ThreatFox IOC Database

You are viewing the ThreatFox database entry for url https://1.116.14.99/dot.gif.

Database Entry


IOC ID:850636
IOC: https://1.116.14.99/dot.gif
IOC Type :url
Threat Type :botnet_cc
Malware: Cobalt Strike
Malware alias:Agentemis, BEACON, CobaltStrike, cobeacon
Confidence Level : Confidence level is high (100%)
First seen:2022-09-20 13:17:53 UTC
Last seen:never
UUID:a232a4f1-38e6-11ed-ae73-42010aa4000a
Reporter @drb_ra
Reward 5 credits from ThreatFox
Tags:CobaltStrike

Twitter
@drb_ra
Cobalt Strike Server Found
C2: HTTPS @ 1[.]116[.]14[.]99:443
C2 Server: 1[.]116[.]14[.]99,/dot[.]gif
POST URI: /submit[.]php
Country: China
ASN: TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited