ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://106.13.210.205:8000/cx.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:233587
IOC: http://106.13.210.205:8000/cx
IOC Type :url
Threat Type :botnet_cc
Malware: Cobalt Strike
Malware alias:Agentemis, BEACON, CobaltStrike, cobeacon
Confidence Level : Confidence level is high (100%)
ASN:AS38365 Baidu
Country:- CN
First seen:2021-10-13 19:50:40 UTC
Last seen:never
UUID:d84e0de5-2c5e-11ec-a35f-42010aa4000a
Reporter drb_ra
Reward 10 credits from anonymous
Tags:BAIDU Beijing Baidu Netcom Science and Technology Co. Ltd. CobaltStrike

Avatar
drb_ra
Cobalt Strike Server Found
C2: HTTP @ 106[.]13[.]210[.]205:8000
C2 Server: 106[.]13[.]210[.]205,/cx
POST URI: /submit[.]php
Country: China
ASN: BAIDU Beijing Baidu Netcom Science and Technology Co., Ltd.