################################################################
# ThreatFox IOCs: recent ip-port - CSV format                  #
# Last updated: 2023-05-29 19:25:10 UTC                        #
#                                                              #
# Terms Of Use: https://threatfox.abuse.ch/faq/#tos            #
# For questions please contact threatfox [at] abuse.ch         #
################################################################
#
# "first_seen_utc","ioc_id","ioc_value","ioc_type","threat_type","fk_malware","malware_alias","malware_printable","last_seen_utc","confidence_level","reference","tags","anonymous","reporter"
"2023-05-29 19:25:10", "1123213", "157.97.105.189:59666", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/d0a19b4a570d11010ee08acf68c399d490d31c423f94ff64019b3bef8cf3a5c9/", "Mirai", "0", "abuse_ch"
"2023-05-29 19:20:09", "1123212", "45.66.230.105:55555", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/f5968ced46e935dbe5f5e82dc635dc85090b3edf17e399edd40474a69ce5be8e/", "Mirai", "0", "abuse_ch"
"2023-05-29 19:15:09", "1123211", "77.105.147.194:13", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/d56b01cd17ce33041c6c8580a21142959b96cd15e2d669ed683701a602320d24/", "Mirai", "0", "abuse_ch"
"2023-05-29 18:49:36", "1123210", "193.149.185.71:445", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/193.149.185.71", "BLNWX,Responder", "0", "drb_ra"
"2023-05-29 18:49:30", "1123209", "82.65.153.201:445", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/82.65.153.201", "PROXAD,Responder", "0", "drb_ra"
"2023-05-29 18:49:10", "1123208", "213.32.72.95:5986", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/213.32.72.95", "OVH,Responder", "0", "drb_ra"
"2023-05-29 18:49:05", "1123207", "139.162.185.21:5986", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/139.162.185.21", "AKAMAI-LINODE-AP Akamai Connected Cloud,Responder", "0", "drb_ra"
"2023-05-29 18:46:36", "1123206", "54.219.249.57:443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://search.censys.io/hosts/54.219.249.57", "AMAZON-02,Mythic", "0", "drb_ra"
"2023-05-29 18:46:15", "1123205", "84.32.131.58:37443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://search.censys.io/hosts/84.32.131.58", "CHERRYSERVERS3-AS,Mythic", "0", "drb_ra"
"2023-05-29 18:45:49", "1123204", "172.104.195.25:7443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://search.censys.io/hosts/172.104.195.25", "AKAMAI-LINODE-AP Akamai Connected Cloud,Covenant", "0", "drb_ra"
"2023-05-29 17:35:18", "1123198", "146.70.158.105:9138", "ip:port", "botnet_cc", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "75", "https://bazaar.abuse.ch/sample/de33fd9d4c89f8d5ffad69cb7743922d8d22f54890f9ca69161edce001cba9ad/", "remcos", "0", "abuse_ch"
"2023-05-29 17:25:53", "1123197", "42.193.99.159:8090", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1359593325,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2023-05-29 16:27:30", "1123187", "192.177.65.118:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,NEXTARRAY-ASN-01", "0", "drb_ra"
"2023-05-29 16:27:24", "1123185", "118.190.211.190:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-426352781", "0", "drb_ra"
"2023-05-29 16:27:07", "1123182", "8.134.161.194:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2023-05-29 16:26:49", "1123178", "185.106.176.108:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,VH-GLOBAL VH Global Limited", "0", "drb_ra"
"2023-05-29 16:26:43", "1123176", "23.224.90.236:51873", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CNSERVERS,CobaltStrike,cs-watermark-391144938", "0", "drb_ra"
"2023-05-29 16:26:30", "1123173", "13.231.179.74:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "AMAZON-02,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2023-05-29 16:26:14", "1123170", "43.159.38.188:2052", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1359593325,TENCENT-NET-AP-CN Tencent Building Kejizhongyi Avenue", "0", "drb_ra"
"2023-05-29 16:25:54", "1123166", "108.61.229.250:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "AS-CHOOPA,CobaltStrike,cs-watermark-391144938", "0", "drb_ra"
"2023-05-29 16:25:46", "1123164", "197.36.247.242:4444", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,TE-AS TE-AS", "0", "drb_ra"
"2023-05-29 16:25:42", "1123163", "43.159.38.188:2053", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1359593325,TENCENT-NET-AP-CN Tencent Building Kejizhongyi Avenue", "0", "drb_ra"
"2023-05-29 16:25:34", "1123159", "43.226.152.98:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CHINANET-LIAONING-DALIAN-MAN CHINANET Liaoning province Dalian MAN network,CobaltStrike,cs-watermark-100000", "0", "drb_ra"
"2023-05-29 16:25:34", "1123160", "198.98.62.168:23", "ip:port", "botnet_cc", "elf.bashlite", "gayfgt,Gafgyt,qbot,torlus,lizkebab", "Bashlite", "", "100", "None", "Gafgyt", "0", "r3dbU7z"
"2023-05-29 16:25:26", "1123157", "47.94.45.208:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-100000", "0", "drb_ra"
"2023-05-29 16:25:13", "1123152", "175.178.115.15:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2023-05-29 16:25:09", "1123150", "91.208.197.66:666", "ip:port", "botnet_cc", "elf.bashlite", "gayfgt,Gafgyt,qbot,torlus,lizkebab", "Bashlite", "", "75", "https://bazaar.abuse.ch/sample/4104f74e940338379deac6fa0bff564e01a16b0a792ccf6ec39ee880ccad298e/", "Gafgyt", "0", "abuse_ch"
"2023-05-29 16:25:06", "1123149", "101.33.208.118:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1234567890,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2023-05-29 16:24:57", "1123147", "8.218.203.19:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Alibaba US Technology Co. Ltd.,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2023-05-29 16:05:08", "1123145", "107.173.209.253:55555", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/928093a6d6546babfb3aefef4f95bfe6e2017b9cdce3fe08c2233a2e8d975da7/", "Mirai", "0", "abuse_ch"
"2023-05-29 15:59:05", "1123144", "154.9.29.106:3778", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "r3dbU7z"
"2023-05-29 15:33:45", "1123129", "175.178.35.25:1111", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2023-05-29 15:30:09", "1123124", "107.189.3.153:1312", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/da6d4de9dc5ac43fb272581f4506d62e81783a3583abc34437724a779968ef6c/", "Mirai", "0", "abuse_ch"
"2023-05-29 15:20:10", "1123120", "95.214.27.201:59777", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/54be7fe1c0f0d68e84d311c4a32e07029387a28307075849f87918b197f7eab0/", "Mirai", "0", "abuse_ch"
"2023-05-29 15:20:08", "1123119", "185.206.215.165:5165", "ip:port", "botnet_cc", "win.ave_maria", "AVE_MARIA,AveMariaRAT,Warzone RAT,WarzoneRAT,avemaria", "Ave Maria", "", "100", "None", "AveMariaRAT,RAT", "0", "abuse_ch"
"2023-05-29 15:10:07", "1123117", "45.9.74.4:46910", "ip:port", "botnet_cc", "win.redline_stealer", "None", "RedLine Stealer", "", "100", "None", "RedLineStealer", "0", "abuse_ch"
"2023-05-29 14:20:40", "1123115", "192.187.109.243:23", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "None", "Mirai", "0", "r3dbU7z"
"2023-05-29 14:15:06", "1123114", "138.197.127.249:81", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "r3dbU7z"
"2023-05-29 14:09:53", "1123112", "109.205.213.7:1024", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "r3dbU7z"
"2023-05-29 14:00:56", "1123111", "62.113.117.232:9999", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "None", "Mirai", "0", "r3dbU7z"
"2023-05-29 13:14:44", "1123110", "194.62.157.35:6667", "ip:port", "botnet_cc", "elf.bashlite", "gayfgt,Gafgyt,qbot,torlus,lizkebab", "Bashlite", "", "100", "None", "Gafgyt", "0", "r3dbU7z"
"2023-05-29 13:05:09", "1123109", "41.216.182.140:23", "ip:port", "botnet_cc", "elf.bashlite", "gayfgt,Gafgyt,qbot,torlus,lizkebab", "Bashlite", "", "75", "https://bazaar.abuse.ch/sample/59d90ed186faf2c5635791f335a587fae4a069f7afed63241bf6625cf55afcd1/", "Gafgyt", "0", "abuse_ch"
"2023-05-29 12:51:06", "1123107", "41.216.182.140:1337", "ip:port", "botnet_cc", "elf.bashlite", "gayfgt,Gafgyt,qbot,torlus,lizkebab", "Bashlite", "", "100", "None", "Gafgyt", "0", "r3dbU7z"
"2023-05-29 12:40:59", "1123106", "137.220.227.219:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "BGPNET Global ASN,CobaltStrike,cs-watermark-987654321", "0", "drb_ra"
"2023-05-29 12:38:47", "1123104", "51.81.85.213:9999", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "None", "Mirai", "0", "r3dbU7z"
"2023-05-29 12:24:29", "1123103", "188.93.233.29:9999", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "r3dbU7z"
"2023-05-29 12:15:48", "1123101", "134.209.244.239:666", "ip:port", "botnet_cc", "elf.bashlite", "gayfgt,Gafgyt,qbot,torlus,lizkebab", "Bashlite", "", "100", "None", "Gafgyt", "0", "r3dbU7z"
"2023-05-29 12:14:16", "1123100", "109.150.179.202:2222", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:19:54", "50", "None", "None", "0", "sithhunter1337"
"2023-05-29 12:14:11", "1123098", "41.228.203.72:995", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:14:09", "50", "None", "None", "0", "sithhunter1337"
"2023-05-29 12:14:11", "1123099", "31.190.73.114:443", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:14:09", "50", "None", "None", "0", "sithhunter1337"
"2023-05-29 12:10:08", "1123097", "141.98.10.75:9931", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "2023-05-29 12:32:33", "75", "https://bazaar.abuse.ch/sample/f0148557c079a0f8fd9d779cd9ffc80998713b085ed08180ed184af31f68a044/", "Mirai", "0", "abuse_ch"
"2023-05-29 11:24:02", "1123096", "163.123.142.231:80", "ip:port", "botnet_cc", "elf.darknexus", "None", "Dark Nexus", "2023-05-29 21:12:02", "50", "https://tracker.viriback.com/index.php?q=163.123.142.231", "Nexus,ViriBack", "0", "abuse_ch"
"2023-05-29 09:24:47", "1123094", "121.40.51.138:1", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-391144938", "0", "drb_ra"
"2023-05-29 07:25:14", "1123070", "203.135.100.66:8712", "ip:port", "botnet_cc", "win.nworm", "nw0rm,NWorm", "N-W0rm", "", "100", "None", "N-W0rm", "0", "abuse_ch"
"2023-05-28 22:31:01", "1123065", "84.32.188.81:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-206546002,UAB Cherry Servers", "0", "drb_ra"
"2023-05-28 22:28:51", "1123061", "194.50.153.2:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-587247372,WAICORE TRANSIT", "0", "drb_ra"
"2023-05-28 22:15:17", "1123060", "195.201.253.174:40309", "ip:port", "botnet_cc", "win.redline_stealer", "None", "RedLine Stealer", "", "100", "None", "RedLineStealer", "0", "abuse_ch"
"2023-05-28 22:14:22", "1123059", "23.105.201.51:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,IT7NET", "0", "drb_ra"
"2023-05-28 20:47:30", "1123055", "114.132.216.158:2096", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000000,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2023-05-28 20:35:38", "1123051", "67.168.48.97:54103", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:38", "1123052", "81.171.1.52:28035", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:37", "1123048", "207.180.192.46:62183", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:37", "1123049", "162.157.94.49:20417", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:37", "1123050", "118.106.16.239:16828", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:36", "1123045", "93.94.223.42:20081", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:36", "1123046", "95.216.14.254:50000", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:36", "1123047", "46.232.211.96:18559", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:35", "1123042", "124.142.122.112:21199", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:35", "1123043", "82.76.88.103:15370", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:35", "1123044", "190.109.229.46:28955", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:34", "1123039", "61.3.96.169:47088", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:34", "1123040", "89.149.202.16:28025", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:34", "1123041", "24.4.56.145:41067", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:33", "1123036", "188.32.93.32:49810", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:33", "1123037", "109.184.57.214:56653", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:33", "1123038", "93.80.67.122:40422", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:32", "1123033", "115.36.215.150:51413", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:32", "1123034", "68.149.228.87:51413", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:32", "1123035", "195.154.220.30:51413", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:31", "1123030", "107.189.29.5:34633", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:31", "1123031", "5.135.191.94:51413", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:31", "1123032", "5.81.186.34:51413", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:30", "1123027", "59.94.205.38:28359", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:30", "1123028", "117.208.239.134:11211", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:30", "1123029", "91.219.188.40:2062", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:29", "1123024", "156.206.140.22:55943", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:29", "1123025", "197.203.142.119:49686", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:29", "1123026", "197.49.155.159:48098", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:28", "1123021", "117.253.109.162:35355", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:28", "1123022", "95.10.201.104:49017", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:28", "1123023", "186.29.32.140:45403", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:27", "1123018", "223.130.30.55:58434", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:27", "1123019", "117.208.207.28:10176", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:27", "1123020", "117.213.6.12:21478", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:26", "1123015", "117.245.92.40:47235", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:26", "1123016", "87.117.159.121:16261", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:26", "1123017", "178.141.211.58:35633", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:25", "1123012", "81.30.194.250:47251", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:25", "1123013", "71.233.41.235:51417", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:25", "1123014", "202.14.121.237:39688", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:24", "1123010", "2.61.141.54:49001", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:24", "1123011", "24.212.176.217:7741", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:23", "1123007", "178.72.81.217:36017", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:23", "1123008", "70.80.249.217:34418", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:23", "1123009", "94.1.208.8:49001", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:22", "1123005", "84.53.229.40:5379", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:22", "1123006", "62.69.239.30:27324", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:21", "1123003", "196.89.34.233:56029", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:21", "1123004", "117.217.234.106:13546", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:20", "1123001", "5.25.25.175:17437", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:20", "1123002", "149.255.222.9:50523", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:19", "1122998", "117.194.163.136:4000", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:19", "1122999", "117.213.41.252:4000", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:19", "1123000", "72.209.178.21:39104", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:18", "1122997", "219.110.67.181:13755", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:17", "1122994", "115.48.149.117:8083", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:17", "1122995", "223.130.30.104:37106", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:17", "1122996", "186.23.28.47:46278", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:16", "1122993", "117.196.59.65:8083", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:15", "1122991", "170.0.56.83:28521", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:15", "1122992", "223.130.30.98:19822", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:14", "1122989", "5.165.208.35:5919", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:14", "1122990", "178.78.41.94:9931", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:13", "1122987", "182.59.255.130:30301", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:13", "1122988", "106.211.151.133:1351", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:12", "1122985", "125.82.182.44:30301", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:12", "1122986", "120.211.137.179:30301", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:11", "1122984", "59.88.227.84:30301", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:10", "1122983", "117.248.62.158:30301", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:09", "1122981", "220.146.70.185:23914", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:09", "1122982", "187.148.28.150:50396", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:08", "1122980", "110.39.43.218:27017", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:07", "1122979", "61.221.29.19:6881", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:06", "1122978", "47.188.173.6:6881", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 20:35:05", "1122977", "37.113.105.166:6881", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "75", "https://bazaar.abuse.ch/sample/bbcc69a6b93928a3832ed2f9652cf67680a992a58ffaa3e04e87fd283126fed6/", "Mirai", "0", "abuse_ch"
"2023-05-28 19:39:06", "1122976", "154.80.229.76:1194", "ip:port", "botnet_cc", "win.pikabot", "None", "Pikabot", "2023-05-29 19:03:06", "100", "None", "Pikabot", "0", "0xw4ifu"
"2023-05-28 18:49:33", "1122975", "116.204.126.15:8443", "ip:port", "botnet_cc", "win.pupy", "Patpoopy", "pupy", "", "50", "https://search.censys.io/hosts/116.204.126.15", "HWCSNET Huawei Cloud Service data center,Pupy RAT", "0", "drb_ra"
"2023-05-28 18:49:01", "1122974", "78.47.126.26:445", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/78.47.126.26", "HETZNER-AS,Responder", "0", "drb_ra"
"2023-05-28 18:48:55", "1122973", "103.179.98.83:5985", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/103.179.98.83", "NDCTPL-IN NxtGen Datacenter & Cloud Technologies Pvt. Ltd.,Responder", "0", "drb_ra"
"2023-05-28 18:48:52", "1122972", "213.32.72.95:445", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/213.32.72.95", "OVH,Responder", "0", "drb_ra"
"2023-05-28 18:48:46", "1122971", "198.211.103.135:445", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/198.211.103.135", "DIGITALOCEAN-ASN,Responder", "0", "drb_ra"
"2023-05-28 18:48:45", "1122970", "198.211.103.135:5985", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/198.211.103.135", "DIGITALOCEAN-ASN,Responder", "0", "drb_ra"
"2023-05-28 18:48:44", "1122969", "198.211.103.135:80", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/198.211.103.135", "DIGITALOCEAN-ASN,Responder", "0", "drb_ra"
"2023-05-28 18:48:36", "1122967", "139.162.185.21:5985", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/139.162.185.21", "AKAMAI-LINODE-AP Akamai Connected Cloud,Responder", "0", "drb_ra"
"2023-05-28 18:48:36", "1122968", "139.162.185.21:445", "ip:port", "botnet_cc", "py.responder", "SpiderLabs Responder", "Responder", "", "50", "https://search.censys.io/hosts/139.162.185.21", "AKAMAI-LINODE-AP Akamai Connected Cloud,Responder", "0", "drb_ra"
"2023-05-28 18:48:25", "1122966", "157.254.195.51:443", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "", "50", "https://search.censys.io/hosts/157.254.195.51", "Havoc,HVC-AS", "0", "drb_ra"
"2023-05-28 18:48:22", "1122965", "146.190.120.225:443", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "", "50", "https://search.censys.io/hosts/146.190.120.225", "DIGITALOCEAN-ASN,Havoc", "0", "drb_ra"
"2023-05-28 18:48:18", "1122964", "149.28.207.18:443", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "", "50", "https://search.censys.io/hosts/149.28.207.18", "AS-CHOOPA,Havoc", "0", "drb_ra"
"2023-05-28 18:48:14", "1122963", "13.39.48.10:443", "ip:port", "botnet_cc", "win.havoc", "Havokiz", "Havoc", "", "50", "https://search.censys.io/hosts/13.39.48.10", "AMAZON-02,Havoc", "0", "drb_ra"
"2023-05-28 18:48:09", "1122962", "210.16.121.40:5000", "ip:port", "botnet_cc", "win.bianlian", "None", "BianLian", "", "50", "https://search.censys.io/search?resource=hosts&q=services.certificate%3A%22b15ef04543738a78c4da894fc64cd5cbca6973a2194550f9a9616d2004950c16%22", "Bianlian Go Trojan,HOSTUS-GLOBAL-AS HostUS", "0", "drb_ra"
"2023-05-28 18:48:04", "1122961", "192.71.227.236:80", "ip:port", "botnet_cc", "win.bianlian", "None", "BianLian", "", "50", "https://search.censys.io/search?resource=hosts&q=services.certificate%3A%22c3f38a0eef77de40a7ce3d677dd7dbf7e32464f76f86e2d327cd5b957da46899%22", "Bianlian Go Trojan,M247", "0", "drb_ra"
"2023-05-28 18:47:37", "1122960", "34.219.121.232:2705", "ip:port", "botnet_cc", "win.bianlian", "None", "BianLian", "", "50", "https://search.censys.io/search?resource=hosts&q=services.certificate%3A%227d7469b38f153bd6e2de657c513b8de092bf08cb1ff9636e3248b9c73dc862bd%22", "AMAZON-02,Bianlian Go Trojan", "0", "drb_ra"
"2023-05-28 18:46:48", "1122959", "88.99.17.6:9919", "ip:port", "botnet_cc", "win.deimos", "None", "Deimos", "", "50", "https://search.censys.io/hosts/88.99.17.6", "Deimos,HETZNER-AS", "0", "drb_ra"
"2023-05-28 18:46:38", "1122958", "3.145.1.242:80", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://search.censys.io/hosts/3.145.1.242", "AMAZON-02,Mythic", "0", "drb_ra"
"2023-05-28 18:46:18", "1122956", "108.61.190.25:80", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://search.censys.io/hosts/108.61.190.25", "AS-CHOOPA,Mythic", "0", "drb_ra"
"2023-05-28 18:46:18", "1122957", "108.61.190.25:7443", "ip:port", "botnet_cc", "unknown", "None", "Unknown malware", "", "50", "https://search.censys.io/hosts/108.61.190.25", "AS-CHOOPA,Mythic", "0", "drb_ra"
"2023-05-28 18:46:06", "1122955", "35.76.16.247:80", "ip:port", "botnet_cc", "win.brute_ratel_c4", "BruteRatel", "Brute Ratel C4", "", "50", "https://search.censys.io/hosts/35.76.16.247", "AMAZON-02,Brute Ratel C4", "0", "drb_ra"
"2023-05-28 18:45:33", "1122954", "198.211.109.235:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://search.censys.io/hosts/198.211.109.235", "DIGITALOCEAN-ASN,Sliver", "0", "drb_ra"
"2023-05-28 18:45:32", "1122953", "198.211.109.235:8888", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://search.censys.io/hosts/198.211.109.235", "DIGITALOCEAN-ASN,Sliver", "0", "drb_ra"
"2023-05-28 18:45:14", "1122952", "35.204.65.246:23", "ip:port", "botnet_cc", "elf.bashlite", "gayfgt,Gafgyt,qbot,torlus,lizkebab", "Bashlite", "", "100", "None", "Gafgyt", "0", "r3dbU7z"
"2023-05-28 18:45:10", "1122951", "194.26.135.89:8888", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://search.censys.io/hosts/194.26.135.89", "CHANGWAY-AS,Sliver", "0", "drb_ra"
"2023-05-28 18:45:08", "1122950", "194.26.135.89:31337", "ip:port", "botnet_cc", "win.sliver", "None", "Sliver", "", "50", "https://search.censys.io/hosts/194.26.135.89", "CHANGWAY-AS,Sliver", "0", "drb_ra"
"2023-05-28 18:32:37", "1122948", "172.104.44.216:23", "ip:port", "botnet_cc", "elf.bashlite", "gayfgt,Gafgyt,qbot,torlus,lizkebab", "Bashlite", "", "100", "None", "Gafgyt", "0", "r3dbU7z"
"2023-05-28 18:19:31", "1122947", "173.82.142.226:55655", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "r3dbU7z"
"2023-05-28 18:18:03", "1122946", "23.234.237.147:55655", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "r3dbU7z"
"2023-05-28 18:11:13", "1122945", "195.3.223.177:55655", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "r3dbU7z"
"2023-05-28 18:09:13", "1122944", "103.82.25.250:56999", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "r3dbU7z"
"2023-05-28 18:03:02", "1122943", "45.93.30.228:56999", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "r3dbU7z"
"2023-05-28 17:28:49", "1122942", "157.230.213.165:5555", "ip:port", "botnet_cc", "elf.mirai", "Katana", "Mirai", "", "100", "None", "Mirai", "0", "r3dbU7z"
"2023-05-28 17:11:36", "1122938", "31.44.184.88:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1580103824,PINDC-AS", "0", "drb_ra"
"2023-05-28 17:11:31", "1122936", "138.197.49.212:8188", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1580103824,DIGITALOCEAN-ASN", "0", "drb_ra"
