ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://mail.revitpourtous.com:53/filestreamingservice/files/6ea77424-b4f6-4a77.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1678660
IOC: http://mail.revitpourtous.com:53/filestreamingservice/files/6ea77424-b4f6-4a77
IOC Type :url
Threat Type :botnet_cc
Malware: Cobalt Strike
Malware alias:Agentemis, BEACON, CobaltStrike, cobeacon
Confidence Level : Confidence level is elevated (75%)
ASN:AS54113 FASTLY
Country:- DE
First seen:2025-12-14 12:00:33 UTC
Last seen:never
UUID:7ea4e84a-d8e4-11f0-9957-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:CobaltStrike
Reference: https://bazaar.abuse.ch/sample/05c944314d0c39b3f389a6ed36b5adc5f2d8521b5a1d9a82d2f36ab1acbbce87/

Avatar
abuse_ch
cobaltstrike (aka Agentemis,BEACON,CobaltStrike,cobeacon) botnet C2