{"Endpoints":{"http:80":{"Firsttime":1778162824.7274814,"lasttime":1778537600.5734057,"paths":["/g.pixel","/j.ad"],"port":"80","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"106.75.31.247","beacon_port":"80","config_hash":"b5a66a75fc46935ecd56b295b5b5a432f2a1c22d9a4e6fe2afd04f4e2963d294","trial":false,"ts":1778537599.2948947,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"106.75.31.247","beacon_port":"80","config_hash":"cae502d1735b536fbe764737ff3b1df4d37a3080975b8f13dce750fa170e90ce","trial":false,"ts":1778537600.5734057,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://106.75.31.247:80/g.pixel/submit.php","http://106.75.31.247:80/submit.php","http://106.75.31.247:80/j.ad/submit.php"]},"http:8848":{"Firsttime":1777932320.2181525,"lasttime":1778076428.5792408,"paths":["/__utm.gif","/ptj"],"port":"8848","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"106.75.31.247","beacon_port":"8848","config_hash":"779de08a397d521ac2b4d1e9797b79aa1680cd988bd1eee12671cf789174d97c","trial":false,"ts":1778076424.2114305,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"106.75.31.247","beacon_port":"8848","config_hash":"b4c8d8d17b8acc29ad678b1fbe0fb9b52e408b5e103afa581ffd0c70b2baa72c","trial":false,"ts":1778076428.5792408,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://106.75.31.247:8848/__utm.gif/submit.php","http://106.75.31.247:8848/submit.php","http://106.75.31.247:8848/ptj/submit.php"]}},"Firsttime":1777932320.2181525,"Host":"106.75.31.247","IP":"106.75.31.247","IPs":["106.75.31.247"],"Paths":["/__utm.gif","/ptj","/g.pixel","/j.ad"],"Ports":["8848","80"],"Protocols":["http"],"SubmitURIs":["/submit.php"],"URLs":["http://106.75.31.247:8848/__utm.gif/submit.php","http://106.75.31.247:8848/submit.php","http://106.75.31.247:8848/ptj/submit.php","http://106.75.31.247:80/g.pixel/submit.php","http://106.75.31.247:80/submit.php","http://106.75.31.247:80/j.ad/submit.php"],"ip_enrichment":{"106.75.31.247":{"ASN":{"number":4808,"org":"CHINA169-BJ China Unicom Beijing Province Network"},"GEO":{"country":"CN","country_name":"China","lat":35.0,"lon":105.0},"first":1777932320.2181525,"last":1777932321.7743728,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1777932371.849629}},"lasttime":1778537600.5734057}