-1305961616.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 17:23	http://service-buv6fchs-1305961616.gz.apigw.tencentcs.com/api/getit	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 17:23	http://45.94.42.39:6661/pixel	Cobalt Strike	CLOUDIE-AS-AP Cloudie Limited CobaltStrike cs-watermark-987654321	drb_ra
2023-06-05 17:23	http://47.113.231.140:81/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-05 17:23	8.134.78.237:443	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-06-05 17:23	https://8.134.78.237/push	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-06-05 17:23	http://120.46.177.219:88/api/getit	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 17:23	146.56.234.58:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-05 17:23	http://8.134.63.69:808/dpixel	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-05 17:22	43.138.213.135:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:22	http://service-gt4aitdw-1252551592.gz.apigw.tencentcs.com/api/getit	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:22	service-gt4aitdw-1252551592.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:22	http://173.82.227.238:8011/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321 MULTA-ASN1	drb_ra
2023-06-05 17:22	193.233.232.233:80	Cobalt Strike	AEZA-AS CobaltStrike cs-watermark-100000	drb_ra
2023-06-05 17:22	http://193.233.232.233/g.pixel	Cobalt Strike	AEZA-AS CobaltStrike cs-watermark-100000	drb_ra
2023-06-05 17:22	47.120.10.96:80	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-05 17:22	http://47.120.10.96/load	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-05 17:22	http://173.82.227.238:1900/pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321 MULTA-ASN1	drb_ra
2023-06-05 17:22	http://8.9.36.60:1234/match	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-0	drb_ra
2023-06-05 17:22	http://43.138.213.135:88/api/getit	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:21	http://47.117.163.173:6666/push	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-05 17:21	118.89.203.184:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:21	service-7hga0z7x-1259444062.sh.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:21	http://service-7hga0z7x-1259444062.sh.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:21	47.108.24.98:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 17:21	service-maoif4bl-1313584875.bj.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 17:21	https://service-maoif4bl-1313584875.bj.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 17:21	http://8.146.201.155/dpixel	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-05 17:21	8.146.201.155:80	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-05 17:21	http://175.24.177.84:50002/activity	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-05 17:21	http://114.132.185.163:18099/load	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-05 17:17	http://114.115.201.249:8080/pixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:15	http://47.92.78.238:8888/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:07	https://114.115.201.249/ga.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 17:06	http://185.239.225.87:5431/ca	Cobalt Strike	CobaltStrike cs-watermark-426352781 SNL-HK Starry Network Limited	drb_ra
2023-06-05 14:56	http://22:22/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-05 14:42	http://139.196.47.225:8045/search	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-05 14:37	http://85.175.101.203/fwlink	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-05 12:34	http://119.96.233.154:8088/visit.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-05 12:32	43.138.215.2:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 12:32	https://service-pzmjnxrc-1306912653.nj.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 12:32	service-pzmjnxrc-1306912653.nj.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 12:31	23.108.57.45:443	Cobalt Strike	CobaltStrike cs-watermark-1580103814 LEASEWEB-USA-MIA-11	drb_ra
2023-06-05 12:31	xoyukiveni.co	Cobalt Strike	CobaltStrike cs-watermark-1580103814 LEASEWEB-USA-MIA-11	drb_ra
2023-06-05 12:31	https://xoyukiveni.co/cr.css	Cobalt Strike	CobaltStrike cs-watermark-1580103814 LEASEWEB-USA-MIA-11	drb_ra
2023-06-05 12:30	139.155.145.128:8443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-05 09:15	https://1.14.47.145:4444/pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-05 09:14	360sec.cloud	Cobalt Strike	CobaltStrike cs-watermark-666666 IDCCLOUD	drb_ra
2023-06-05 09:14	http://360sec.cloud/restapi/soa2/21881/json/gethotdestination	Cobalt Strike	CobaltStrike cs-watermark-666666 IDCCLOUD	drb_ra
2023-06-05 09:01	123.207.51.53:1	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 09:01	ns3.fuckworldxxx.shop	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 09:01	ns2.fuckworldxxx.shop	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-05 09:00	ns1.fuckworldxxx.shop	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 22:19	http://119.96.233.154:8088/zOMGAPT	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-04 22:19	http://163.123.142.160:8082/c/msdownload/update/others/2016/12/29136388_	Cobalt Strike	AS-SERVERION CobaltStrike cs-watermark-1580103824	drb_ra
2023-06-04 22:19	89.117.63.195:443	Cobalt Strike	CobaltStrike CONTABO cs-watermark-987654321	drb_ra
2023-06-04 22:19	https://89.117.63.195/ga.js	Cobalt Strike	CobaltStrike CONTABO cs-watermark-987654321	drb_ra
2023-06-04 22:18	101.37.88.59:5999	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-04 22:18	https://70.18.21.5:5999/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-04 22:18	http://167.179.119.78:8080/async/newtab_promos	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 22:18	http://39.105.51.2:99/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-04 22:18	87.165.119.9:2222	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-04 22:18	http://80.143.33.5:2222/j.ad	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-04 22:18	http://192.168.2.116:2222/push	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-04 16:25	175.178.168.73:65534	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-04 16:25	http://155.94.163.230:65534/visit.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-04 16:25	http://175.24.205.80:7878/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 16:25	104.248.61.95:443	Cobalt Strike	CobaltStrike cs-watermark-1347282662 DIGITALOCEAN-ASN	drb_ra
2023-06-04 16:25	cdnua01.project27strategy.com	Cobalt Strike	CobaltStrike cs-watermark-1347282662 DIGITALOCEAN-ASN	drb_ra
2023-06-04 16:25	https://cdnua01.project27strategy.com/en-us/p/onerf/MeSilentPassport	Cobalt Strike	CobaltStrike cs-watermark-1347282662 DIGITALOCEAN-ASN	drb_ra
2023-06-04 16:25	139.155.140.168:80	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-04 16:25	http://139.155.140.168/match	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-04 16:25	107.173.122.150:80	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-666666	drb_ra
2023-06-04 16:25	http://10.0.52.175/dpixel	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-666666	drb_ra
2023-06-04 16:25	http://66.152.178.184:19999/cm	Cobalt Strike	CobaltStrike cs-watermark-0 MULTA-ASN1	drb_ra
2023-06-04 16:25	http://49.4.88.243:6662/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 16:25	66.152.178.184:4444	Cobalt Strike	CobaltStrike cs-watermark-0 MULTA-ASN1	drb_ra
