ThreatFox IOC Database

You are browsing the Indicator Of Compromise (IOC) database of ThreatFox. If you would like to contribute IOCs to the corpuse, you can do so through either the web form or the API.

229

IOCs shared (past 24 hours)

Cobalt Strike

Most seen malware family (past 24 hours)

1'123'603

IOCs in corpus

Using the form below, you can search for malware samples by a hash (MD5, SHA256, SHA1), imphash, tlsh hash, ClamAV signature, tag or malware family.

Browse Database

Search syntax is as follow: keyword:search_term

Following is a list of accepted keywords along with an example search_term

ioc:ms-debug-services.com ( run)
malware:CobaltStrike ( run)
tag:TA505 ( run)
threat_type:cc_skimming ( run)
uuid:87f310f3-540b-11eb-922c-42010aa4000a ( run)

Date (UTC)	IOC	Malware	Tags	Reporter
2023-09-24 12:28	http://101.34.71.193/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-24 11:40	http://49.232.22.171/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-24 11:39	http://39.107.113.250:8888/activity	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-24 11:37	70.34.248.30:443	Cobalt Strike	CobaltStrike cs-watermark-408166612 The Constant Company LLC	drb_ra
2023-09-24 11:37	https://porkchopsandwich.net/j.ad	Cobalt Strike	CobaltStrike cs-watermark-408166612 The Constant Company LLC	drb_ra
2023-09-24 11:37	https://www.porkchopsandwich.net/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-408166612 The Constant Company LLC	drb_ra
2023-09-24 11:37	www.porkchopsandwich.net	Cobalt Strike	CobaltStrike cs-watermark-408166612 The Constant Company LLC	drb_ra
2023-09-24 11:37	70.34.248.30:80	Cobalt Strike	CobaltStrike cs-watermark-408166612 The Constant Company LLC	drb_ra
2023-09-24 11:37	http://www.porkchopsandwich.net/ga.js	Cobalt Strike	CobaltStrike cs-watermark-408166612 The Constant Company LLC	drb_ra
2023-09-24 11:37	porkchopsandwich.net	Cobalt Strike	CobaltStrike cs-watermark-408166612 The Constant Company LLC	drb_ra
2023-09-24 11:37	http://porkchopsandwich.net/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-408166612 The Constant Company LLC	drb_ra
2023-09-24 10:04	165.227.45.0:443	Cobalt Strike		malpulse
2023-09-24 09:16	https://119.45.118.187:2087/api/3	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-24 09:15	54.220.116.67:443	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-720455074	drb_ra
2023-09-24 09:15	www.jtitraining.com	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-720455074	drb_ra
2023-09-24 09:15	https://www.jtitraining.com/s/ref=nb_sb_noss_1/167-3294888-0262949/field-keywords=books	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-720455074	drb_ra
2023-09-24 09:15	45.78.58.175:443	Cobalt Strike	CobaltStrike cs-watermark-987654321 IT7NET	drb_ra
2023-09-24 09:15	dns.zonstdns.xyz	Cobalt Strike	CobaltStrike cs-watermark-987654321 IT7NET	drb_ra
2023-09-24 09:15	https://dns.zonstdns.xyz/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321 IT7NET	drb_ra
2023-09-24 09:15	74.235.187.46:443	Cobalt Strike	CobaltStrike cs-watermark-391144938 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-09-24 09:15	https://74.235.187.46/async/ddljson	Cobalt Strike	CobaltStrike cs-watermark-391144938 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-09-24 08:46	111.230.253.238:80	Cobalt Strike		malpulse
2023-09-24 08:37	100.26.228.148:53	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1167691188	drb_ra
2023-09-24 08:37	blue.theinternetsupply.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-1167691188	drb_ra
2023-09-24 08:36	154.202.60.234:53	Cobalt Strike	CNSERVERS LLC CobaltStrike cs-watermark-987654321	drb_ra
2023-09-24 08:36	log.4.4fun.wiki	Cobalt Strike	CNSERVERS LLC CobaltStrike cs-watermark-987654321	drb_ra
2023-09-24 08:36	log.3.4fun.wiki	Cobalt Strike	CNSERVERS LLC CobaltStrike cs-watermark-987654321	drb_ra
2023-09-24 08:36	log.2.4fun.wiki	Cobalt Strike	CNSERVERS LLC CobaltStrike cs-watermark-987654321	drb_ra
2023-09-24 08:36	log.1.4fun.wiki	Cobalt Strike	CNSERVERS LLC CobaltStrike cs-watermark-987654321	drb_ra
2023-09-24 07:04	202.43.237.7:873	Cobalt Strike		malpulse
2023-09-24 07:04	175.178.99.133:80	Cobalt Strike		malpulse
2023-09-24 07:04	180.184.194.145:443	Cobalt Strike		malpulse
2023-09-24 07:03	124.220.180.112:84	Cobalt Strike		malpulse
2023-09-24 07:03	107.172.61.22:80	Cobalt Strike		malpulse
2023-09-24 07:03	101.43.40.59:5001	Cobalt Strike		malpulse
2023-09-24 07:03	209.141.46.45:8888	Cobalt Strike		malpulse
2023-09-24 07:03	111.229.116.4:8090	Cobalt Strike		malpulse
2023-09-24 07:03	122.9.136.39:7777	Cobalt Strike		malpulse
2023-09-24 07:03	124.223.189.175:8080	Cobalt Strike		malpulse
2023-09-24 07:03	106.14.141.187:8443	Cobalt Strike		malpulse
2023-09-24 01:08	http://117.72.8.251/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-24 01:07	50.3.132.230:80	Cobalt Strike	CobaltStrike cs-watermark-674054486 Eonix Corporation	drb_ra
2023-09-24 01:07	http://financialservicesunion.com/admin.js	Cobalt Strike	CobaltStrike cs-watermark-674054486 Eonix Corporation	drb_ra
2023-09-24 01:07	https://180.184.194.145/ptj	Cobalt Strike	CobaltStrike cs-watermark-2333	drb_ra
2023-09-24 01:06	209.146.124.206:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-24 01:06	20.25.134.83:443	Cobalt Strike	CobaltStrike cs-watermark-179759036 Microsoft Corporation	drb_ra
2023-09-24 01:06	servicedesk-solutions.net	Cobalt Strike	CobaltStrike cs-watermark-179759036 Microsoft Corporation	drb_ra
2023-09-24 01:06	https://servicedesk-solutions.net/im.php	Cobalt Strike	CobaltStrike cs-watermark-179759036 Microsoft Corporation	drb_ra
2023-09-24 01:05	http://39.106.2.238:81/fwlink	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-24 01:05	http://175.178.99.133/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-1711276032	drb_ra
2023-09-24 01:04	209.146.124.208:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-24 01:04	video.baiduu.online	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-24 01:04	https://video.baiduu.online/wp06/wp-includes/po.php	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-24 01:04	http://39.106.75.77/activity	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-24 01:04	http://124.221.183.95:4567/push	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-23 21:21	192.3.76.8:443	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-674054486	drb_ra
2023-09-23 21:21	https://medtechgroups.com/universal-access.css	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-674054486	drb_ra
2023-09-23 21:21	medtechgroups.com	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-674054486	drb_ra
2023-09-23 15:04	https://ctbtest.azureedge.net/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-567253683 ROGERS-COMMUNICATIONS	drb_ra
2023-09-23 15:04	ctbtest.azureedge.net	Cobalt Strike	CobaltStrike cs-watermark-567253683 ROGERS-COMMUNICATIONS	drb_ra
2023-09-23 15:03	http://111.229.247.93/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-23 15:02	http://47.99.172.42:7443/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-23 14:19	95.105.116.245:8082	Cobalt Strike		malpulse
2023-09-23 14:19	104.225.232.22:10086	Cobalt Strike		500mk500
2023-09-23 14:19	c2cc.cf	Cobalt Strike		500mk500
2023-09-23 14:19	n.c2cc.cf	Cobalt Strike		500mk500
2023-09-23 12:27	124.71.130.71:80	Cobalt Strike		malpulse
2023-09-23 11:28	https://31.24.227.218/fwlink	Cobalt Strike	CobaltStrike cs-watermark-1234567890 UK2NET-AS	drb_ra
2023-09-23 11:21	http://106.75.232.107/dpixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-23 11:19	http://47.115.219.93:8809/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-23 11:15	web.miira.live	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-23 11:15	https://107.172.216.18:8082/pixel	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-666666	drb_ra
2023-09-23 11:15	http://47.109.97.92:5555/match	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-23 11:13	https://service-hzdzk12c-1318485841.gz.apigw.tencentcs.com/ptj	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-23 11:10	www.mylinkedln.com	Cobalt Strike	CobaltStrike cs-watermark-746206344 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-09-23 11:10	http://www.mylinkedln.com/broadcast	Cobalt Strike	CobaltStrike cs-watermark-746206344 MICROSOFT-CORP-MSN-AS-BLOCK	drb_ra
2023-09-23 11:10	https://www.baidusec.top:2096/newspaper.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-23 11:05	https://42.193.101.234/load	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-23 11:05	http://42.193.101.234/cx	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-23 09:53	5.8.18.230:443	Cobalt Strike	CobaltStrike cs-watermark-587247372 IP Volume inc	drb_ra
2023-09-23 09:53	https://rokllold279.com/display/cgi-sys/KV0L5VRPLUTU	Cobalt Strike	CobaltStrike cs-watermark-587247372 IP Volume inc	drb_ra
2023-09-23 09:53	http://124.221.206.123:8099/visit.js	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-09-23 09:53	https://194.29.187.194/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-100000 HostHatch LLC	drb_ra
2023-09-23 09:53	111.229.187.190:8443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-23 09:53	sts.tencentopenapi.xyz	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-23 09:53	https://sts.tencentopenapi.xyz:8443/image/	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-23 09:53	148.66.2.198:8080	Cobalt Strike	CobaltStrike cs-watermark-100000 Netsec Limited	drb_ra
2023-09-23 09:52	http://198.44.184.235/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321 Zenlayer Inc	drb_ra
2023-09-23 09:52	http://172.171.232.120/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-766261555 Microsoft Corporation	drb_ra
2023-09-23 09:52	118.195.143.76:8443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-23 09:52	https://ttxxx.club:8443/api/3	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-23 09:52	ttxxx.club	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-23 09:52	47.106.171.201:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-23 09:52	service-qnlzv1t8-1317142305.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-23 09:52	https://service-qnlzv1t8-1317142305.gz.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-23 09:52	http://62.234.48.219/push	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-23 09:52	148.66.2.197:8080	Cobalt Strike	CobaltStrike cs-watermark-100000 Netsec Limited	drb_ra
2023-09-23 09:52	http://47.100.170.9:81/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-23 09:52	88.214.25.250:443	Cobalt Strike	CobaltStrike cs-watermark-587247372	drb_ra
2023-09-23 09:52	https://rokllofrold29.com/Upset/v3.22/WGRDACX3	Cobalt Strike	CobaltStrike cs-watermark-587247372	drb_ra
2023-09-23 09:51	http://176.113.115.54/ga.js	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Red Bytes LLC	drb_ra
2023-09-23 09:51	https://45.81.39.16/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 Delis LLC	drb_ra
2023-09-23 09:51	http://117.50.187.39:801/cx	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-23 09:51	18.167.68.219:443	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-391144938	drb_ra
2023-09-23 09:51	https://45.77.169.140/c/msdownload/update/others/2023/09/29136388_	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-391144938	drb_ra
2023-09-23 09:50	http://159.223.29.112/activity	Cobalt Strike	CobaltStrike cs-watermark-1800965325 DigitalOcean LLC	drb_ra
2023-09-23 09:50	http://85.209.11.107/visit.js	Cobalt Strike	CobaltStrike cs-watermark-305419896 LLC Baxet	drb_ra
2023-09-23 09:50	118.195.143.76:80	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-23 09:50	http://118.195.143.76/api/3	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-23 09:03	121.36.224.175:8888	Cobalt Strike		malpulse
