ThreatFox IOC Database

You are viewing the ThreatFox database entry for url https://51ape.cc/api/getit.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1295157
IOC: https://51ape.cc/api/getit
IOC Type :url
Threat Type :botnet_cc
Malware: Cobalt Strike
Malware alias:Agentemis, BEACON, CobaltStrike, cobeacon
Confidence Level : Confidence level is high (100%)
First seen:2024-07-06 10:38:38 UTC
Last seen:never
UUID:e797a555-3b83-11ef-8261-42010aa4000a
Reporter drb_ra
Reward 10 credits from Jerome
Tags:CobaltStrike cs-watermark-987654321 HWCSNET Huawei Cloud Service data center

Avatar
drb_ra
Cobalt Strike Server Found
C2: HTTPS @ 124[.]70[.]196[.]94:443
C2 Server: 51ape[.]cc,/api/getit
POST URI: /api/postit
Country: China
ASN: HWCSNET Huawei Cloud Service data center
Host Header: dd[.]lledz[.]cn