2023-06-04 16:25	http://13.125.173.198/dot.gif	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-06-04 16:25	13.125.173.198:80	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-06-04 16:24	http://103.193.189.251:3306/suggest	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 16:24	http://42.51.82.39:888/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-04 16:24	192.241.156.106:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890 DIGITALOCEAN-ASN	drb_ra
2023-06-04 16:24	http://192.241.156.106/visit.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890 DIGITALOCEAN-ASN	drb_ra
2023-06-04 16:24	http://175.24.186.154:8012/activity	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 16:24	https://193.134.209.247/pandownload/api/v2/userinfo/get	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 16:24	175.24.207.93:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-04 16:24	http://124.223.111.131:6789/cx	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-04 16:24	http://221.176.152.202:8913/cm	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 16:24	8.218.180.24:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 16:24	http://8.218.180.24/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 16:23	http://47.120.12.203:8088/dpixel	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 16:23	http://23.94.53.126:8089/j.ad	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 12:33	https://101.37.88.59:6000/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-04 10:14	193.134.209.247:1	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 10:14	ns98.0xgg.eu.org	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 10:14	ns99.0xgg.eu.org	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 09:50	47.87.129.207:443	Cobalt Strike	CobaltStrike cs-watermark-674054486	drb_ra
2023-06-04 09:50	https://accessdevsolutions.com/ku.js	Cobalt Strike	CobaltStrike cs-watermark-674054486	drb_ra
2023-06-04 09:50	accessdevsolutions.com	Cobalt Strike	CobaltStrike cs-watermark-674054486	drb_ra
2023-06-04 09:50	81.68.77.167:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-04 09:50	http://81.68.77.167/load	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-04 09:49	http://116.63.185.222:8086/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-6	drb_ra
2023-06-04 09:49	https://38.47.111.241/ptj	Cobalt Strike	CobaltStrike Cogent Communications cs-watermark-987654321	drb_ra
2023-06-04 09:49	38.47.111.241:443	Cobalt Strike	CobaltStrike Cogent Communications cs-watermark-987654321	drb_ra
2023-06-04 09:21	5.42.66.28:8008	Cobalt Strike	CobaltStrike cs-watermark-674054486 PARTNER-AS	drb_ra
2023-06-04 09:21	https://39.105.143.177:8888/updates	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-04 08:54	http://103.139.2.185:10333/load	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-04 08:52	http://360sec.site/restapi/soa2/21881/json/gethotdestination	Cobalt Strike	CobaltStrike cs-watermark-666666 IDCCLOUD	drb_ra
2023-06-04 08:52	360sec.site	Cobalt Strike	CobaltStrike cs-watermark-666666 IDCCLOUD	drb_ra
2023-06-04 08:44	https://85.217.144.148/en_US/all.js	Cobalt Strike	AS_DELIS CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 08:41	http://85.217.144.148/__utm.gif	Cobalt Strike	AS_DELIS CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 08:39	http://111.173.119.217:8001/match	Cobalt Strike	CHINANET-BACKBONE CobaltStrike cs-watermark-987654321	drb_ra
2023-06-04 08:36	http://1.14.63.190:8888/visit.js	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-04 08:35	http://43.138.215.2:8001/load	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 08:35	http://43.138.215.2:6666/ptj	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 08:34	service-li2y5xbg-1314775489.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-04 08:34	https://service-li2y5xbg-1314775489.gz.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-04 08:33	https://js.msedgeupdate.com/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-04 08:31	https://106.53.67.175/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-04 08:30	http://43.138.215.2:7777/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-04 08:29	http://103.139.2.185:8000/fwlink	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-04 08:29	http://198.211.33.156:9999/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-100000 Wave 7 LLC	drb_ra
2023-06-04 08:29	https://8.134.13.219/cx	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-06-04 08:24	http://59.110.221.242/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-04 08:13	https://31.44.184.129/cm	Cobalt Strike	CobaltStrike cs-watermark-1580103824 PINDC-AS	drb_ra
2023-06-04 08:13	http://85.175.101.203/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-04 08:10	101.89.202.252:1	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 08:10	ns4.sfklla.vip	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 08:10	ns3.sfklla.vip	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 08:10	ns2.sfklla.vip	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 08:10	ns1.sfklla.vip	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-04 02:34	https://103.44.246.104:9083/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-03 22:36	47.115.230.18:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-03 22:36	https://181.214.39.102:18443/rp/1hGciYbPE6ALKVPnmrkw4Pko3GI.br.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 NEXTARRAY-ASN-01	drb_ra
2023-06-03 22:24	https://47.104.84.52:8443/azure/api/v2/userinfo/get	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-03 19:30	1.13.160.239:1	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 19:30	cce.netuse1.eu.org	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 19:30	dww.netuse1.eu.org	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 19:30	www.netuse1.eu.org	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 19:30	down.dlsec.eu.org	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 19:30	pass.dlsec.eu.org	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 19:29	101.200.197.112:1	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-03 19:29	test.gxzf.site	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-03 16:30	service-907f2ttx-1318291330.sh.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:30	82.156.151.200:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:30	https://service-907f2ttx-1318291330.sh.apigw.tencentcs.com/js/lib/jquery-1-edb203c114.10.2.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:30	http://107.172.87.128:812/fwlink	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:30	http://39.101.70.33/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:29	101.35.152.19:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:29	https://101.35.152.19/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:29	http://81.68.77.167:8088/activity	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-03 16:29	http://43.138.138.159:8011/match	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:29	134.209.108.136:443	Cobalt Strike	CobaltStrike cs-watermark-123456789 DIGITALOCEAN-ASN	drb_ra
2023-06-03 16:29	https://134.209.108.136/develop/services/GVB9HCE7	Cobalt Strike	CobaltStrike cs-watermark-123456789 DIGITALOCEAN-ASN	drb_ra
2023-06-03 16:29	45.141.119.101:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:29	https://45.141.119.101/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:29	47.96.106.103:8443	Cobalt Strike	CobaltStrike cs-watermark-1	drb_ra
2023-06-03 16:29	http://120.48.83.89:8443/activity	Cobalt Strike	CobaltStrike cs-watermark-1	drb_ra
2023-06-03 16:29	106.75.29.225:80	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-03 16:29	http://106.75.29.225/j.ad	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-03 16:29	192.241.156.106:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890 DIGITALOCEAN-ASN	drb_ra
2023-06-03 16:29	https://192.241.156.106/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890 DIGITALOCEAN-ASN	drb_ra
2023-06-03 16:28	http://114.115.201.249:8080/load	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-03 16:28	http://64.176.42.226/pixel.gif	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-305419896	drb_ra
2023-06-03 16:28	64.176.42.226:80	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-305419896	drb_ra
2023-06-03 16:28	43.134.36.170:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-03 16:28	47.115.230.18:80	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-03 16:28	http://47.115.230.18/sugrec	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-03 16:28	95.160.103.159:443	Cobalt Strike	CobaltStrike cs-watermark-1447076490	drb_ra
2023-06-03 16:28	blacktulip.tk	Cobalt Strike	CobaltStrike cs-watermark-1447076490	drb_ra
2023-06-03 16:28	https://blacktulip.tk/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1447076490	drb_ra
2023-06-03 16:28	https://95.160.103.159/ca	Cobalt Strike	CobaltStrike cs-watermark-1447076490	drb_ra
2023-06-03 16:28	39.107.250.164:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-03 16:28	note.jianshu.com.wsdvs.com	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-03 16:28	https://note.jianshu.com.wsdvs.com/azure/api/v2/userinfo/get	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-03 16:28	http://207.148.64.174:3154/fwlink	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-305419896	drb_ra
2023-06-03 16:28	https://194.135.17.31/ga.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 KRAUD-AS	drb_ra
2023-06-03 16:28	194.135.17.31:443	Cobalt Strike	CobaltStrike cs-watermark-987654321 KRAUD-AS	drb_ra
2023-06-03 16:28	http://107.173.122.150:8088/ptj	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-666666	drb_ra
2023-06-03 16:27	http://47.98.220.25:9000/dpixel	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-03 16:27	http://47.120.2.172/push	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:27	47.120.2.172:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 16:27	http://80.66.79.139:8908/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 12:38	185.126.226.108:8080	Cobalt Strike	CobaltStrike cs-watermark-987654321 Datacamp Limited	drb_ra
2023-06-03 12:38	cdn_1.cnnvd.club	Cobalt Strike	CobaltStrike cs-watermark-987654321 Datacamp Limited	drb_ra
2023-06-03 12:37	http://39.101.70.33/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 12:37	8.213.210.165:80	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 12:37	http://8.213.210.165/watch	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 12:37	https://46.17.45.213:4443/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1234567890 LLC Baxet	drb_ra
2023-06-03 12:36	http://8.213.210.165:8080/watch	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 12:36	103.97.178.13:8443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-03 12:36	https://light.tsinghua.fyi:8443/owa/vl-ZuQkOaCsXGGGokO0Qinkb	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-03 12:34	http://43.138.111.78:8899/updates	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-03 10:11	http://8.217.124.208:88/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-03 10:11	120.46.193.16:4444	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-03 10:10	http://124.222.64.203/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-03 10:10	124.222.64.203:80	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-03 09:46	https://43.142.169.169/push	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-03 09:46	http://1.14.63.190:8888/ptj	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-03 09:45	http://107.175.142.105:4848/en_US/all.js	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 09:44	hashmap.tw	Cobalt Strike	CobaltStrike cs-watermark-666666 IDCCLOUD	drb_ra
2023-06-03 09:44	http://hashmap.tw/restapi/soa2/21881/json/gethotdestination	Cobalt Strike	CobaltStrike cs-watermark-666666 IDCCLOUD	drb_ra
2023-06-03 09:36	https://39.105.31.193:50052/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-03 09:35	https://39.105.31.193/activity	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-03 09:34	http://103.139.2.185:10333/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-03 09:34	http://31.25.88.171:10333/fwlink	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-03 09:31	http://124.221.109.66/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-03 09:29	https://120.76.74.159/cm	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-03 09:29	http://198.211.33.156:9999/j.ad	Cobalt Strike	CobaltStrike cs-watermark-100000 Wave 7 LLC	drb_ra
2023-06-03 09:27	https://8.140.37.238:9999/cm	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-03 09:27	http://43.142.188.168:8223/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 09:26	http://175.178.242.75:50001/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 09:26	https://154.221.17.44:2080/match	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 09:20	http://114.55.59.125:8081/visit.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-03 09:19	http://43.139.69.115:8090/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-03 09:17	http://103.149.200.79:8080/ca	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 09:17	http://43.142.188.168:8333/j.ad	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 09:14	http://cs.kingsoft365.top:8083/match	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 09:14	https://47.236.19.63/ga.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-03 09:11	http://103.149.200.79:9530/cx	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-03 09:06	http://110.41.131.105/visit.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-03 02:36	http://163.123.142.160:8088/c/msdownload/update/others/2016/12/29136388_	Cobalt Strike	AS-SERVERION CobaltStrike cs-watermark-1580103824	drb_ra
2023-06-03 02:33	103.74.192.143:443	Cobalt Strike	CobaltStrike cs-watermark-987654321 LUCIDACLOUD LIMITED	drb_ra
2023-06-03 02:33	http://103.74.192.143/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321 LUCIDACLOUD LIMITED	drb_ra
2023-06-02 22:41	https://45.66.230.215:10443/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-587247372 QuadraNet Enterprises LLC	drb_ra
2023-06-02 22:40	http://114.115.201.249:6666/match	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 22:39	http://175.178.41.181:800/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 22:38	139.155.145.128:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 22:38	https://139.155.145.128/admin/facvicon.jpg	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 22:37	http://111.173.119.217:8001/ptj	Cobalt Strike	CHINANET-BACKBONE CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 22:36	54.84.149.228:443	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-1418130370	drb_ra
2023-06-02 22:36	citycredito.com	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-1418130370	drb_ra
2023-06-02 22:36	https://citycredito.com/jquery-3.3.1.min.js	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-1418130370	drb_ra
2023-06-02 22:35	http://47.92.78.238:8888/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 17:13	http://81.70.146.6:34241/dpixel	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-02 17:12	http://8.219.60.122:8080/ga.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 17:12	39.108.109.127:443	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-02 17:12	https://39.108.109.127/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-02 17:12	http://139.199.230.131:5060/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-02 17:12	47.87.131.22:8008	Cobalt Strike	ASN-QUADRANET-GLOBAL CobaltStrike cs-watermark-674054486	drb_ra
2023-06-02 17:12	http://atlantisenergysystems.com:8008/tab_shop_active.css	Cobalt Strike	ASN-QUADRANET-GLOBAL CobaltStrike cs-watermark-674054486	drb_ra
2023-06-02 17:12	http://116.196.92.18:8080/fwlink	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 17:12	http://8.219.60.122:8081/visit.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 17:12	http://125.75.36.120:81/ptj	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-02 17:12	114.115.201.249:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 17:12	https://114.115.201.249/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 17:12	http://8.143.2.128:888/www/handle/doc	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 17:11	111.230.30.197:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 17:11	service-a3q6cine-1318428097.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 17:11	https://service-a3q6cine-1318428097.gz.apigw.tencentcs.com/api/user	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 17:11	http://129.211.222.142:8090/api/getit	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 17:11	123.60.74.61:8000	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 17:11	http://107.173.15.230:8000/api/x	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 17:11	http://124.71.67.52:10086/activity	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-02 17:11	http://1.117.65.146:8023/ptj	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 17:11	120.26.192.139:443	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-02 17:11	https://120.26.192.139/load	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-02 17:10	http://1.14.63.190:8888/ga.js	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-02 17:10	27.157.113.61:5555	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 17:10	http://192.168.3.159:5555/fwlink	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 17:10	http://hack.mchotspring.press:5555/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 17:10	hack.mchotspring.press	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 17:10	http://198.44.168.67:10000/cx	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 17:10	52.146.88.246:443	Cobalt Strike	CobaltStrike cs-watermark-1380467819 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-06-02 17:10	132.145.49.27:80	Cobalt Strike	CobaltStrike cs-watermark-987654321 ORACLE-BMC-31898	drb_ra
2023-06-02 17:10	http://csremote.duckdns.org/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321 ORACLE-BMC-31898	drb_ra
2023-06-02 17:10	csremote.duckdns.org	Cobalt Strike	CobaltStrike cs-watermark-987654321 ORACLE-BMC-31898	drb_ra
2023-06-02 15:17	82.157.161.99:8082	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 13:33	111.90.149.239:1	Cobalt Strike	CobaltStrike cs-watermark-391144938 Shinjiru Technology Sdn Bhd	drb_ra
2023-06-02 13:33	ns3.m1crosoft.cloud	Cobalt Strike	CobaltStrike cs-watermark-391144938 Shinjiru Technology Sdn Bhd	drb_ra
2023-06-02 13:33	ns2.m1crosoft.cloud	Cobalt Strike	CobaltStrike cs-watermark-391144938 Shinjiru Technology Sdn Bhd	drb_ra
2023-06-02 13:33	ns1.m1crosoft.cloud	Cobalt Strike	CobaltStrike cs-watermark-391144938 Shinjiru Technology Sdn Bhd	drb_ra
2023-06-02 13:33	103.74.192.143:1	Cobalt Strike	CobaltStrike cs-watermark-987654321 LUCIDACLOUD LIMITED	drb_ra
2023-06-02 13:33	ns2.kirs1234.top	Cobalt Strike	CobaltStrike cs-watermark-987654321 LUCIDACLOUD LIMITED	drb_ra
2023-06-02 13:33	ns1.kirs1234.top	Cobalt Strike	CobaltStrike cs-watermark-987654321 LUCIDACLOUD LIMITED	drb_ra
2023-06-02 13:33	139.155.145.128:1	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 13:33	ns2.dnehtb.cn	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 13:33	ns1.dnehtb.cn	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 12:40	http://172.245.95.162:666/ptj	Cobalt Strike	CobaltStrike ColoCrossing cs-watermark-391144938	drb_ra
2023-06-02 12:39	http://110.40.211.65:9191/cx	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 12:39	47.108.239.81:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 12:39	osce12-0-sc.url.asiainfo-sec.com	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 12:39	https://osce12-0-sc.url.asiainfo-sec.com/dist/css/bootstrap.min.css	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 12:39	https://47.122.26.190/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 12:39	47.122.26.190:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 12:38	http://120.48.73.142:9191/match	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 12:36	47.122.26.190:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 12:36	http://47.122.26.190/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 12:36	http://124.222.129.148:1111/dpixel	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 12:36	23.94.223.153:443	Cobalt Strike	CobaltStrike ColoCrossing cs-watermark-100000	drb_ra
2023-06-02 12:36	https://23.94.223.153/news	Cobalt Strike	CobaltStrike ColoCrossing cs-watermark-100000	drb_ra
2023-06-02 10:27	https://103.39.78.208/visit.js	Cobalt Strike	CobaltStrike cs-watermark-100000 VH-GLOBAL VH Global Limited	drb_ra
2023-06-02 10:25	https://43.142.188.168/ga.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 10:21	http://43.138.32.7:25000/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 10:16	http://110.41.131.105:6666/visit.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 10:14	http://110.41.131.105:5555/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 10:13	http://114.55.59.125:8090/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 10:10	http://103.139.2.185:10333/dpixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-02 10:10	http://31.25.88.171:10333/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-02 10:08	https://103.44.244.251/ga.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 10:04	http://200.225.128.5/en_US/all.js	Cobalt Strike	AS-ALVIVA CobaltStrike cs-watermark-0	drb_ra
2023-06-02 10:04	http://43.143.248.98:8099/fwlink	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-02 10:03	http://1.14.121.202:8090/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 09:58	http://103.44.244.251:7777/dpixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 09:58	http://194.55.224.169/cx	Cobalt Strike	AS_DELIS CobaltStrike cs-watermark-0	drb_ra
2023-06-02 09:54	http://8.140.37.238:9090/cx	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 09:54	http://152.32.129.157:85/visit.js	Cobalt Strike	AS-ALVIVA CobaltStrike cs-watermark-0	drb_ra
2023-06-02 09:53	http://103.39.78.208:8080/visit.js	Cobalt Strike	CobaltStrike cs-watermark-100000 VH-GLOBAL VH Global Limited	drb_ra
2023-06-02 09:49	https://8.140.37.238:9999/ga.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 09:49	http://103.44.244.251/j.ad	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 09:48	http://111.230.52.21:8000/dpixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 09:40	http://124.222.54.66/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-02 09:38	https://121.37.68.228/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 09:38	http://103.149.200.79:8080/push	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-02 09:31	https://31.44.184.88/pixel	Cobalt Strike	CobaltStrike cs-watermark-1580103824 PINDC-AS	drb_ra
