ThreatFox IOC Database

You are viewing the ThreatFox database entry for url https://qocmkassa.store/jquery-3.3.1.min.js.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1165819
IOC: https://qocmkassa.store/jquery-3.3.1.min.js
IOC Type :url
Threat Type :botnet_cc
Malware: Cobalt Strike
Malware alias:Agentemis, BEACON, CobaltStrike, cobeacon
Confidence Level : Confidence level is high (100%)
Is compromised? : False
First seen:2023-09-22 01:02:52 UTC
Last seen:never
UUID:c1c0bb0f-58e3-11ee-ab4a-42010aa4000a
Reporter drb_ra
Reward 5 credits from ThreatFox
Tags:CobaltStrike cs-watermark-100000 PLI-AS

Avatar
drb_ra
Cobalt Strike Server Found
C2: HTTPS @ 179[.]43[.]142[.]53:443
C2 Server: qocmkassa[.]store,/jquery-3[.]3[.]1[.]min[.]js
POST URI: /jquery-3[.]3[.]2[.]min[.]js
Country: Italy
ASN: PLI-AS
Host Header: qocmkassa[.]store