"2023-05-28 17:11:25", "1122935", "180.97.221.253:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CHINANET-BACKBONE No.31Jin-rong Street,CobaltStrike,cs-watermark-666666", "0", "drb_ra"
"2023-05-28 17:11:11", "1122932", "107.161.50.178:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,SHOCK-1", "0", "drb_ra"
"2023-05-28 17:11:06", "1122931", "8.134.209.113:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.Ltd.,CobaltStrike,cs-watermark-1580103824", "0", "drb_ra"
"2023-05-28 17:10:57", "1122929", "107.161.50.181:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,SHOCK-1", "0", "drb_ra"
"2023-05-28 17:10:45", "1122927", "95.164.47.120:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-0,STARK-INDUSTRIES", "0", "drb_ra"
"2023-05-28 17:10:34", "1122924", "139.155.133.20:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2023-05-28 17:10:27", "1122922", "43.142.84.225:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-100000,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2023-05-28 17:10:13", "1122920", "107.161.50.180:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,SHOCK-1", "0", "drb_ra"
"2023-05-28 17:09:56", "1122917", "107.161.50.180:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,SHOCK-1", "0", "drb_ra"
"2023-05-28 17:09:40", "1122913", "114.116.30.97:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CHINA169-BJ China Unicom Beijing Province Network,CobaltStrike,cs-watermark-0", "0", "drb_ra"
"2023-05-28 17:09:32", "1122911", "175.178.62.143:8088", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-391144938,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2023-05-28 17:09:27", "1122908", "138.197.49.212:48888", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1580103824,DIGITALOCEAN-ASN", "0", "drb_ra"
"2023-05-28 17:05:21", "1122905", "3.126.37.18:18907", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch"
"2023-05-28 17:05:21", "1122906", "18.197.239.5:18907", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch"
"2023-05-28 17:05:20", "1122902", "18.192.93.86:18907", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch"
"2023-05-28 17:05:20", "1122903", "18.156.13.209:18907", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch"
"2023-05-28 17:05:20", "1122904", "213.171.212.254:9981", "ip:port", "botnet_cc", "elf.tsunami", "Muhstik,Radiation,Amnesia", "Tsunami", "", "100", "https://www.virustotal.com/gui/file/6c0dbbd757cac412e4f80a761d0084c4dcee7d0ec46d1a0bf769474f8ed153b3", "IRCBot,Kaiten,Tsunami", "0", "r3dbU7z"
"2023-05-28 17:05:19", "1122901", "18.157.68.73:18907", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch"
"2023-05-28 17:05:16", "1122900", "3.127.138.57:18907", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch"
"2023-05-28 17:00:04", "1122899", "45.142.107.167:6667", "ip:port", "botnet_cc", "elf.bashlite", "gayfgt,Gafgyt,qbot,torlus,lizkebab", "Bashlite", "", "75", "https://bazaar.abuse.ch/sample/5a88c770aef6ae42389637c81f10ab0c530195a247da3f4d50303d455040c0dc/", "Gafgyt", "0", "abuse_ch"
"2023-05-28 16:30:16", "1122856", "176.124.192.175:81", "ip:port", "botnet_cc", "win.redline_stealer", "None", "RedLine Stealer", "", "100", "None", "RedLineStealer", "0", "abuse_ch"
"2023-05-28 14:20:15", "1122855", "83.97.73.127:19045", "ip:port", "botnet_cc", "win.redline_stealer", "None", "RedLine Stealer", "2023-05-29 15:32:34", "100", "None", "RedLineStealer", "0", "abuse_ch"
"2023-05-28 14:14:21", "1122854", "186.64.67.30:443", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:19:53", "50", "None", "None", "0", "sithhunter1337"
"2023-05-28 12:50:14", "1122853", "85.31.54.183:18435", "ip:port", "botnet_cc", "win.redline_stealer", "None", "RedLine Stealer", "", "100", "None", "RedLineStealer", "0", "abuse_ch"
"2023-05-28 12:38:41", "1122852", "123.60.153.7:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1234567890,Huawei Cloud Service data center", "0", "drb_ra"
"2023-05-28 12:37:32", "1122848", "84.19.164.109:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Keyweb AG", "0", "drb_ra"
"2023-05-28 12:36:22", "1122843", "194.50.153.2:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-587247372,WAICORE TRANSIT", "0", "drb_ra"
"2023-05-28 12:35:58", "1122842", "213.232.114.22:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-587247372,xTom GmbH", "0", "drb_ra"
"2023-05-28 12:35:39", "1122840", "84.19.164.109:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,Keyweb AG", "0", "drb_ra"
"2023-05-28 12:35:03", "1122838", "213.232.114.22:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-587247372,xTom GmbH", "0", "drb_ra"
"2023-05-28 12:34:51", "1122835", "43.138.54.55:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-666666,Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2023-05-28 12:14:22", "1122833", "86.98.22.242:443", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:14:22", "50", "None", "None", "0", "sithhunter1337"
"2023-05-28 12:14:20", "1122832", "41.96.76.182:443", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:14:19", "50", "None", "None", "0", "sithhunter1337"
"2023-05-28 12:14:19", "1122831", "41.99.55.160:443", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:14:17", "50", "None", "None", "0", "sithhunter1337"
"2023-05-28 12:14:18", "1122830", "86.222.153.88:2222", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:14:07", "50", "None", "None", "0", "sithhunter1337"
"2023-05-28 12:14:10", "1122829", "190.199.152.233:2222", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:14:08", "50", "None", "None", "0", "sithhunter1337"
"2023-05-28 12:14:07", "1122827", "174.118.54.57:443", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:14:07", "50", "None", "None", "0", "sithhunter1337"
"2023-05-28 12:14:07", "1122828", "41.230.210.90:995", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:14:07", "50", "None", "None", "0", "sithhunter1337"
"2023-05-28 12:14:03", "1122826", "190.75.90.51:2222", "ip:port", "botnet_cc", "win.qakbot", "Oakboat,Pinkslipbot,Qbot,Quakbot", "QakBot", "2023-05-29 21:14:02", "50", "None", "None", "0", "sithhunter1337"
"2023-05-28 09:24:45", "1122810", "139.59.224.38:81", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1234567890,DIGITALOCEAN-ASN", "0", "drb_ra"
"2023-05-28 09:24:16", "1122808", "189.18.129.177:443", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,TELEFONICA BRASIL S.A", "0", "drb_ra"
"2023-05-28 09:23:57", "1122806", "139.59.224.38:2086", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1234567890,DIGITALOCEAN-ASN", "0", "drb_ra"
"2023-05-28 09:23:46", "1122803", "139.59.224.38:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-1234567890,DIGITALOCEAN-ASN", "0", "drb_ra"
"2023-05-28 08:11:56", "1122798", "165.22.108.237:81", "ip:port", "botnet_cc", "win.redline_stealer", "None", "RedLine Stealer", "", "100", "https://app.any.run/tasks/b59e54c2-9a6f-46a8-be6f-58f82655f12b", "REdline", "0", "g0njxa"
"2023-05-28 06:30:17", "1122791", "95.179.138.129:8129", "ip:port", "botnet_cc", "win.redline_stealer", "None", "RedLine Stealer", "", "100", "None", "RedLineStealer", "0", "abuse_ch"
"2023-05-28 02:27:44", "1122788", "1.14.70.97:4433", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-0,TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited", "0", "drb_ra"
"2023-05-27 23:00:49", "1122785", "3.67.62.142:10625", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch"
"2023-05-27 23:00:48", "1122784", "3.67.161.133:10625", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch"
"2023-05-27 23:00:47", "1122783", "3.64.4.198:10625", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch"
"2023-05-27 23:00:45", "1122782", "3.67.112.102:10625", "ip:port", "botnet_cc", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "100", "None", "NjRAT", "0", "abuse_ch"
"2023-05-27 22:10:31", "1122780", "179.60.150.148:80", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,LAYER7-FRA2", "0", "drb_ra"
"2023-05-27 22:10:05", "1122777", "197.36.176.82:4444", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-987654321,TE-AS TE-AS", "0", "drb_ra"
"2023-05-27 22:09:52", "1122774", "40.114.14.17:668", "ip:port", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,cs-watermark-946982952,MICROSOFT-CORP-MSN-AS-BLOCK", "0", "drb_ra"
# Number of entries: 224