2023-06-02 09:29	baidu.moonsir.cf	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-06-02 09:29	https://baidu.moonsir.cf:2053/wp08/wp-includes/dtcla.php	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-06-02 09:25	http://85.175.101.203/visit.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-02 09:20	103.97.178.13:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 09:20	light.tsinghua.fyi	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 09:20	https://light.tsinghua.fyi/owa/LXnpttWVHHt2PDiF2JCq	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-02 09:19	1.117.88.221:443	Cobalt Strike	CobaltStrike cs-watermark-888888	drb_ra
2023-06-02 09:19	https://1.117.88.221/push	Cobalt Strike	CobaltStrike cs-watermark-888888	drb_ra
2023-06-02 09:19	https://193.134.209.247/azure/api/v2/userinfo/get	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-02 02:28	https://1.14.70.97:8899/cx	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-01 23:12	154.204.59.208:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 23:12	cs.server.bike	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 23:12	http://cs.server.bike/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 23:12	http://154.204.59.208/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 23:11	https://121.40.127.134:8090/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-01 22:31	121.4.154.20:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 22:31	http://121.4.154.20/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 22:29	http://91.213.50.110/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-668694132 ITRESHENIYA-AS	drb_ra
2023-06-01 22:29	67.198.232.217:80	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Krypt Technologies	drb_ra
2023-06-01 22:29	http://67.198.232.217/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Krypt Technologies	drb_ra
2023-06-01 22:28	154.213.64.87:443	Cobalt Strike	CobaltStrike cs-watermark-666666 IDCCLOUD	drb_ra
2023-06-01 17:13	54.204.197.16:80	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1006966750	drb_ra
2023-06-01 17:13	http://54.204.197.16/ca	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1006966750	drb_ra
2023-06-01 17:13	43.140.247.133:443	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-01 17:13	https://43.140.247.133/aaaaaaaaa	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-06-01 17:13	http://39.101.70.33/ga.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-01 17:12	http://114.132.67.32:8850/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:12	http://116.62.188.205:801/j.ad	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-01 17:12	115.126.113.81:8080	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:12	tongwl.top	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:12	http://tongwl.top:8080/pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:12	202.79.169.58:8000	Cobalt Strike	BCPL-SG BGPNET Global ASN CobaltStrike cs-watermark-391144938	drb_ra
2023-06-01 17:12	78.128.112.201:443	Cobalt Strike	AS_4MEDIA CobaltStrike cs-watermark-12345	drb_ra
2023-06-01 17:12	https://78.128.112.201/visit.js	Cobalt Strike	AS_4MEDIA CobaltStrike cs-watermark-12345	drb_ra
2023-06-01 17:12	https://163.172.214.172/ga.js	Cobalt Strike	CobaltStrike cs-watermark-100000 Online SAS	drb_ra
2023-06-01 17:12	163.172.214.172:443	Cobalt Strike	CobaltStrike cs-watermark-100000 Online SAS	drb_ra
2023-06-01 17:12	http://116.62.188.205:6666/visit.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-01 17:12	https://110.40.156.244:444/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 17:11	http://43.143.243.15:1080/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-01 17:11	http://101.42.254.219:5656/api/x	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-01 17:11	http://43.142.74.120:9090/ptj	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-01 17:11	154.91.85.91:9192	Cobalt Strike	CobaltStrike cs-watermark-1873433027 TERAEXCH	drb_ra
2023-06-01 17:11	123.207.68.150:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:11	http://123.207.68.150/match	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:11	202.79.169.117:8000	Cobalt Strike	BCPL-SG BGPNET Global ASN CobaltStrike cs-watermark-391144938	drb_ra
2023-06-01 17:11	http://202.79.169.52:8000/Complete/Option/IJROHEEXEK	Cobalt Strike	BCPL-SG BGPNET Global ASN CobaltStrike cs-watermark-391144938	drb_ra
2023-06-01 17:11	46.29.165.123:443	Cobalt Strike	ASBAXET CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 17:11	https://46.29.165.123/visit.js	Cobalt Strike	ASBAXET CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 17:11	1.116.144.253:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:11	http://1.116.144.253/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:11	175.178.41.181:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 17:11	http://175.178.41.181/ca	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 17:11	121.4.154.20:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:11	https://121.4.154.20/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:11	47.115.215.203:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:11	https://47.115.215.203/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:10	yestcoin.com	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:10	http://45.63.53.9:4444/cm	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 17:10	http://yestcoin.com:4444/visit.js	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 16:53	http://39.98.184.70:8080/pixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 16:46	http://111.230.52.21:8000/ptj	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 16:39	http://59.110.221.242/ca	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 16:31	http://150.158.13.117:9000/wp08/wp-includes/dtcla.php	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-06-01 16:23	http://service-23lhnh62-1258596386.gz.apigw.tencentcs.com/x/getit	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 16:19	http://80.143.33.5:2222/ga.js	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 16:19	http://192.168.2.116:2222/load	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 16:14	https://209.141.39.46:1443/fwlink	Cobalt Strike	CobaltStrike cs-watermark-391144938 PONYNET	drb_ra
2023-06-01 16:09	https://service-93y89p5u-1307021836.gz.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 15:49	http://124.221.127.90/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-01 15:32	https://116.204.114.153/activity	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-06-01 15:10	https://121.41.101.90/visit.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 14:51	http://194.55.224.169/match	Cobalt Strike	AS_DELIS CobaltStrike cs-watermark-0	drb_ra
2023-06-01 14:44	http://119.45.197.68:8089/ptj	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 14:44	http://121.41.101.90:12280/visit.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 14:22	https://js.msedgeupdate.com/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-06-01 14:21	http://152.32.129.157:85/__utm.gif	Cobalt Strike	AS-ALVIVA CobaltStrike cs-watermark-0	drb_ra
2023-06-01 14:12	http://43.143.203.110/fwlink	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 14:06	https://43.138.30.109:7777/ga.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-01 13:51	http://124.223.91.53/ca	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-06-01 13:48	service-93y89p5u-1307021836.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 13:48	http://service-93y89p5u-1307021836.gz.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 13:43	https://www.ba1duu.icu:8000/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 13:42	https://app.dlmix.ourdvs.com/dist/css/bootstrap.min.css	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-01 13:30	http://47.100.210.39:8080/clemente/details	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 13:24	http://121.5.56.160:44444/dpixel	Cobalt Strike	CobaltStrike cs-watermark-6	drb_ra
2023-06-01 13:23	http://107.173.122.167:8008/ga.js	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 13:20	http://195.211.98.91:80/change/money/Start	Cobalt Strike	CobaltStrike	abuse_ch
2023-06-01 13:19	https://47.100.180.123:3004/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-6	drb_ra
2023-06-01 13:16	http://49.233.107.150:7524/dpixel	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-06-01 13:06	http://149.129.72.37:12580/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1	drb_ra
2023-06-01 12:58	http://107.172.201.137:8086/ptj	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-100000	drb_ra
2023-06-01 12:56	http://114.55.59.125:8081/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 12:56	https://149.129.72.37:18444/push	Cobalt Strike	CobaltStrike cs-watermark-1	drb_ra
2023-06-01 12:34	112.124.64.37:80	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-06-01 12:34	http://112.124.64.37/match	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-06-01 12:34	213.232.112.218:443	Cobalt Strike	CobaltStrike cs-watermark-587247372 xTom GmbH	drb_ra
2023-06-01 12:33	https://aleagroupdevelopment.com/html.js	Cobalt Strike	CobaltStrike cs-watermark-587247372 xTom GmbH	drb_ra
2023-06-01 12:33	http://101.43.109.197:8090/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-01 12:33	103.44.246.104:443	Cobalt Strike	China Telecom (Group) CobaltStrike cs-watermark-0	drb_ra
2023-06-01 12:33	https://103.44.246.104/pixel.gif	Cobalt Strike	China Telecom (Group) CobaltStrike cs-watermark-0	drb_ra
2023-06-01 12:32	https://47.100.210.39/news/details	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 12:32	213.232.112.218:80	Cobalt Strike	CobaltStrike cs-watermark-587247372 xTom GmbH	drb_ra
2023-06-01 12:32	aleagroupdevelopment.com	Cobalt Strike	CobaltStrike cs-watermark-587247372 xTom GmbH	drb_ra
2023-06-01 12:32	http://aleagroupdevelopment.com/ku.js	Cobalt Strike	CobaltStrike cs-watermark-587247372 xTom GmbH	drb_ra
2023-06-01 12:31	207.246.102.129:443	Cobalt Strike	CobaltStrike cs-watermark-0 The Constant Company LLC	drb_ra
2023-06-01 12:31	https://207.246.102.129/Forums.html	Cobalt Strike	CobaltStrike cs-watermark-0 The Constant Company LLC	drb_ra
2023-06-01 12:31	207.246.102.129:80	Cobalt Strike	CobaltStrike cs-watermark-0 The Constant Company LLC	drb_ra
2023-06-01 12:31	http://207.246.102.129/ee.html	Cobalt Strike	CobaltStrike cs-watermark-0 The Constant Company LLC	drb_ra
2023-06-01 12:30	67.198.232.217:443	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Krypt Technologies	drb_ra
2023-06-01 12:30	https://67.198.232.217/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Krypt Technologies	drb_ra
2023-06-01 12:30	118.89.134.97:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 12:30	http://118.89.134.97/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 12:29	111.230.98.119:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 12:29	https://111.230.98.119/api/getit	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-06-01 12:29	114.115.184.15:8443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 12:29	cf.wsxqaz.top	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 12:29	https://cf.wsxqaz.top:8443/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 12:21	http://31.44.184.82/visit.js	Cobalt Strike	CobaltStrike cs-watermark-1580103824 PINDC-AS	drb_ra
2023-06-01 12:19	http://85.117.234.181:8096/load	Cobalt Strike	ASBAXET CobaltStrike cs-watermark-100000	drb_ra
2023-06-01 11:27	http://31.44.184.82/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-1580103824 PINDC-AS	drb_ra
2023-06-01 10:18	139.59.28.209:443	Cobalt Strike	CobaltStrike cs-watermark-422303525 DIGITALOCEAN-ASN	drb_ra
2023-06-01 10:18	hommee-a0azhkhacsdmbpd8.z01.azurefd.net	Cobalt Strike	CobaltStrike cs-watermark-422303525 DIGITALOCEAN-ASN	drb_ra
2023-06-01 10:18	https://hommee-a0azhkhacsdmbpd8.z01.azurefd.net/safebrowsing/oAX7UR/hCvS3syeaHpeu3IgZr7FUN	Cobalt Strike	CobaltStrike cs-watermark-422303525 DIGITALOCEAN-ASN	drb_ra
2023-06-01 10:17	8.134.159.113:443	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 10:17	https://service-jivrpccg-1258596386.gz.apigw.tencentcs.com/x/getit	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 10:17	service-jivrpccg-1258596386.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 09:02	45.152.115.139:1	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 09:01	ru-3.myegov.eu	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 09:01	eu-1.myegov.eu	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 09:01	discover.myegov.eu	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-06-01 08:59	114.132.67.32:1	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 08:59	abc.qianxinsecurity.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 08:59	bot.qianxinsecurity.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 08:59	45.152.67.162:1	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-01 08:58	www3.ceshi897.cn	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-01 08:58	www2.ceshi897.cn	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-01 08:58	www1.ceshi897.cn	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-06-01 08:57	54.199.86.237:1	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 08:57	ns3.chongfan1990.xyz	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 08:57	ns2.chongfan1990.xyz	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 08:57	ns1.chongfan1990.xyz	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-987654321	drb_ra
2023-06-01 08:56	159.203.60.8:1	Cobalt Strike	CobaltStrike cs-watermark-1215974111 DIGITALOCEAN-ASN	drb_ra
2023-06-01 08:56	dnsswag.djn.blue	Cobalt Strike	CobaltStrike cs-watermark-1215974111 DIGITALOCEAN-ASN	drb_ra
2023-06-01 08:55	103.39.78.208:1	Cobalt Strike	CobaltStrike cs-watermark-100000 VH-GLOBAL VH Global Limited	drb_ra
2023-06-01 08:55	nsa2.micrsoft.com.cn	Cobalt Strike	CobaltStrike cs-watermark-100000 VH-GLOBAL VH Global Limited	drb_ra
2023-06-01 08:55	nsa1.micrsoft.com.cn	Cobalt Strike	CobaltStrike cs-watermark-100000 VH-GLOBAL VH Global Limited	drb_ra
2023-06-01 08:54	45.152.115.128:1	Cobalt Strike	CobaltStrike cs-watermark-426352781 LLC Baxet	drb_ra
2023-06-01 08:54	cdn.softproxyapi.com	Cobalt Strike	CobaltStrike cs-watermark-426352781 LLC Baxet	drb_ra
2023-06-01 08:53	101.42.223.86:1	Cobalt Strike	CobaltStrike cs-watermark-100000000	drb_ra
2023-06-01 08:53	cs.aabyss.cn	Cobalt Strike	CobaltStrike cs-watermark-100000000	drb_ra
2023-06-01 08:52	67.198.232.217:1	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Krypt Technologies	drb_ra
2023-06-01 08:52	dns.cityoall.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Krypt Technologies	drb_ra
2023-06-01 08:52	cityoall.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Krypt Technologies	drb_ra
2023-06-01 08:51	78.128.112.201:1	Cobalt Strike	AS_4MEDIA CobaltStrike cs-watermark-12345	drb_ra
2023-06-01 08:51	ns3.peermanshuus.bio	Cobalt Strike	AS_4MEDIA CobaltStrike cs-watermark-12345	drb_ra
2023-06-01 08:51	ns2.peermanshuus.bio	Cobalt Strike	AS_4MEDIA CobaltStrike cs-watermark-12345	drb_ra
2023-06-01 08:51	ns1.peermanshuus.bio	Cobalt Strike	AS_4MEDIA CobaltStrike cs-watermark-12345	drb_ra
2023-06-01 02:34	https://164.155.252.16:8443/ga.js	Cobalt Strike	CobaltStrike cs-watermark-0 IDCCLOUD	drb_ra
2023-05-31 23:13	193.29.63.110:80	Cobalt Strike	CobaltStrike cs-watermark-1580103824 HOSTHATCH	drb_ra
2023-05-31 23:13	http://quote.swalter.com/archive/list/v4.73/77GM1A6XWEH	Cobalt Strike	CobaltStrike cs-watermark-1580103824 HOSTHATCH	drb_ra
2023-05-31 23:13	129.211.212.15:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-31 23:13	https://129.211.212.15/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-31 23:13	https://154.221.17.44:2080/j.ad	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 23:13	104.234.118.14:80	Cobalt Strike	-Reserved AS- CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 23:13	http://104.234.118.14/visit.js	Cobalt Strike	-Reserved AS- CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 23:13	http://101.43.103.253/load	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 23:13	101.43.103.253:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 23:12	103.174.104.8:8444	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 23:12	mpls.myvnc.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 23:12	https://mpls.myvnc.com:8444/s/ref=nb_sb_noss_1/167-3294888-0262949/field-keywords=books	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 23:12	fms.myftp.org	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 23:12	https://fms.myftp.org:8444/s/ref=nb_sb_noss_1/167-3294888-0262949/field-keywords=books	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 23:12	https://101.200.161.116:8443/recite/v9.52/6FCQ3UVD9	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 22:38	http://8.142.13.132:6666/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 22:38	118.89.134.97:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 22:38	https://118.89.134.97/ga.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 22:37	http://101.89.202.252:8000/cm	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 22:37	117.50.187.164:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 22:37	http://117.50.187.164/jquery-3.2.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 22:37	http://198.46.235.108/ca	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 22:37	8.142.13.132:8443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 22:37	https://www.ilovechina.site:8443/ptj	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 22:36	45.55.192.83:443	Cobalt Strike	CobaltStrike cs-watermark-1905905741 DigitalOcean LLC	drb_ra
2023-05-31 22:36	https://45.55.192.83/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-1905905741 DigitalOcean LLC	drb_ra
2023-05-31 22:36	https://45.55.194.199/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-1905905741 DigitalOcean LLC	drb_ra
2023-05-31 22:36	https://104.131.68.140/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-1905905741 DigitalOcean LLC	drb_ra
2023-05-31 22:35	103.44.244.251:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 22:35	http://103.44.244.251/load	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 22:35	https://147.78.47.219:447/RELEASE.html	Cobalt Strike	CobaltStrike cs-watermark-1580103824 FLYSERVERS-ASN	drb_ra
2023-05-31 22:34	http://49.232.213.90:5555/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-05-31 22:34	https://47.99.89.101:8443/www/handle/doc	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 22:34	129.211.222.142:80	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 22:34	http://129.211.222.142/api/getit	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 22:34	139.59.136.73:80	Cobalt Strike	CobaltStrike cs-watermark-1580103824 DIGITALOCEAN-ASN	drb_ra
2023-05-31 22:34	http://139.59.136.73/cx	Cobalt Strike	CobaltStrike cs-watermark-1580103824 DIGITALOCEAN-ASN	drb_ra
2023-05-31 17:20	http://103.139.2.185:10333/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-05-31 17:20	http://31.25.88.171:10333/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-05-31 17:09	http://198.211.33.156:9999/push	Cobalt Strike	CobaltStrike cs-watermark-100000 Wave 7 LLC	drb_ra
2023-05-31 17:05	https://8.140.37.238:9999/activity	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:47	http://43.142.188.168:8223/fwlink	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 16:28	http://8.218.203.19/visit.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 16:26	http://18.183.252.90:808/g.pixel	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-391144938	drb_ra
2023-05-31 16:26	8.140.20.30:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 16:26	http://8.140.20.30/push	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 16:25	154.31.26.190:8080	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:25	http://154.31.26.155:8080/j.ad	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:25	39.101.70.33:80	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-31 16:25	http://39.101.70.33/load	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-31 16:25	154.31.26.190:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:25	https://154.31.26.155/ptj	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:25	15.200.209.141:80	Cobalt Strike	AMAZON EXPANSION CobaltStrike cs-watermark-125690776	drb_ra
2023-05-31 16:25	cbs.sproutsec.org	Cobalt Strike	AMAZON EXPANSION CobaltStrike cs-watermark-125690776	drb_ra
2023-05-31 16:25	http://cbs.sproutsec.org/ptj	Cobalt Strike	AMAZON EXPANSION CobaltStrike cs-watermark-125690776	drb_ra
2023-05-31 16:25	http://15.200.209.141/activity	Cobalt Strike	AMAZON EXPANSION CobaltStrike cs-watermark-125690776	drb_ra
2023-05-31 16:25	http://82.156.10.244:8888/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 16:25	154.31.26.155:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:25	https://154.31.26.155/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:25	http://119.45.252.217:8000/sugrec	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 16:25	27.124.6.249:443	Cobalt Strike	BCPL-SG BGPNET Global ASN CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:24	43.226.152.98:80	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 16:24	http://43.226.152.98/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 16:24	http://121.37.30.252:8868/dpixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:24	68.183.112.159:443	Cobalt Strike	CobaltStrike cs-watermark-233949773 DIGITALOCEAN-ASN	drb_ra
2023-05-31 16:24	primerica.azureedge.net	Cobalt Strike	CobaltStrike cs-watermark-233949773 DIGITALOCEAN-ASN	drb_ra
2023-05-31 16:24	https://primerica.azureedge.net/ptj	Cobalt Strike	CobaltStrike cs-watermark-233949773 DIGITALOCEAN-ASN	drb_ra
2023-05-31 16:24	zx.sortx2.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 NFORCE	drb_ra
2023-05-31 16:24	https://zx.sortx2.com/ml	Cobalt Strike	CobaltStrike cs-watermark-1580103824 NFORCE	drb_ra
2023-05-31 16:24	as.sortx2.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 NFORCE	drb_ra
2023-05-31 16:24	https://as.sortx2.com/ml	Cobalt Strike	CobaltStrike cs-watermark-1580103824 NFORCE	drb_ra
2023-05-31 16:24	qw.sortx2.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 NFORCE	drb_ra
2023-05-31 16:24	https://qw.sortx2.com/ml	Cobalt Strike	CobaltStrike cs-watermark-1580103824 NFORCE	drb_ra
2023-05-31 16:24	54.93.217.218:443	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 16:24	https://54.93.217.218/c/msdownload/update/others/2016/12/29136388_	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 16:24	http://121.41.101.90:12280/pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 16:24	http://8.131.118.10/load	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-05-31 16:24	http://163.197.249.100:2233/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321 LIHGL-AS-AP 24.hk global BGP	drb_ra
2023-05-31 16:23	45.77.180.33:80	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 16:23	http://45.77.180.33/__utm.gif	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 16:23	47.236.19.63:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-31 16:23	https://47.236.19.63/visit.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-31 16:23	27.124.6.246:443	Cobalt Strike	BCPL-SG BGPNET Global ASN CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:23	https://27.124.6.246/g.pixel	Cobalt Strike	BCPL-SG BGPNET Global ASN CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 16:23	http://23.94.53.126:5000/pixel	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-6	drb_ra
2023-05-31 16:23	37.23.155.169:4444	Cobalt Strike	CobaltStrike cs-watermark-987654321 ROSTELECOM-AS	drb_ra
2023-05-31 16:23	ntlm.duckdns.org	Cobalt Strike	CobaltStrike cs-watermark-987654321 ROSTELECOM-AS	drb_ra
2023-05-31 16:23	http://ntlm.duckdns.org:4444/XEVendor	Cobalt Strike	CobaltStrike cs-watermark-987654321 ROSTELECOM-AS	drb_ra
2023-05-31 16:23	78.128.112.201:80	Cobalt Strike	AS_4MEDIA CobaltStrike cs-watermark-12345	drb_ra
2023-05-31 16:23	http://78.128.112.201/pixel.gif	Cobalt Strike	AS_4MEDIA CobaltStrike cs-watermark-12345	drb_ra
2023-05-31 16:23	8.217.147.50:443	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 16:23	https://8.217.147.50/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 16:23	154.213.64.87:80	Cobalt Strike	CobaltStrike cs-watermark-666666 IDCCLOUD	drb_ra
2023-05-31 16:23	http://154.213.64.87/restapi/soa2/21881/json/gethotdestination	Cobalt Strike	CobaltStrike cs-watermark-666666 IDCCLOUD	drb_ra
2023-05-31 16:23	http://164.155.252.16:81/j.ad	Cobalt Strike	CobaltStrike cs-watermark-0 IDCCLOUD	drb_ra
2023-05-31 16:22	http://80.143.33.5:2222/load	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-05-31 16:22	http://192.168.2.116:2222/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-05-31 16:22	http://121.5.110.242:8181/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-05-31 16:22	http://47.87.195.142:1000/ga.js	Cobalt Strike	CobaltStrike cs-watermark-391144938 DEDIPATH-LLC	drb_ra
2023-05-31 16:05	http://www.ilovechina.site:8080/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 15:29	http://82.157.161.99:8082/push	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-31 15:01	https://8.131.118.10/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-05-31 14:58	https://43.142.188.168/match	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 14:34	http://1.117.114.151:20080/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 14:31	https://103.42.214.78/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-31 14:19	http://92.63.196.48:92/push	Cobalt Strike	CobaltStrike cs-watermark-987654321 IP Volume inc	drb_ra
2023-05-31 14:14	http://43.142.187.77/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 13:55	http://1.15.113.60/cm	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 13:51	http://43.143.243.15:8000/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 13:48	http://43.138.30.109:8888/cx	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-31 13:48	http://43.143.243.15:8111/ca	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 13:47	http://8.140.37.238:9090/fwlink	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 13:45	https://124.220.189.243/visit.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 13:26	http://47.93.9.242:82/ptj	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-05-31 13:15	http://43.139.117.224:18080/ptj	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 13:02	https://121.41.101.90/ga.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 12:54	https://180.95.234.190/s/ref=nb_sb_noss_1/167-3294888-0262949/field-keywords=books	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 12:54	https://36.99.200.132/s/ref=nb_sb_noss_1/167-3294888-0262949/field-keywords=books	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 12:54	https://112.84.131.135/s/ref=nb_sb_noss_1/167-3294888-0262949/field-keywords=books	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 12:53	http://134.175.83.78/js/components/content-info-b0c0e5245b.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 12:49	http://43.142.188.168:8333/cx	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 12:46	http://49.0.250.177/j.ad	Cobalt Strike	CobaltStrike cs-watermark-305419896 HWCLOUDS-AS-AP HUAWEI CLOUDS	drb_ra
2023-05-31 12:33	https://43.139.117.224:14443/cx	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-05-31 12:29	https://devnetapp.com/d_config	Cobalt Strike	CobaltStrike cs-watermark-587247372 xTom GmbH	drb_ra
2023-05-31 09:14	http://43.143.203.110/activity	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 09:14	43.143.203.110:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 09:13	http://111.230.52.21:8000/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-31 08:12	158.247.221.28:1	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 08:12	k.mo4.xyz	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-1234567890	drb_ra
2023-05-31 08:10	23.106.122.69:1	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 08:10	rano.initiativeus.com	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 08:10	iane.initiativeus.com	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 08:10	leno.initiativeus.com	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-05-31 08:08	31.44.184.88:1	Cobalt Strike	CobaltStrike cs-watermark-1580103824 PINDC-AS	drb_ra
2023-05-31 08:08	dns.velmeded.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 PINDC-AS	drb_ra
2023-05-31 08:08	velmeded.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 PINDC-AS	drb_ra
2023-05-31 08:06	207.148.121.184:1	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-23333	drb_ra
2023-05-31 08:06	ns2.msnsiccs.com	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-23333	drb_ra
2023-05-31 08:06	ns1.msnsiccs.com	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-23333	drb_ra
2023-05-31 08:03	104.238.153.140:1	Cobalt Strike	CobaltStrike cs-watermark-8848 The Constant Company LLC	drb_ra
2023-05-31 08:03	ns1.digitelela.com	Cobalt Strike	CobaltStrike cs-watermark-8848 The Constant Company LLC	drb_ra
2023-05-31 08:00	8.134.99.117:1	Cobalt Strike	CobaltStrike cs-watermark-100000000	drb_ra
2023-05-31 08:00	www.csair.cloud	Cobalt Strike	CobaltStrike cs-watermark-100000000	drb_ra
2023-05-31 02:28	http://59.110.220.47/dpixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-05-30 23:12	34.92.14.11:50444	Cobalt Strike	CobaltStrike cs-watermark-1359593325 GOOGLE-CLOUD-PLATFORM	drb_ra
2023-05-30 23:12	https://34.96.240.180:50444/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-1359593325 GOOGLE-CLOUD-PLATFORM	drb_ra
2023-05-30 23:12	http://43.140.247.133/aaaaaaaaa	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-05-30 23:12	43.140.247.133:80	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-05-30 23:12	91.208.240.70:80	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-05-30 23:12	http://91.208.240.70/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-05-30 23:12	146.190.15.152:443	Cobalt Strike	CobaltStrike cs-watermark-2080184617 DIGITALOCEAN-ASN	drb_ra
2023-05-30 23:12	http://13.113.172.188:8877/pixel	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-0	drb_ra
2023-05-30 22:31	http://120.79.3.140:2003/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-30 22:29	http://198.211.33.156:9999/fwlink	Cobalt Strike	CobaltStrike cs-watermark-100000 Wave 7 LLC	drb_ra
2023-05-30 22:28	http://120.79.3.140:2002/dpixel	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-05-30 17:24	http://103.139.2.185:10333/ga.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra