{"Endpoints":{"http:80":{"Firsttime":1776866735.6886346,"lasttime":1776866736.3943555,"paths":["/mail/u/0/view-tl"],"port":"80","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"135.136.178.226","beacon_port":"80","config_hash":"3aceaf3b294cda60287947dcdba9d8d8b3b5ca28bbecd69560849c599ff3bf8a","trial":false,"ts":1776866735.6886346,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"135.136.178.226","beacon_port":"80","config_hash":"b37564785e3f458694e16e6aa5d05bb075376940c451d815a3b7a4427bbd4aab","trial":false,"ts":1776866736.3943555,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321}],"submituris":["/mail/u/0/upload"],"urls":["http://135.136.178.226:80/mail/u/0/upload","http://135.136.178.226:80/mail/u/0/view-tl/mail/u/0/upload"]},"https:443":{"Firsttime":1776866808.8824923,"lasttime":1776866809.6710186,"paths":["/mail/u/0/view-tl"],"port":"443","protocol":"https","seen_in":[{"arch":"x86","beacon_ip":"135.136.178.226","beacon_port":"443","config_hash":"6ae4d94ce860db6acc56f468ed527e3125a62d052891478af9eaa85bc8ca775f","trial":false,"ts":1776866808.8824923,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"135.136.178.226","beacon_port":"443","config_hash":"f14a6781d621a64eb4de9c2d5d1de57b3f419de8d3ecde36627bf6db7266cd15","trial":false,"ts":1776866809.6710186,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321}],"submituris":["/mail/u/0/upload"],"urls":["https://135.136.178.226:443/mail/u/0/upload","https://135.136.178.226:443/mail/u/0/view-tl/mail/u/0/upload"]}},"Firsttime":1776866735.6886346,"Host":"135.136.178.226","IP":"135.136.178.226","IPs":["135.136.178.226"],"Paths":["/mail/u/0/view-tl"],"Ports":["80","443"],"Protocols":["http","https"],"SubmitURIs":["/mail/u/0/upload"],"URLs":["http://135.136.178.226:80/mail/u/0/upload","http://135.136.178.226:80/mail/u/0/view-tl/mail/u/0/upload","https://135.136.178.226:443/mail/u/0/upload","https://135.136.178.226:443/mail/u/0/view-tl/mail/u/0/upload"],"ip_enrichment":{"135.136.178.226":{"ASN":{"number":0,"org":"Not routed"},"GEO":{"country":"None","country_name":null,"lat":null,"lon":null},"first":1776866735.6886346,"last":1776866809.6710186,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1776866925.592632}},"lasttime":1776866809.6710186}