2023-09-23 08:49	rokllold279.com	Cobalt Strike	Cobalt Strike Silence	abuse_ch
2023-09-23 08:49	rokllofrold29.com	Cobalt Strike	Cobalt Strike Silence	abuse_ch
2023-09-23 08:01	101.43.70.206:8888	Cobalt Strike		malpulse
2023-09-23 05:25	124.221.183.95:4567	Cobalt Strike		malpulse
2023-09-23 05:25	81.71.68.50:8099	Cobalt Strike		malpulse
2023-09-23 05:25	103.193.150.133:8080	Cobalt Strike		malpulse
2023-09-23 05:25	134.122.4.80:8089	Cobalt Strike		malpulse
2023-09-23 05:25	198.44.184.235:80	Cobalt Strike		malpulse
2023-09-23 05:25	159.223.29.112:80	Cobalt Strike		malpulse
2023-09-23 02:20	43.138.10.232:8443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-23 02:20	104.168.54.203:80	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-987654321	drb_ra
2023-09-23 02:20	http://104.168.54.203/load	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 21:40	139.59.235.156:443	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-22 21:40	https://139.59.235.156/_/scs/mail-static/_/js/	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-22 21:17	https://tsvsnjv.com/Damage/references/M36H9AYJ6	Cobalt Strike	AS209132 CobaltStrike cs-watermark-587247372	drb_ra
2023-09-22 21:17	tsvsnjv.com	Cobalt Strike	AS209132 CobaltStrike cs-watermark-587247372	drb_ra
2023-09-22 18:09	35.183.12.131:53	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-1231006131	drb_ra
2023-09-22 18:09	dns1.noreply-alert.cloud	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-1231006131	drb_ra
2023-09-22 15:06	https://176.113.115.54/match	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Red Bytes LLC	drb_ra
2023-09-22 15:05	https://124.221.206.123:8443/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-09-22 15:05	47.243.85.106:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-22 15:05	service-oocpa72a-1305610678.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-22 15:05	https://service-oocpa72a-1305610678.gz.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-22 15:05	http://119.29.145.4:8080/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-22 15:05	148.66.2.196:8080	Cobalt Strike	CobaltStrike cs-watermark-100000 Netsec Limited	drb_ra
2023-09-22 15:05	http://148.66.2.194:8080/fwlink	Cobalt Strike	CobaltStrike cs-watermark-100000 Netsec Limited	drb_ra
2023-09-22 15:04	114.55.93.79:80	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-22 15:04	http://60.204.220.208/cm	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 15:04	https://106.75.251.66:8443/j.ad	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-22 15:03	121.37.202.214:8443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-22 15:03	https://cdn.apiadmin.live:8443/index/	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-22 15:03	cdn.apiadmin.live	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-22 15:03	http://110.40.157.87/match	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-22 15:03	https://138.68.91.128:4443/owa/	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-22 15:03	http://43.139.221.182:6666/cx	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-22 15:02	http://124.221.0.93:7080/push	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-22 15:02	43.128.26.96:443	Cobalt Strike	CobaltStrike cs-watermark-388888888	drb_ra
2023-09-22 15:02	https://101.32.186.170/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-388888888	drb_ra
2023-09-22 14:01	114.115.180.116:80	Cobalt Strike		malpulse
2023-09-22 14:01	39.106.75.77:80	Cobalt Strike		malpulse
2023-09-22 13:07	101.43.96.246:8443	Cobalt Strike		malpulse
2023-09-22 11:54	http://82.157.110.128/fwlink	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-22 11:54	https://47.101.41.158:37676/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-22 11:53	http://43.138.62.36:9000/cm	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-22 11:51	http://123.207.5.159:89/j.ad	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-22 11:51	https://107.189.13.227/visit.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 PONYNET	drb_ra
2023-09-22 11:48	https://service-hzdzk12c-1318485841.gz.apigw.tencentcs.com/push	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-22 11:47	service-2rm5s5ep-1304892907.bj.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-22 11:47	https://service-2rm5s5ep-1304892907.bj.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-22 11:47	https://47.236.19.63/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 11:41	http://124.223.83.171:8055/activity	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-22 11:34	http://8.130.128.97/fwlink	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 11:29	1.117.93.65:53	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-22 11:29	ns1.microsoft2888.top	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-22 11:29	47.92.27.193:53	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 11:29	upd.cndlogstics.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 11:29	94.131.8.31:53	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 11:29	india.tosoh.cloudns.ph	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 11:29	43.142.60.207:53	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-22 11:29	ns.iloveflag.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-22 11:29	178.128.193.49:53	Cobalt Strike	CobaltStrike cs-watermark-987654321 DIGITALOCEAN-ASN	drb_ra
2023-09-22 11:29	ns12.clsr.ca	Cobalt Strike	CobaltStrike cs-watermark-987654321 DIGITALOCEAN-ASN	drb_ra
2023-09-22 11:28	62.234.13.73:53	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 11:28	ns2.jd-1111.cn	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 11:28	ns1.jd-1111.cn	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 11:28	139.59.235.156:53	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-22 11:28	miira.live	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-22 11:01	45.81.39.16:443	Cobalt Strike		malpulse
2023-09-22 09:07	62.234.48.219:80	Cobalt Strike		malpulse
2023-09-22 08:13	1.94.3.150:443	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-09-22 08:13	https://1.94.3.150/ptj	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-09-22 08:13	https://54.215.87.253/s/ref=nb_sb_noss_1/167-3294888-0262949/field-keywords=books	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-391144938	drb_ra
2023-09-22 08:13	54.215.87.253:443	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-391144938	drb_ra
2023-09-22 08:13	http://91.238.181.238:3389/Validate/v10.6/W2GE3SC8	Cobalt Strike	CobaltStrike cs-watermark-674054486 HARMONYHOSTING-AS	drb_ra
2023-09-22 08:13	91.238.181.238:443	Cobalt Strike	CobaltStrike cs-watermark-674054486 HARMONYHOSTING-AS	drb_ra
2023-09-22 08:13	https://91.238.181.238/Validate/v10.6/W2GE3SC8	Cobalt Strike	CobaltStrike cs-watermark-674054486 HARMONYHOSTING-AS	drb_ra
2023-09-22 08:13	119.29.106.110:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-22 08:13	https://119.29.106.110/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-22 08:13	82.156.136.79:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-22 08:13	mobile.static.apiproxy.cloud.360.net.cdn.dnsv1.com	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-22 08:13	https://mobile.static.apiproxy.cloud.360.net.cdn.dnsv1.com/Display/chan/IB61I7MYA	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-22 08:12	113.31.111.220:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-22 08:12	https://113.31.111.220/dequeue/faculty/201NJGW7N8NX	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-22 08:04	194.29.187.194:443	Cobalt Strike		malpulse
2023-09-22 07:26	https://110.42.206.10:8080/p/freemail/lib/polyfill/es5-polyfill.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-22 07:25	20.237.12.116:80	Cobalt Strike	CobaltStrike cs-watermark-873145514 Microsoft Corporation	drb_ra
2023-09-22 07:25	http://20.237.12.116/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-873145514 Microsoft Corporation	drb_ra
2023-09-22 05:58	43.143.148.198:9999	Cobalt Strike		malpulse
2023-09-22 05:58	47.103.13.224:9999	Cobalt Strike		malpulse
2023-09-22 05:58	47.100.170.9:81	Cobalt Strike		malpulse
2023-09-22 05:57	http://js.yalafix.com:443/checkin	Cobalt Strike		Gi7w0rm
2023-09-22 05:57	60.204.220.208:80	Cobalt Strike		malpulse
2023-09-22 01:05	http://5.181.80.82:8080/apiv8/getStatus	Cobalt Strike	CobaltStrike cs-watermark-12345 TAMATIYA-AS	drb_ra
2023-09-22 01:02	qocmkassa.store	Cobalt Strike	CobaltStrike cs-watermark-100000 PLI-AS	drb_ra
2023-09-22 01:02	https://qocmkassa.store/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-100000 PLI-AS	drb_ra
2023-09-22 01:02	190.211.252.251:80	Cobalt Strike	CobaltStrike cs-watermark-587247372 PLI-AS	drb_ra
2023-09-22 01:02	http://190.211.252.251/owa/	Cobalt Strike	CobaltStrike cs-watermark-587247372 PLI-AS	drb_ra
2023-09-22 01:02	http://upcloudser.online/owa/	Cobalt Strike	CobaltStrike cs-watermark-587247372 PLI-AS	drb_ra
2023-09-21 20:13	https://42.192.137.198:8443/dpixel	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-21 20:13	directdefense.consulting	Cobalt Strike	CobaltStrike cs-watermark-1730829254 ESTREET	drb_ra
2023-09-21 20:13	76.74.127.144:80	Cobalt Strike	CobaltStrike cs-watermark-1730829254 ESTREET	drb_ra
2023-09-21 20:13	http://directdefense.consulting/cm	Cobalt Strike	CobaltStrike cs-watermark-1730829254 ESTREET	drb_ra
2023-09-21 20:03	https://31.24.227.218/j.ad	Cobalt Strike	CobaltStrike cs-watermark-1234567890 UK2NET-AS	drb_ra
2023-09-21 17:58	158.247.218.76:53	Cobalt Strike	CobaltStrike cs-watermark-0 The Constant Company LLC	drb_ra
2023-09-21 14:24	https://18.204.142.71/CWoNaJLBo/VTNeWw11212/	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-610916512	drb_ra
2023-09-21 14:18	https://123.249.104.83:2053/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-21 14:13	https://111.231.22.61/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-21 14:09	http://82.115.223.34/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-587247372 WAIcore Hosting LTD.	drb_ra
2023-09-21 14:03	http://43.138.30.109:7524/cx	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-21 13:53	https://cs45upb230906.iqiyid.com:2053/cm	Cobalt Strike	CobaltStrike cs-watermark-100000 MULTA-ASN1	drb_ra
2023-09-21 13:52	https://114.115.185.41/load	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-21 13:40	https://43.139.67.239/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-21 13:17	https://devopspdx.com/mobile-ipad-home	Cobalt Strike	AS62904 CobaltStrike cs-watermark-674054486	drb_ra
2023-09-21 13:07	http://81.161.229.129/j.ad	Cobalt Strike	CobaltStrike cs-watermark-305419896 Delis LLC	drb_ra
2023-09-21 13:05	http://45.66.230.113:120/match	Cobalt Strike	CobaltStrike	abuse_ch
2023-09-21 13:02	https://43.138.30.109:7777/fwlink	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-21 12:34	http://124.70.53.30:8000/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-21 11:44	http://121.37.135.169/ga.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-21 11:43	http://111.230.57.184:6666/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-21 11:43	45.77.169.140:443	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-100000	drb_ra
2023-09-21 11:43	https://45.77.169.140/jquery-3.3.1.min.js	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-100000	drb_ra
2023-09-21 11:27	154.213.22.218:6667	Cobalt Strike		malpulse
2023-09-21 11:27	85.209.11.107:80	Cobalt Strike		malpulse
2023-09-21 11:26	66.112.210.205:443	Cobalt Strike		malpulse
2023-09-21 11:26	20.235.180.61:443	Cobalt Strike		malpulse
2023-09-21 09:57	https://109.205.56.206/dpixel	Cobalt Strike	CGI GLOBAL LIMITED CobaltStrike cs-watermark-987654321	drb_ra
2023-09-21 09:51	cleanworld.sytes.net	Cobalt Strike	CobaltStrike cs-watermark-12345 TAMATIYA-AS	drb_ra
2023-09-21 09:51	https://cleanworld.sytes.net/apiv8/getStatus	Cobalt Strike	CobaltStrike cs-watermark-12345 TAMATIYA-AS	drb_ra
2023-09-21 09:39	ns2.tosohindia.cloudns.nz	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-21 09:36	152.136.60.210:53	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-21 09:36	ns2.95555cmbchina.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-21 09:36	ns1.95555cmbchina.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-21 09:34	42.192.137.198:53	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-21 09:34	cs.sangfor911.top	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-21 09:33	ns1.sangfor911.top	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-21 09:33	ns2.sangfor911.top	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-21 09:33	ns3.sangfor911.top	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-21 09:29	192.3.76.140:443	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-674054486	drb_ra
2023-09-21 09:29	42.192.89.33:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-21 09:29	https://42.192.89.33/recite/v9.52/6FCQ3UVD9	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-21 09:29	https://190.211.252.251/owa/	Cobalt Strike	CobaltStrike cs-watermark-587247372 PLI-AS	drb_ra
2023-09-21 09:29	190.211.252.251:443	Cobalt Strike	CobaltStrike cs-watermark-587247372 PLI-AS	drb_ra
2023-09-21 09:29	upcloudser.online	Cobalt Strike	CobaltStrike cs-watermark-587247372 PLI-AS	drb_ra
2023-09-21 09:29	https://upcloudser.online/owa/	Cobalt Strike	CobaltStrike cs-watermark-587247372 PLI-AS	drb_ra
2023-09-21 09:29	46.161.40.124:443	Cobalt Strike	AS-ALVIVA CobaltStrike cs-watermark-674054486	drb_ra
2023-09-21 09:29	https://igo0gle.com/produce/v5.96/17NUIT3F7W	Cobalt Strike	AS-ALVIVA CobaltStrike cs-watermark-674054486	drb_ra
2023-09-21 09:29	46.161.40.124:80	Cobalt Strike	AS-ALVIVA CobaltStrike cs-watermark-674054486	drb_ra
2023-09-21 09:29	igo0gle.com	Cobalt Strike	AS-ALVIVA CobaltStrike cs-watermark-674054486	drb_ra
2023-09-21 09:29	http://igo0gle.com/produce/v5.96/17NUIT3F7W	Cobalt Strike	AS-ALVIVA CobaltStrike cs-watermark-674054486	drb_ra
2023-09-21 07:02	124.221.0.93:7080	Cobalt Strike		malpulse
2023-09-21 07:02	64.176.44.158:80	Cobalt Strike		malpulse
2023-09-21 06:42	159.75.161.167:80	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-21 06:42	http://159.75.161.167/ga.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-21 06:00	45.32.46.19:443	Cobalt Strike		malpulse
2023-09-21 06:00	43.139.221.182:6666	Cobalt Strike		malpulse
2023-09-21 05:42	39.98.157.4:8089	Cobalt Strike		malpulse
2023-09-21 05:42	62.204.41.24:4444	Cobalt Strike		malpulse
2023-09-21 05:41	124.221.206.123:8099	Cobalt Strike		malpulse
2023-09-21 05:41	117.50.187.39:801	Cobalt Strike		malpulse
2023-09-21 05:41	62.234.43.243:8099	Cobalt Strike		malpulse
2023-09-21 01:41	116.205.189.199:8080	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-21 01:41	http://bb.makkgg.fyi:8080/jd/	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 21:43	http://43.139.67.239/pixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-20 21:23	34.238.176.99:53	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-168282766	drb_ra
2023-09-20 21:23	api-prod.davantaged.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-168282766	drb_ra
2023-09-20 21:22	https://149.129.72.37:48444/cm	Cobalt Strike	CobaltStrike cs-watermark-1	drb_ra
2023-09-20 21:22	159.75.161.167:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-20 21:22	38.55.97.106:443	Cobalt Strike	CobaltStrike cs-watermark-100000 VH-GLOBAL VH Global Limited	drb_ra
2023-09-20 21:22	service-npr00e01-1300810596.sh.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-100000 VH-GLOBAL VH Global Limited	drb_ra
2023-09-20 21:22	https://service-npr00e01-1300810596.sh.apigw.tencentcs.com/v1/buckets/monitor/collections/changes/changeset	Cobalt Strike	CobaltStrike cs-watermark-100000 VH-GLOBAL VH Global Limited	drb_ra
2023-09-20 21:22	124.220.101.231:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-20 21:22	https://124.220.101.231/admin/facvicon.jpg	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-20 21:21	1.94.11.140:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 21:21	https://1.94.11.140/owa/	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 21:21	5.181.80.82:443	Cobalt Strike	CobaltStrike cs-watermark-12345 TAMATIYA-AS	drb_ra
2023-09-20 21:21	https://5.181.80.82/apiv8/getStatus	Cobalt Strike	CobaltStrike cs-watermark-12345 TAMATIYA-AS	drb_ra
2023-09-20 21:21	18.222.7.201:53	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-1586764143	drb_ra
2023-09-20 21:21	124.220.101.231:80	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-20 21:21	http://124.220.101.231/admin/facvicon.jpg	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-20 21:21	https://118.195.147.172/ca	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 21:21	egg.healthcareexpertsllc.com	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-1586764143	drb_ra
2023-09-20 21:19	52.70.93.129:53	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-286603910	drb_ra
2023-09-20 21:19	high.ehealthnutrition.com	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-286603910	drb_ra
2023-09-20 21:17	54.197.46.140:53	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-145064000	drb_ra
2023-09-20 21:17	income.greenlandpharmacy.org	Cobalt Strike	AMAZON-AES CobaltStrike cs-watermark-145064000	drb_ra
2023-09-20 20:49	http://59.110.172.50/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-20 20:48	http://114.115.185.41:44444/dpixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-20 20:40	8.135.97.155:8002	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-20 20:15	http://223.247.221.123:8888/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-20 20:05	http://123.249.100.70/visit.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-20 19:51	https://107.189.13.227/pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321 PONYNET	drb_ra
2023-09-20 19:34	https://107.172.216.18:8082/activity	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-666666	drb_ra
2023-09-20 19:10	https://123.249.104.83:2053/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-20 19:01	https://111.229.247.93/load	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-20 18:56	https://www.baidusec.top:2096/js.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 18:18	http://82.115.223.34/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-587247372 WAIcore Hosting LTD.	drb_ra
2023-09-20 16:06	148.66.2.194:8080	Cobalt Strike		malpulse
2023-09-20 16:06	118.195.147.172:443	Cobalt Strike		malpulse
2023-09-20 16:06	154.12.84.239:443	Cobalt Strike		malpulse
2023-09-20 15:07	http://164.155.201.133/ptj	Cobalt Strike	CobaltStrike cs-watermark-391144938 PEG TECH INC	drb_ra
2023-09-20 15:07	https://106.14.201.1/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-20 15:07	3.141.98.21:443	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-178626913	drb_ra
2023-09-20 15:07	https://3.141.98.21/owa/5i8u5Z2ttBk3HHy-UYLSX1bD89B9U	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-178626913	drb_ra
2023-09-20 15:06	http://1.14.32.41:8083/load	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 15:06	https://152.136.116.44:4443/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-20 15:05	http://185.225.75.3:8086/c/msdownload/update/others/2020/10/29136388_	Cobalt Strike	CobaltStrike cs-watermark-987654321 NIU Telecommunications Inc	drb_ra
2023-09-20 15:05	http://211.159.173.202:5555/match	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 15:05	https://117.50.174.241/pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 15:05	http://192.168.20.128:50050/j.ad	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 15:05	106.14.201.1:80	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-20 15:05	http://106.14.201.1/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-20 15:04	43.139.67.239:443	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-20 15:04	https://192.168.31.163/ptj	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-20 15:04	147.78.47.48:443	Cobalt Strike	CobaltStrike cs-watermark-587247372 FLYSERVERS-ASN	drb_ra
2023-09-20 15:04	88.214.26.33:443	Cobalt Strike	AS209132 CobaltStrike cs-watermark-587247372	drb_ra
2023-09-20 15:04	betshopkipstri.com	Cobalt Strike	AS209132 CobaltStrike cs-watermark-587247372	drb_ra
2023-09-20 15:04	https://betshopkipstri.com/pixel	Cobalt Strike	AS209132 CobaltStrike cs-watermark-587247372	drb_ra
2023-09-20 15:04	bb.makkgg.fyi	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 15:04	116.205.189.199:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 15:04	https://bb.makkgg.fyi/jd/	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 15:03	http://139.159.203.44:8010/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-20 15:02	http://3.141.98.21/owa/eV19SoVsnrwBXSiKRE0f6Q0Qx	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-178626913	drb_ra
2023-09-20 14:25	39.106.2.238:81	Cobalt Strike		malpulse
2023-09-20 12:21	http://185.11.61.85/updates.rss	Cobalt Strike	CHANGWAY-AS CobaltStrike cs-watermark-674054486	drb_ra
2023-09-20 12:15	https://185.11.61.85/ca	Cobalt Strike	CHANGWAY-AS CobaltStrike cs-watermark-674054486	drb_ra
2023-09-20 09:26	service-9wkno0fh-1304892907.bj.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-20 09:25	https://service-9wkno0fh-1304892907.bj.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-20 09:25	147.78.47.48:80	Cobalt Strike	CobaltStrike cs-watermark-587247372 FLYSERVERS-ASN	drb_ra
2023-09-20 09:25	http://147.78.47.48/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-587247372 FLYSERVERS-ASN	drb_ra
2023-09-20 09:25	8.130.96.29:443	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-09-20 08:15	172.171.232.120:80	Cobalt Strike		malpulse
2023-09-20 07:32	118.89.124.242:2121	Cobalt Strike		malpulse
2023-09-20 06:12	106.55.182.217:1433	Cobalt Strike		malpulse
2023-09-20 05:06	129.226.92.29:81	Cobalt Strike		malpulse
2023-09-20 05:06	123.207.29.252:55554	Cobalt Strike		malpulse
2023-09-20 05:06	121.41.101.133:443	Cobalt Strike		malpulse
2023-09-20 05:01	185.225.75.3:8086	Cobalt Strike		malpulse
2023-09-20 05:01	43.139.67.239:80	Cobalt Strike		malpulse
2023-09-20 04:57	211.159.173.202:5555	Cobalt Strike		malpulse
2023-09-20 04:57	164.155.201.133:80	Cobalt Strike		malpulse
2023-09-20 04:57	110.40.157.87:80	Cobalt Strike		malpulse
2023-09-20 04:57	176.113.115.54:80	Cobalt Strike		malpulse
2023-09-20 04:57	47.92.27.193:443	Cobalt Strike		malpulse
2023-09-20 04:57	111.230.57.184:6666	Cobalt Strike		malpulse
2023-09-20 04:57	106.14.201.1:443	Cobalt Strike		malpulse
2023-09-20 04:57	3.141.98.21:80	Cobalt Strike		malpulse
2023-09-20 04:57	117.50.174.241:443	Cobalt Strike		malpulse
2023-09-19 21:32	8.140.37.238:80	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-19 21:32	http://8.140.37.238/ca	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-19 19:34	82.156.27.247:443	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-19 19:34	service-kvmc8be7-1304892907.bj.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-19 19:34	https://service-kvmc8be7-1304892907.bj.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-19 19:34	81.68.152.129:2096	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 19:34	https://www.baidusec.top:2096/dom.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 19:10	http://116.62.138.47:1000/ga.js	Cobalt Strike	CobaltStrike	abuse_ch
2023-09-19 19:10	http://116.62.138.47:1000/8yHd	Cobalt Strike	CobaltStrike	abuse_ch
2023-09-19 18:33	http://82.115.223.34/ptj	Cobalt Strike	CobaltStrike cs-watermark-587247372 WAIcore Hosting LTD.	drb_ra
2023-09-19 18:32	http://nexgenemi.com/index.get/files/ajaxonly/saveprogress	Cobalt Strike	CobaltStrike cs-watermark-587247372 HOSTHATCH	drb_ra
2023-09-19 18:31	http://1.116.156.228:8078/ptj	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-19 18:28	http://106.75.232.107/match	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-19 18:27	http://81.68.194.174:8002/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-19 18:27	http://124.221.76.197/visit.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-19 18:27	http://8.134.122.165:8099/cx	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-09-19 18:27	http://111.231.24.230:54322/ptj	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-09-19 18:26	https://129.211.211.145/dpixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-19 18:25	https://124.221.76.197/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-19 18:22	http://120.46.39.64:8080/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-19 18:21	http://82.157.57.66/fwlink	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 18:20	https://www.baidusec.top:2053/eo.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 18:19	https://1.116.156.228/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-19 18:14	http://147.78.47.241/cx	Cobalt Strike	CobaltStrike cs-watermark-1580103824 FLYSERVERS-ASN	drb_ra
2023-09-19 18:13	https://www.5cq.com/link.html	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-19 16:33	39.107.113.250:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-19 16:33	https://39.107.113.250/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-19 16:02	92.63.196.46:8092	Cobalt Strike		malpulse
2023-09-19 15:55	http://harmonyshoused.com:443/design/query/9X5M3SOE0F	Cobalt Strike	CobaltStrike	abuse_ch
2023-09-19 15:47	124.223.177.244:6666	Cobalt Strike		malpulse
2023-09-19 13:19	202.182.113.127:7090	Cobalt Strike		malpulse
2023-09-19 13:08	https://101.34.71.193/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:35	http://118.24.128.43/push	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:35	http://182.92.218.99/match	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:34	47.105.69.34:2083	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:34	upload.flash-update.info	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:34	https://upload.flash-update.info:2083/api/3	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:34	81.68.152.129:53	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:34	ns3.vpn.baidusec.top	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:34	http://ns3.vpn.baidusec.top:53/newspaper.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:34	ns2.vpn.baidusec.top	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:34	http://ns2.vpn.baidusec.top:53/js.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:34	http://ns1.vpn.baidusec.top:53/js.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 11:34	ns1.vpn.baidusec.top	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 09:14	http://47.105.69.34:8000/api/3	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-19 06:27	101.33.244.132:8071	Cobalt Strike		malpulse
2023-09-19 06:27	121.4.64.103:9999	Cobalt Strike		malpulse
2023-09-19 06:27	119.29.145.4:8080	Cobalt Strike		malpulse
2023-09-19 01:42	134.195.90.65:443	Cobalt Strike	CobaltStrike cs-watermark-587247372 HOSTHATCH	drb_ra
2023-09-19 01:42	nexgenemi.com	Cobalt Strike	CobaltStrike cs-watermark-587247372 HOSTHATCH	drb_ra
2023-09-19 01:42	https://nexgenemi.com/index.get/files/ajaxonly/load	Cobalt Strike	CobaltStrike cs-watermark-587247372 HOSTHATCH	drb_ra
2023-09-18 14:17	http://101.42.170.233:6666/ca	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-18 14:17	82.157.57.66:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-18 14:17	https://82.157.57.66/cm	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-18 14:16	http://62.234.29.194:9999/push	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-18 14:16	http://124.223.15.17:9999/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-18 14:15	http://120.79.64.164:8888/audiencemanager.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-18 14:15	http://43.138.212.90:8089/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-18 13:54	http://82.115.223.34/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-587247372 WAIcore Hosting LTD.	drb_ra
2023-09-18 13:49	http://47.99.177.59:5555/activity	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-18 13:47	http://47.96.174.24:88/visit.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-18 13:46	http://1.13.158.52:8099/activity	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-18 13:42	https://139.155.154.67/cx	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-18 13:41	https://43.153.222.28/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-18 13:41	https://43.153.222.28/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-18 13:36	http://43.138.62.36:7001/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-18 13:35	https://192.144.220.12:55555/j.ad	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-18 13:34	http://213.142.159.117/sigara.aspx	Cobalt Strike	CobaltStrike cs-watermark-0 HOSTINGDUNYAM HOSTING DUNYAM	drb_ra
2023-09-18 13:33	https://107.189.13.227/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-987654321 PONYNET	drb_ra
2023-09-18 13:33	https://107.189.13.227/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-987654321 PONYNET	drb_ra
2023-09-18 13:32	http://124.71.1.66/cm	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-18 10:08	http://www.test9977.tk:2096/ca	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-18 10:03	www.gdstictk.buzz	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-987654321	drb_ra
2023-09-18 10:03	http://www.gdstictk.buzz/pixel	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-987654321	drb_ra
2023-09-18 10:03	http://64.227.18.171:8087/messages/C0527B0NM	Cobalt Strike	CobaltStrike cs-watermark-391144938 DIGITALOCEAN-ASN	drb_ra
2023-09-18 09:56	https://123.12.213.187/static/js/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-18 09:56	https://183.61.188.11/static/js/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-18 09:56	https://219.151.137.57/static/js/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-18 09:17	utilityupdate.com	Cobalt Strike	CobaltStrike cs-watermark-987654321 EUROBYTE Eurobyte LLC	drb_ra
2023-09-18 09:17	46.30.45.154:443	Cobalt Strike	CobaltStrike cs-watermark-987654321 EUROBYTE Eurobyte LLC	drb_ra
2023-09-18 09:17	https://utilityupdate.com/c/msdownload/update/others/2020/10/29136388_	Cobalt Strike	CobaltStrike cs-watermark-987654321 EUROBYTE Eurobyte LLC	drb_ra
2023-09-18 06:10	113.89.10.190:8001	Cobalt Strike		malpulse
2023-09-18 06:10	36.139.7.241:8443	Cobalt Strike		malpulse
2023-09-18 06:10	68.183.255.15:8008	Cobalt Strike		malpulse
2023-09-18 06:10	68.183.255.15:4433	Cobalt Strike		malpulse
2023-09-18 06:10	42.193.98.44:8443	Cobalt Strike		malpulse
2023-09-18 06:10	101.42.170.233:6666	Cobalt Strike		malpulse
2023-09-18 06:10	82.156.125.53:6443	Cobalt Strike		malpulse
2023-09-18 06:10	68.183.255.15:443	Cobalt Strike		malpulse
2023-09-18 06:10	118.25.13.19:8099	Cobalt Strike		malpulse
2023-09-18 06:10	118.25.16.4:60030	Cobalt Strike		malpulse
2023-09-18 06:10	193.233.133.183:8080	Cobalt Strike		malpulse
2023-09-18 06:10	8.130.128.97:8099	Cobalt Strike		malpulse
2023-09-18 06:10	3.72.68.180:443	Cobalt Strike		malpulse
2023-09-18 06:10	159.223.132.255:80	Cobalt Strike		malpulse
2023-09-18 06:10	107.173.15.230:8000	Cobalt Strike		malpulse
2023-09-18 06:10	101.43.156.246:8098	Cobalt Strike		malpulse
2023-09-18 06:10	64.112.124.191:80	Cobalt Strike		malpulse
2023-09-18 06:10	198.44.186.214:80	Cobalt Strike		malpulse
2023-09-18 06:10	172.245.107.118:80	Cobalt Strike		malpulse
2023-09-17 21:17	111.231.22.61:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-17 21:17	https://111.231.22.61/ptj	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-17 21:17	https://119.45.62.86:8443/owa/	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-17 17:12	https://64.27.23.140/push	Cobalt Strike	CobaltStrike cs-watermark-987654321 MULTA-ASN1	drb_ra
2023-09-17 17:12	http://24.199.101.0/visit.js	Cobalt Strike	CobaltStrike cs-watermark-391144938 DIGITALOCEAN-ASN	drb_ra
2023-09-17 17:11	http://139.155.154.67:8089/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-17 17:09	http://124.220.215.247/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-09-17 17:09	http://175.24.235.158:6060/load	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-17 17:05	http://150.158.45.62/j.ad	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-17 17:03	http://123.207.5.159:89/load	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-17 17:03	http://43.138.62.36:7001/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-17 16:54	https://150.158.45.62/fwlink	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-17 16:45	1398747042169696.cn-hangzhou.fc.aliyuncs.com	Cobalt Strike	CobaltStrike cs-watermark-1755231	drb_ra
2023-09-17 16:45	https://1398747042169696.cn-hangzhou.fc.aliyuncs.com/2016-08-15/proxy/kkk.LATEST/proxy/index.html	Cobalt Strike	CobaltStrike cs-watermark-1755231	drb_ra
2023-09-17 16:45	https://175.178.3.16/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-17 16:45	http://8.140.135.23:8099/ca	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-17 16:44	http://152.136.171.6/dist/css/bootstrap.min.css	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-17 16:44	https://39.106.141.58/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-17 16:44	http://124.221.246.87:8888/cx	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-17 16:44	http://119.45.118.187:8880/api/3	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-17 16:44	https://ajax.microsoft.com/msft-ajx	Cobalt Strike	CobaltStrike cs-watermark-802779459 Microsoft Corporation	drb_ra
2023-09-17 16:44	47.92.30.165:80	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-17 16:44	http://47.92.30.165/mall_100_100.html	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-17 16:43	http://192.3.103.77:3333/ca	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-391144938	drb_ra
2023-09-17 16:43	c1.flashjick.top	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-17 16:43	https://c1.flashjick.top/api/3	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-17 16:43	http://101.132.118.252:60010/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-17 16:43	http://47.111.19.173:8090/dpixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-17 16:43	https://42.193.101.234/pixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-17 16:42	http://123.249.8.30:9999/cm	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-17 16:42	https://34.150.32.61/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321 Google LLC	drb_ra
2023-09-17 16:42	http://82.156.135.7/image/	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-17 16:42	http://122.51.97.82:8888/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-17 16:42	service-p54klbhi-1300810596.gz.apigw.tencentcs.com	Cobalt Strike	Cloudie Limited CobaltStrike cs-watermark-100000	drb_ra
2023-09-17 16:42	https://service-p54klbhi-1300810596.gz.apigw.tencentcs.com/api/getversion	Cobalt Strike	Cloudie Limited CobaltStrike cs-watermark-100000	drb_ra
2023-09-17 16:42	http://47.115.219.93:8809/match	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-17 16:41	http://119.3.253.250:8001/load	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-17 16:41	stackpath-analytics-gpvlqzqeda-uc.a.run.app	Cobalt Strike	CobaltStrike cs-watermark-371018429 DigitalOcean LLC	drb_ra
2023-09-17 16:41	https://stackpath-analytics-gpvlqzqeda-uc.a.run.app/feed/sale/0/continous/	Cobalt Strike	CobaltStrike cs-watermark-371018429 DigitalOcean LLC	drb_ra
2023-09-17 16:41	42.193.101.234:80	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-17 16:41	http://42.193.101.234/dpixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-17 12:41	39.104.81.101:7777	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:41	47.116.58.106:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:41	194.67.200.48:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:41	146.190.171.34:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:41	45.32.80.106:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:41	141.164.38.5:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:41	119.96.87.160:4444	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:41	43.155.176.36:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:41	146.190.87.29:4433	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:39	206.237.30.121:443	Cobalt Strike		malpulse
2023-09-17 12:39	38.54.37.235:443	Cobalt Strike		malpulse
2023-09-17 12:39	121.41.216.139:8009	Cobalt Strike		malpulse
2023-09-17 12:39	106.12.116.233:8009	Cobalt Strike		malpulse
2023-09-17 12:39	13.124.248.90:4444	Cobalt Strike		malpulse
2023-09-17 12:39	13.52.237.170:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:39	172.190.77.91:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 12:39	175.178.3.16:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-17 11:51	http://31.44.184.232/ga.js	Cobalt Strike	CobaltStrike cs-watermark-1580103824 PINDC-AS	drb_ra
2023-09-17 11:50	http://www.test9977.tk:2096/fwlink	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-17 11:50	https://185.11.61.85/visit.js	Cobalt Strike	CHANGWAY-AS CobaltStrike cs-watermark-674054486	drb_ra
2023-09-17 11:50	http://www.test9977.tk:2095/dpixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-17 11:48	ext.cdninternal.cloud	Cobalt Strike	CobaltStrike cs-watermark-987654321 PT Jala Lintas Media	drb_ra
2023-09-17 11:48	https://ext.cdninternal.cloud/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 PT Jala Lintas Media	drb_ra
2023-09-17 11:48	proxy.cdninternal.cloud	Cobalt Strike	CobaltStrike cs-watermark-987654321 PT Jala Lintas Media	drb_ra
2023-09-17 11:48	https://proxy.cdninternal.cloud/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 PT Jala Lintas Media	drb_ra
2023-09-17 11:42	http://upbetanetworks.org:1080/dz	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-674054486	drb_ra
2023-09-17 11:41	http://1.14.15.35/zOMGAPT	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-17 09:19	https://101.133.128.248/test/v5.08/5CCAZJYAPM90	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-17 09:19	101.133.128.248:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-17 09:19	50.3.132.232:443	Cobalt Strike	AS62904 CobaltStrike cs-watermark-587247372	drb_ra
2023-09-17 09:19	https://devopspdx.com/links	Cobalt Strike	AS62904 CobaltStrike cs-watermark-587247372	drb_ra
2023-09-17 09:19	104.168.59.9:8080	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-674054486	drb_ra
2023-09-17 01:03	http://13.124.248.90:12345/j.ad	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 21:18	50.3.132.232:80	Cobalt Strike	AS62904 CobaltStrike cs-watermark-587247372	drb_ra
2023-09-16 21:18	devopspdx.com	Cobalt Strike	AS62904 CobaltStrike cs-watermark-587247372	drb_ra
2023-09-16 21:18	http://devopspdx.com/nd.html	Cobalt Strike	AS62904 CobaltStrike cs-watermark-587247372	drb_ra
2023-09-16 21:18	81.68.152.129:8082	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 21:18	18.189.13.230:443	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-713409132	drb_ra
2023-09-16 21:18	https://mortgagetf.com/tab_shop_active	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-713409132	drb_ra
2023-09-16 21:18	mortgagetf.com	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-713409132	drb_ra
2023-09-16 21:18	13.124.248.90:443	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 21:18	https://13.124.248.90/cm	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 21:17	110.41.174.148:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 21:17	https://110.41.174.148/cx	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 20:11	123.56.140.68:8088	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-16 20:07	https://123.253.33.28/www/handle/doc	Cobalt Strike	CobaltStrike cs-watermark-100000000 Gigabit Hosting Sdn Bhd	drb_ra
2023-09-16 20:07	windowsupdate.viewdns.net	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-16 20:07	https://windowsupdate.viewdns.net/match	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-16 20:07	120.132.99.116:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-16 20:07	https://156.245.19.127:8443/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-100000 SonderCloud Limited	drb_ra
2023-09-16 20:06	http://39.101.72.224:8080/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-16 20:06	http://118.24.128.43/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 20:06	https://103.19.190.102/jquery-3.3.1.min.js	Cobalt Strike	BGPNET Global ASN CobaltStrike cs-watermark-100000	drb_ra
2023-09-16 20:06	147.78.47.135:443	Cobalt Strike	CobaltStrike cs-watermark-987654321 FLYSERVERS-ASN	drb_ra
2023-09-16 20:06	https://147.78.47.135/_/scs/mail-static/_/js/	Cobalt Strike	CobaltStrike cs-watermark-987654321 FLYSERVERS-ASN	drb_ra
2023-09-16 20:06	http://8.130.128.97:8080/load	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 20:05	zx.regsvrsvc.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 HOSTKEY	drb_ra
2023-09-16 20:05	https://zx.regsvrsvc.com/r_config	Cobalt Strike	CobaltStrike cs-watermark-1580103824 HOSTKEY	drb_ra
2023-09-16 20:05	as.regsvrsvc.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 HOSTKEY	drb_ra
2023-09-16 20:05	https://as.regsvrsvc.com/tab_home_active	Cobalt Strike	CobaltStrike cs-watermark-1580103824 HOSTKEY	drb_ra
2023-09-16 20:05	https://qw.regsvrsvc.com/r_config	Cobalt Strike	CobaltStrike cs-watermark-1580103824 HOSTKEY	drb_ra
2023-09-16 20:05	qw.regsvrsvc.com	Cobalt Strike	CobaltStrike cs-watermark-1580103824 HOSTKEY	drb_ra
2023-09-16 20:05	http://43.143.132.119/visit.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-16 20:04	http://20.237.12.116:8080/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-1444589874 Microsoft Corporation	drb_ra
2023-09-16 20:04	1.14.15.35:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 20:04	https://1.14.15.35/zOMGAPT	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 20:04	23.106.223.202:443	Cobalt Strike	CobaltStrike cs-watermark-100000 LEASEWEB-USA-SEA-10	drb_ra
2023-09-16 20:04	dejiwive.org	Cobalt Strike	CobaltStrike cs-watermark-100000 LEASEWEB-USA-SEA-10	drb_ra
2023-09-16 20:04	https://dejiwive.org/tab_shop.html	Cobalt Strike	CobaltStrike cs-watermark-100000 LEASEWEB-USA-SEA-10	drb_ra
2023-09-16 20:03	https://146.56.118.82/ga.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 Oracle Corporation	drb_ra
2023-09-16 20:03	http://123.207.20.16:5555/ga.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-16 20:02	http://59.110.235.230:9090/api/x	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-16 20:02	http://101.34.46.239/ca	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-16 19:37	3.145.175.2:53	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-420312258	drb_ra
2023-09-16 19:37	tourist.healthgradespro.com	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-420312258	drb_ra
2023-09-16 19:37	103.97.177.106:53	Cobalt Strike	CobaltStrike cs-watermark-Not Found	drb_ra
2023-09-16 19:33	http://119.29.145.4:8888/ptj	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-16 19:32	http://81.71.132.192/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-16 19:27	http://150.158.181.243:8011/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-16 19:22	https://api.0nedriveup.com/match	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-16 19:12	http://8.130.128.97/ptj	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-16 19:04	http://82.115.223.34/cx	Cobalt Strike	CobaltStrike cs-watermark-587247372 WAIcore Hosting LTD.	drb_ra
2023-09-16 19:03	http://175.24.235.158:6060/ptj	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-16 19:02	http://154.221.17.44:2090/ptj	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-16 19:00	http://124.71.212.123:9999/ga.js	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-16 18:54	http://124.222.64.203/match	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-16 17:20	http://111.231.31.198:443/OIvO	Cobalt Strike	CobaltStrike	abuse_ch
2023-09-16 15:11	http://185.11.61.85/IE9CompatViewList.xml	Cobalt Strike	CHANGWAY-AS CobaltStrike cs-watermark-674054486	drb_ra
2023-09-16 15:08	https://194.135.17.31/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321 KRAUD-AS	drb_ra
2023-09-16 11:41	81.68.106.68:8888	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 11:41	101.42.141.237:8090	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 09:01	116.62.114.96:8080	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 09:01	120.46.39.64:8080	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 08:56	124.221.246.87:8888	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 08:56	47.93.102.149:789	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 08:56	124.223.15.17:9999	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 08:47	91.103.253.22:757	Cobalt Strike	CobaltStrike cs-watermark-674054486 SHELTER2-AS	drb_ra
2023-09-16 08:47	https://upbetanetworks.org:757/modules.html	Cobalt Strike	CobaltStrike cs-watermark-674054486 SHELTER2-AS	drb_ra
2023-09-16 08:47	121.37.202.214:443	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-16 08:47	https://121.37.202.214/index/	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-16 07:03	101.132.118.252:60010	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	156.245.19.127:8443	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	47.115.224.162:8080	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	1.14.15.35:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	103.124.104.109:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	43.138.30.109:8888	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	60.205.58.225:8001	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	123.249.8.30:9999	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	152.32.174.103:8009	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	34.150.32.61:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	124.71.1.66:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	195.130.202.151:9090	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	138.68.91.128:4443	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	119.45.118.187:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 07:03	39.106.141.58:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-16 01:39	163.123.143.227:80	Cobalt Strike	CobaltStrike cs-watermark-987654321 Delis LLC	drb_ra
2023-09-16 01:39	192.3.76.138:80	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-674054486	drb_ra
2023-09-15 21:38	5.101.0.245:443	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-09-15 21:38	http://5.101.0.245/match	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-09-15 20:10	http://81.68.152.129:8081/eo.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 20:09	121.37.202.214:80	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-15 20:09	http://121.37.202.214/index/	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-15 20:09	https://43.136.90.47:8443/verifyCode	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-15 20:09	http://223.247.128.176:8081/load	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-15 19:07	204.44.125.82:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 19:07	148.66.6.30:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 19:07	47.115.219.93:8809	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 19:07	45.143.145.235:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 19:07	62.234.29.194:9999	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 19:07	103.30.43.148:4500	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 18:46	http://47.101.170.17:8888/pixel	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-15 18:40	http://82.157.169.10:7999/cx	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-15 18:39	https://194.156.98.197/IE9CompatViewList.xml	Cobalt Strike	ADCDATA.COM CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 18:34	http://content.microsoft.com.w.kunlunca.com/cm	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-15 18:32	cs45upb230906.iqiyid.com	Cobalt Strike	CobaltStrike cs-watermark-100000 MULTA-ASN1	drb_ra
2023-09-15 18:32	https://cs45upb230906.iqiyid.com:2053/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-100000 MULTA-ASN1	drb_ra
2023-09-15 18:31	http://8.141.161.11:6666/fwlink	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-15 18:29	https://178.62.79.36/push	Cobalt Strike	CobaltStrike cs-watermark-587247372 DigitalOcean LLC	drb_ra
2023-09-15 18:27	https://39.107.250.164/azure/api/v2/userinfo/get	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-15 18:27	https://testwscdn.m.37.com/azure/api/v2/userinfo/get	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-15 18:27	https://43.142.184.93/fwlink	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-15 18:25	https://www.5cq.com/an.js	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-15 16:43	5.101.0.245:80	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-09-15 16:43	http://5.101.0.245/cx	Cobalt Strike	CobaltStrike cs-watermark-1580103824	drb_ra
2023-09-15 16:43	http://159.223.132.255/owa/EH4Wxdz2PBdBMdlj6GgzG35tC7Z-PnqUFodwBNx	Cobalt Strike	CobaltStrike cs-watermark-478680362 DigitalOcean LLC	drb_ra
2023-09-15 16:42	http://81.161.229.129/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-305419896 Delis LLC	drb_ra
2023-09-15 16:42	81.161.229.129:80	Cobalt Strike	CobaltStrike cs-watermark-305419896 Delis LLC	drb_ra
2023-09-15 16:42	http://81.161.229.129:8010/activity	Cobalt Strike	CobaltStrike cs-watermark-305419896 Delis LLC	drb_ra
2023-09-15 16:42	micrusroft.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 16:42	https://micrusroft.com/api/3	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 16:42	148.66.6.26:443	Cobalt Strike	CobaltStrike cs-watermark-426352781 Netsec Limited	drb_ra
2023-09-15 16:42	http://45.142.122.208/cx	Cobalt Strike	AEZA GROUP Ltd CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 16:41	image.bitget.works	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 16:41	https://image.bitget.works/_/scs/mail-static/_/js/	Cobalt Strike	Amazon.com Inc. CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 16:41	http://101.43.96.246/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-15 16:41	https://175.178.237.218/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 16:40	https://101.43.96.246:8443/j.ad	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-15 16:40	http://146.56.42.196:8001/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321 Oracle Corporation	drb_ra
2023-09-15 16:40	http://1.94.26.40/load	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 16:40	https://canadaforestry.azureedge.net/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-342053541 Microsoft Corporation	drb_ra
2023-09-15 16:40	canadaforestry.azureedge.net	Cobalt Strike	CobaltStrike cs-watermark-342053541 Microsoft Corporation	drb_ra
2023-09-15 16:40	http://8.130.128.97/match	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 12:49	service-qgq5kvsb-1311579215.sh.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 12:49	https://service-qgq5kvsb-1311579215.sh.apigw.tencentcs.com/js/lib/jquery-1-edb203c114.10.2.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 12:17	146.56.118.82:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 12:17	47.94.206.253:8090	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 12:17	80.96.156.43:444	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 11:40	192.3.76.67:1443	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-587247372	drb_ra
2023-09-15 09:12	https://45.76.219.29/IE9CompatViewList.xml	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-0	drb_ra
2023-09-15 09:12	45.76.219.29:443	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-0	drb_ra
2023-09-15 09:12	23.94.122.130:80	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-668899	drb_ra
2023-09-15 09:12	http://23.94.122.130/Complete/pr/H6TCQRWR	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-668899	drb_ra
2023-09-15 09:05	179.60.149.231:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 08:06	64.227.18.171:8087	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 08:06	123.253.33.28:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 08:06	8.140.135.23:8099	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:39	http://123.249.115.56:8082/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-15 06:39	175.27.221.235:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 06:39	http://175.27.221.235/ca	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 06:16	82.157.161.99:9999	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:16	120.79.64.164:8888	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:16	47.111.19.173:8090	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:16	81.161.229.129:8010	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:16	104.168.59.9:1080	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:15	172.178.76.170:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:15	45.142.122.208:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:15	42.193.252.92:2087	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:15	80.143.42.203:2222	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:15	43.143.132.119:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:15	103.19.190.102:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 06:15	39.101.72.224:8080	Cobalt Strike	CobaltStrike	malpulse
2023-09-15 05:02	https://43.138.77.115:4431/fwlink	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-15 05:01	http://172.19.31.158:88/visit.js	Cobalt Strike	CobaltStrike cs-watermark-6	drb_ra
2023-09-14 21:39	https://47.108.180.121/updates	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 21:36	http://39.105.53.172:8000/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-14 21:36	cs45upb230906a.iqiyid.com	Cobalt Strike	CobaltStrike cs-watermark-100000 MULTA-ASN1	drb_ra
2023-09-14 21:36	https://cs45upb230906a.iqiyid.com:2083/ptj	Cobalt Strike	CobaltStrike cs-watermark-100000 MULTA-ASN1	drb_ra
2023-09-14 21:36	https://1.12.55.126:9988/dpixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-14 21:34	http://82.115.223.34/cm	Cobalt Strike	CobaltStrike cs-watermark-587247372 WAIcore Hosting LTD.	drb_ra
2023-09-14 21:33	http://1.14.32.41:8082/push	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 21:32	http://144.202.100.202:8085/__utm.gif	Cobalt Strike	AS-CHOOPA CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 21:29	http://82.157.57.66/ca	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 21:28	http://121.4.59.117:9993/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-6	drb_ra
2023-09-14 21:27	https://154.62.107.175:9999/g.pixel	Cobalt Strike	AS-HOSTINGER CobaltStrike cs-watermark-Not Found	drb_ra
2023-09-14 21:26	http://1.13.158.52:8099/load	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-14 21:25	https://www.5cq.com/mobile-android.html	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-14 21:24	https://onlinetechdesk.com/index.js	Cobalt Strike	CobaltStrike cs-watermark-587247372 SHELTER2-AS	drb_ra
2023-09-14 21:22	https://8.142.117.220/match	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-14 21:13	123.249.115.56:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-14 21:13	https://123.249.115.56/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-14 21:13	91.103.253.22:8080	Cobalt Strike	CobaltStrike cs-watermark-674054486 SHELTER2-AS	drb_ra
2023-09-14 21:12	upbetanetworks.org	Cobalt Strike	CobaltStrike cs-watermark-674054486 SHELTER2-AS	drb_ra
2023-09-14 21:12	https://upbetanetworks.org:8080/r_config.html	Cobalt Strike	CobaltStrike cs-watermark-674054486 SHELTER2-AS	drb_ra
2023-09-14 21:12	206.71.149.42:443	Cobalt Strike	BLNWX CobaltStrike cs-watermark-0	drb_ra
2023-09-14 21:12	awsglobalaccelerator.awsliveec.com	Cobalt Strike	BLNWX CobaltStrike cs-watermark-0	drb_ra
2023-09-14 21:12	https://awsglobalaccelerator.awsliveec.com/jquery-3.3.1.min.js	Cobalt Strike	BLNWX CobaltStrike cs-watermark-0	drb_ra
2023-09-14 21:12	https://47.109.79.81:5555/maps/overlaybfpr	Cobalt Strike	CobaltStrike cs-watermark-Not Found	drb_ra
2023-09-14 21:12	81.68.152.129:2053	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 21:12	www.baidusec.top	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 21:12	https://www.baidusec.top:2053/fam_newspaper.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 21:12	39.105.53.172:443	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-14 21:12	https://39.105.53.172/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-14 21:12	129.226.147.90:443	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-09-14 21:12	https://129.226.147.90/aaaaaaaaa	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-09-14 21:12	114.117.197.132:80	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-14 21:12	http://114.117.197.132/v2/check-api	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-14 20:05	http://119.29.145.4:8888/fwlink	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-14 20:05	https://179.43.162.54/s/ref=nb_sb_noss_1/167-3294888-0262949/field-keywords=books	Cobalt Strike	CobaltStrike cs-watermark-987654321 Private Layer INC	drb_ra
2023-09-14 20:05	https://175.27.221.235/pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 20:05	http://124.222.57.223:6666/static/js/jquery3.2.1.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-14 20:05	https://43.139.241.58:9443/recite/v9.52/6FCQ3UVD9	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-14 20:05	https://140.174.6.6:9443/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-100000 MULTACOM CORPORATION	drb_ra
2023-09-14 20:05	http://110.42.222.61/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-1711276032	drb_ra
2023-09-14 20:05	81.70.105.161:4444	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-14 20:04	http://38.147.170.124:8009/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 LUCIDACLOUD LIMITED	drb_ra
2023-09-14 20:04	http://43.129.183.133/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-14 20:04	http://47.93.121.204/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-14 20:04	http://43.136.107.99/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-14 20:04	http://43.143.224.71/ptj	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-14 20:03	8.130.24.142:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 20:03	http://8.130.24.142/ptj	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 20:03	http://47.94.206.253:8090/api/getStatus	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 20:03	http://81.70.105.161/dpixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-14 20:02	https://163.123.143.227/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 Delis LLC	drb_ra
2023-09-14 20:02	http://8.218.151.8:8080/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 20:02	http://140.210.212.191:6000/j.ad	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-14 20:02	https://20.237.12.116/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-1444589874 Microsoft Corporation	drb_ra
2023-09-14 20:02	http://139.159.203.44:801/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 20:02	http://106.55.181.108:8090/j.ad	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-14 14:48	cdn.ms-endpoint.com	Cobalt Strike		500mk500
2023-09-14 14:48	ms-endpoint.com	Cobalt Strike		500mk500
2023-09-14 13:56	121.40.119.94:8443	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 13:56	1.94.26.40:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 13:56	121.37.135.169:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 09:02	162.243.162.176:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 08:36	52.193.19.248:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 08:16	https://38.132.122.198/ca	Cobalt Strike	CobaltStrike cs-watermark-0 M247	drb_ra
2023-09-14 08:16	159.65.89.159:443	Cobalt Strike	CobaltStrike cs-watermark-587247372 DIGITALOCEAN-ASN	drb_ra
2023-09-14 08:16	cdromcsc.com	Cobalt Strike	CobaltStrike cs-watermark-587247372 DIGITALOCEAN-ASN	drb_ra
2023-09-14 08:16	https://cdromcsc.com/ptj	Cobalt Strike	CobaltStrike cs-watermark-587247372 DIGITALOCEAN-ASN	drb_ra
2023-09-14 08:16	192.3.76.138:443	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-674054486	drb_ra
2023-09-14 07:00	192.3.103.77:3333	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 06:35	149.102.137.13:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 06:35	182.92.218.99:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 06:35	101.43.96.246:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 06:35	122.51.97.82:8888	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 06:35	152.136.171.6:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 06:34	43.133.57.170:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 06:34	106.52.163.222:30003	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 06:34	120.27.142.96:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 06:34	159.223.72.123:8080	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 06:34	101.43.229.185:8443	Cobalt Strike	CobaltStrike	malpulse
2023-09-14 01:40	149.127.215.132:53	Cobalt Strike	CobaltStrike cs-watermark-Not Found	drb_ra
2023-09-14 01:40	167.172.147.163:53	Cobalt Strike	CobaltStrike cs-watermark-2129253320 DigitalOcean LLC	drb_ra
2023-09-14 01:40	pic.micros0ft-security.org	Cobalt Strike	CobaltStrike cs-watermark-2129253320 DigitalOcean LLC	drb_ra
2023-09-14 01:40	104.245.213.48:53	Cobalt Strike	CobaltStrike cs-watermark-1580103824 Hosteons Pte. Ltd.	drb_ra
2023-09-14 01:40	103.146.141.98:53	Cobalt Strike	CobaltStrike cs-watermark-391144938 YISU CLOUD LTD	drb_ra
2023-09-14 01:35	http://143.198.26.169/activity	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-14 01:34	https://devopszone.org/template	Cobalt Strike	CobaltStrike cs-watermark-587247372 SHELTER2-AS	drb_ra
2023-09-14 01:04	http://update.edgeupdates.com:8080/api/getStatus	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-14 01:04	http://34.92.125.242/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321 GOOGLE-CLOUD-PLATFORM	drb_ra
2023-09-13 21:26	http://139.155.154.67:8089/match	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:26	https://43.138.62.36/dpixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-13 21:26	http://124.70.129.64:9090/api/x	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 21:25	https://incitewebsolution.com/av	Cobalt Strike	CobaltStrike cs-watermark-587247372 Shelter LLC	drb_ra
2023-09-13 21:25	http://content.microsoft.com.w.kunlunca.com/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-13 21:25	http://43.136.14.250/load	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-13 21:25	http://43.138.62.36:8080/fwlink	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-13 21:25	https://43.138.179.199:1811/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:25	http://43.138.30.109:7524/ca	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-13 21:24	http://47.101.170.17:8888/push	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:23	http://42.193.44.136/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-13 21:23	http://82.115.223.34/pixel	Cobalt Strike	CobaltStrike cs-watermark-587247372 WAIcore Hosting LTD.	drb_ra
2023-09-13 21:22	http://43.138.179.199:808/ca	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:22	http://106.75.2.57:7000/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:22	http://43.138.62.36:7001/pixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-13 21:20	http://103.30.43.148:4500/ga.js	Cobalt Strike	CLOUDIE-AS-AP Cloudie Limited CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 21:20	service-fdlpxzmu-1258021343.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:20	http://service-fdlpxzmu-1258021343.gz.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:19	https://101.32.186.170/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-388888888	drb_ra
2023-09-13 21:19	https://34.92.125.242/cm	Cobalt Strike	CobaltStrike cs-watermark-987654321 GOOGLE-CLOUD-PLATFORM	drb_ra
2023-09-13 21:18	https://api.0nedriveup.com/fwlink	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-13 21:18	https://120.48.74.67/ga.js	Cobalt Strike	CobaltStrike cs-watermark-1	drb_ra
2023-09-13 21:18	https://3.72.68.180/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-1263551644 TANGO-TELINDUS	drb_ra
2023-09-13 21:17	https://139.155.154.67/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:17	www.5cq.com	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-13 21:17	https://www.5cq.com/ms	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-13 21:15	https://134.122.204.140/load	Cobalt Strike	BCPL-SG BGPNET Global ASN CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 21:15	http://43.138.62.36:8081/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-13 21:15	https://47.101.170.17/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:14	http://150.158.181.243:8011/dpixel	Cobalt Strike	CobaltStrike cs-watermark-1359593325	drb_ra
2023-09-13 21:14	http://111.231.24.230:54322/dpixel	Cobalt Strike	CobaltStrike cs-watermark-666666	drb_ra
2023-09-13 21:14	http://120.78.156.73:12345/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-13 21:14	http://8.142.117.220/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-13 21:13	https://43.138.179.199/ca	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:12	http://124.223.22.86/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-13 21:12	https://101.43.127.45:8443/pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 21:09	https://47.120.11.176/fwlink	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 21:09	https://1.117.93.65/visit.js	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-13 21:08	http://110.41.11.72/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-13 21:07	http://107.172.201.137/IE9CompatViewList.xml	Cobalt Strike	AS-COLOCROSSING CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:07	https://124.71.84.65/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-13 21:06	https://43.138.30.109:7777/ptj	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-13 21:06	http://175.24.235.158:6060/match	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:06	https://43.153.222.28/ca	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 21:05	https://47.101.41.158:37676/dpixel	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-13 21:05	http://43.138.30.109:8888/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-13 21:05	service-d1yss7wi-1314780031.nj.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-13 21:05	https://service-d1yss7wi-1314780031.nj.apigw.tencentcs.com/www/handle/doc	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-13 21:04	download.updatebrowser.cn	Cobalt Strike	CobaltStrike cs-watermark-666666 SABA-AS-001	drb_ra
2023-09-13 21:04	https://download.updatebrowser.cn:8443/0RZDKXR/ADGJJ4B3VRSPAV9KC3MXI80OFD.css	Cobalt Strike	CobaltStrike cs-watermark-666666 SABA-AS-001	drb_ra
2023-09-13 21:04	http://120.48.74.67:8001/dot.gif	Cobalt Strike	CobaltStrike cs-watermark-1	drb_ra
2023-09-13 21:04	https://sunshine.nicetrue.one:8443/login.jsp	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 21:02	http://154.90.57.70:9090/cm	Cobalt Strike	CobaltStrike cs-watermark-100000 Kaopu Cloud HK Limited	drb_ra
2023-09-13 21:02	http://139.196.191.50:8099/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-426352781	drb_ra
2023-09-13 20:02	http://172.111.50.113/updates.rss	Cobalt Strike	CobaltStrike cs-watermark-426352781 Dot-Tech LLC	drb_ra
2023-09-13 20:02	http://app.baidu-soft.com/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-987654321 The Constant Company LLC	drb_ra
2023-09-13 20:02	app.baidu-soft.com	Cobalt Strike	CobaltStrike cs-watermark-987654321 The Constant Company LLC	drb_ra
2023-09-13 20:02	https://service-gnzojfcb-1302811215.sh.apigw.tencentcs.com/bootstrap-5.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-13 20:01	https://143.198.26.169/ga.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-13 20:01	143.198.26.169:443	Cobalt Strike	CobaltStrike cs-watermark-987654321 DigitalOcean LLC	drb_ra
2023-09-13 20:00	https://212.192.15.231:8443/jquery-3.3.1.min.js	Cobalt Strike	ASNET CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 20:00	d1qzl7xiwymjyn.cloudfront.net	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-1272670358	drb_ra
2023-09-13 20:00	https://d1qzl7xiwymjyn.cloudfront.net/groupcp.html	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-1272670358	drb_ra
2023-09-13 20:00	https://34.124.197.156:8443/dpixel	Cobalt Strike	CobaltStrike cs-watermark-987654321 Google LLC	drb_ra
2023-09-13 19:59	104.168.201.195:80	Cobalt Strike	CobaltStrike cs-watermark-1234567890 HOSTWINDS	drb_ra
2023-09-13 19:59	http://104.168.201.195/ca	Cobalt Strike	CobaltStrike cs-watermark-1234567890 HOSTWINDS	drb_ra
2023-09-13 19:59	http://124.70.53.30:8000/ptj	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 19:59	http://82.157.57.66/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 19:13	138.197.174.202:443	Cobalt Strike	CobaltStrike cs-watermark-53645653 DIGITALOCEAN-ASN	drb_ra
2023-09-13 19:13	sectorzerosecurity.com	Cobalt Strike	CobaltStrike cs-watermark-53645653 DIGITALOCEAN-ASN	drb_ra
2023-09-13 19:13	https://sectorzerosecurity.com/__utm.gif	Cobalt Strike	CobaltStrike cs-watermark-53645653 DIGITALOCEAN-ASN	drb_ra
2023-09-13 19:13	85.31.233.108:443	Cobalt Strike	AS-HOSTINGER CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 19:13	https://85.31.233.108/visit.js	Cobalt Strike	AS-HOSTINGER CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 19:12	104.168.201.195:443	Cobalt Strike	CobaltStrike cs-watermark-391144938 HOSTWINDS	drb_ra
2023-09-13 19:12	https://104.168.201.195/ga.js	Cobalt Strike	CobaltStrike cs-watermark-391144938 HOSTWINDS	drb_ra
