ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://202.56.160.190:80/HRQr.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1780104
IOC: http://202.56.160.190:80/HRQr
IOC Type :url
Threat Type :botnet_cc
Malware: Cobalt Strike
Malware alias:Agentemis, BEACON, CobaltStrike, cobeacon
Confidence Level : Confidence level is elevated (75%)
Is compromised? : False
ASN:AS45287 VARNION-AS-ID
Country:- ID
First seen:2026-04-01 12:10:44 UTC
Last seen:never
UUID:cf50ca81-2dc3-11f1-9af6-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:CobaltStrike
Reference: https://bazaar.abuse.ch/sample/482d134402fb33d4ded42657dd3473240fccdedb25cee3c3af5de8e4783886e3/

Avatar
abuse_ch
cobaltstrike (aka Agentemis,BEACON,CobaltStrike,cobeacon) botnet C2