ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://45.148.120.161/js/jquery-3.3.1.min.js.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1292463
IOC: http://45.148.120.161/js/jquery-3.3.1.min.js
IOC Type :url
Threat Type :botnet_cc
Malware: Cobalt Strike
Malware alias:Agentemis, BEACON, CobaltStrike, cobeacon
Confidence Level : Confidence level is high (100%)
Is compromised? : False
ASN:AS49042 UNKNOWN
Country:- NL
First seen:2024-07-02 09:02:28 UTC
Last seen:never
UUID:ced764e6-3851-11ef-8261-42010aa4000a
Reporter drb_ra
Reward 10 credits from Jerome
Tags:CobaltStrike cs-watermark-391144938 Phanes Networks B.V.

Avatar
drb_ra
Cobalt Strike Server Found
C2: HTTP @ 45[.]148[.]120[.]161:80
C2 Server: 45[.]148[.]120[.]161,/js/jquery-3[.]3[.]1[.]min[.]js
POST URI: /js/jquery-3[.]3[.]1[.]slim[.]min[.]js
Country: Netherlands
ASN: Phanes Networks B.V.