2023-09-13 19:02	185.225.75.69:8443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 19:02	39.105.231.22:5555	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 19:02	139.59.65.211:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 19:02	82.156.135.7:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 19:02	64.176.212.23:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 18:11	116.62.188.205:6666	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 17:39	101.33.117.154:2111	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 16:43	175.27.221.235:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 16:43	38.132.122.198:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 16:43	148.66.6.27:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 16:43	206.189.113.118:4433	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 16:43	101.34.46.239:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 16:43	106.55.181.108:8090	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 15:02	81.70.105.161:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 13:15	124.70.179.54:8888	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 13:15	8.135.60.95:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 13:15	20.237.12.116:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 13:15	206.189.113.118:8008	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 12:49	47.99.111.2:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 12:49	88.210.11.219:8443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 12:49	47.93.121.204:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 12:49	119.3.253.250:8001	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 12:07	http://111.67.195.154:8011/cm	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-13 12:06	http://134.122.204.140:10011/en_US/all.js	Cobalt Strike	BCPL-SG BGPNET Global ASN CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 12:06	http://47.120.9.35/g.pixel	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 09:12	43.138.218.97:443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 09:12	https://43.138.218.97/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 09:12	146.0.79.18:443	Cobalt Strike	CobaltStrike cs-watermark-206546002 HOSTKEY-AS	drb_ra
2023-09-13 09:12	casualscorner.com	Cobalt Strike	CobaltStrike cs-watermark-206546002 HOSTKEY-AS	drb_ra
2023-09-13 09:12	https://casualscorner.com/design/query/9X5M3SOE0F	Cobalt Strike	CobaltStrike cs-watermark-206546002 HOSTKEY-AS	drb_ra
2023-09-13 09:12	https://137.184.97.84:8989/inquiry/META-INF/YVHAC4J11I	Cobalt Strike	CobaltStrike cs-watermark-391144938 DIGITALOCEAN-ASN	drb_ra
2023-09-13 09:12	54.251.198.129:443	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 09:12	https://54.251.198.129/dot.gif	Cobalt Strike	AMAZON-02 CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 08:06	115.159.222.197:9092	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 07:29	45.89.229.24:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 07:07	http://139.155.90.81:8001/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-391144938	drb_ra
2023-09-13 07:07	60.204.151.115:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 07:07	service-lqymkqhs-1306655841.gz.apigw.tencentcs.com	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 07:06	http://service-lqymkqhs-1306655841.gz.apigw.tencentcs.com/api/x	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-13 06:28	94.156.253.138:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	101.34.36.115:8021	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	188.166.191.209:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	38.6.163.99:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	185.194.148.21:2083	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	117.78.4.157:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	43.129.183.133:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	8.218.151.8:8080	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	119.29.217.126:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	34.92.125.242:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	123.207.20.16:5555	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	110.42.222.61:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	39.105.231.22:8443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	103.186.65.161:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	82.153.138.238:8081	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	43.143.224.71:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	163.123.143.227:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	47.104.212.159:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	179.43.162.54:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 06:28	175.178.237.218:443	Cobalt Strike	CobaltStrike	malpulse
2023-09-13 01:01	43.129.28.136:53	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 01:01	clouds.localhost-microsoft.com	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-13 00:59	46.101.108.125:53	Cobalt Strike	CobaltStrike cs-watermark-97149411 DIGITALOCEAN-ASN	drb_ra
2023-09-13 00:59	t.takaelot.com	Cobalt Strike	CobaltStrike cs-watermark-97149411 DIGITALOCEAN-ASN	drb_ra
2023-09-12 22:16	160.124.53.117:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:16	154.195.229.62:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:16	154.195.229.61:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:16	160.124.53.90:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	154.195.229.7:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	154.195.229.27:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	154.195.229.24:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	160.124.53.120:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	154.195.229.43:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	160.124.53.125:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	154.195.229.16:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	154.195.229.21:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	160.124.53.81:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	154.195.229.3:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:15	154.195.229.58:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	160.124.53.126:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	154.195.229.55:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	160.124.53.74:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	160.124.53.121:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	154.195.229.28:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	154.195.229.17:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	154.195.229.54:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	154.195.229.26:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	154.195.229.23:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	154.195.229.6:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	160.124.53.118:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	160.124.53.79:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:14	154.195.229.12:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:13	160.124.53.115:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:13	154.195.229.22:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:13	160.124.53.75:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:13	154.195.229.18:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:13	154.195.229.56:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:13	154.195.229.49:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:13	160.124.53.84:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:13	160.124.53.82:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:13	154.195.229.19:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:12	160.124.53.116:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:12	160.124.53.99:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:12	154.195.229.57:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:12	160.124.53.83:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:12	154.195.229.45:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:12	154.195.229.10:1799	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 22:12	http://103.85.189.58:1799/j.ad	Cobalt Strike	CobaltStrike cs-watermark-391144938 POWER LINE DATACENTER	drb_ra
2023-09-12 20:12	178.62.68.57:443	Cobalt Strike	CobaltStrike cs-watermark-1295177269 DIGITALOCEAN-ASN	drb_ra
2023-09-12 20:12	https://178.62.68.57/picture/presentations/PESOKHQ3	Cobalt Strike	CobaltStrike cs-watermark-1295177269 DIGITALOCEAN-ASN	drb_ra
2023-09-12 20:11	43.129.28.136:8443	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-12 20:11	204.44.125.83:443	Cobalt Strike	ASN-QUADRANET-GLOBAL CobaltStrike cs-watermark-674054486	drb_ra
2023-09-12 20:11	167.172.94.190:443	Cobalt Strike	CobaltStrike cs-watermark-100000 DIGITALOCEAN-ASN	drb_ra
2023-09-12 20:11	https://167.172.94.190/load	Cobalt Strike	CobaltStrike cs-watermark-100000 DIGITALOCEAN-ASN	drb_ra
2023-09-12 20:11	154.204.60.102:81	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-12 20:11	http://62.234.185.105:81/image/	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-12 19:28	143.198.26.169:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 19:28	139.159.203.44:801	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 19:28	43.139.241.58:9443	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 19:28	146.56.42.196:8001	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 19:28	198.44.186.219:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 19:28	8.218.151.8:7777	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 19:28	42.194.199.231:7443	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 19:28	43.136.107.99:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 17:31	http://124.70.199.215:7001/IE9CompatViewList.xml	Cobalt Strike	CobaltStrike cs-watermark-0	drb_ra
2023-09-12 17:31	http://121.37.215.238/cm	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-12 17:31	https://95.105.116.245/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 JSC "Ufanet"	drb_ra
2023-09-12 17:31	http://124.221.15.9/updates	Cobalt Strike	CobaltStrike cs-watermark-305419896	drb_ra
2023-09-12 17:30	104.128.89.171:8080	Cobalt Strike	CobaltStrike cs-watermark-100000 IT7 Networks Inc	drb_ra
2023-09-12 17:30	baldu.wiki	Cobalt Strike	CobaltStrike cs-watermark-100000 IT7 Networks Inc	drb_ra
2023-09-12 17:30	http://baldu.wiki:8080/j.ad	Cobalt Strike	CobaltStrike cs-watermark-100000 IT7 Networks Inc	drb_ra
2023-09-12 17:30	91.103.253.48:1443	Cobalt Strike	CobaltStrike cs-watermark-587247372 SHELTER2-AS	drb_ra
2023-09-12 17:30	http://tcessolution.com:1443/us.js	Cobalt Strike	CobaltStrike cs-watermark-587247372 SHELTER2-AS	drb_ra
2023-09-12 17:30	http://1.12.70.156:7777/match	Cobalt Strike	CobaltStrike cs-watermark-1234567890	drb_ra
2023-09-12 17:29	http://39.107.68.66:8888/cx	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-12 17:29	https://cdn.jscriptstore.com/jquery-3.3.1.min.js	Cobalt Strike	CobaltStrike cs-watermark-426352781 Netsec Limited	drb_ra
2023-09-12 17:29	cdn.jscriptstore.com	Cobalt Strike	CobaltStrike cs-watermark-426352781 Netsec Limited	drb_ra
2023-09-12 17:29	47.94.206.253:8443	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-12 17:29	https://update.edgeupdates.com:8443/api/getStatus	Cobalt Strike	CobaltStrike cs-watermark-987654321	drb_ra
2023-09-12 17:29	https://185.225.75.63/bootstrap.min.js	Cobalt Strike	CobaltStrike cs-watermark-987654321 Delis LLC	drb_ra
2023-09-12 16:09	124.221.15.9:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 16:09	8.130.128.97:80	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 14:19	81.69.96.149:8089	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 14:19	47.94.206.253:8080	Cobalt Strike	CobaltStrike	malpulse
2023-09-12 11:56	https://8.141.80.14:4433/en_US/all.js	Cobalt Strike	CobaltStrike cs-watermark-100000	drb_ra
2023-09-12 11:56	66.29.131.147:443	Cobalt Strike	CobaltStrike cs-watermark-426352781 Namecheap Inc.	drb_ra
2023-09-12 11:56	https://66.29.131.147/pixel.gif	Cobalt Strike	CobaltStrike cs-watermark-426352781 Namecheap Inc.	drb_ra