{"Endpoints":{"http:1433":{"Firsttime":1766732826.9700842,"lasttime":1773500846.300679,"paths":["/visit.js","/match"],"port":"1433","protocol":"http","seen_in":[{"arch":"x64","beacon_ip":"154.201.74.112","beacon_port":"1433","config_hash":"5429c53666022681991809b8289d6770e82add50179fc34ab8a8e2a02263593b","trial":false,"ts":1773500846.300679,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x86","beacon_ip":"154.201.74.112","beacon_port":"1433","config_hash":"57a1f89062a09f9b8cad6df7e44927589f1f600a1ec4d4062483aba83ace7500","trial":false,"ts":1773500844.9100509,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://154.201.74.112:1433/submit.php","http://154.201.74.112:1433/visit.js/submit.php","http://154.201.74.112:1433/match/submit.php"]},"http:8080":{"Firsttime":1766732833.3305829,"lasttime":1773500849.115042,"paths":["/dot.gif","/ptj"],"port":"8080","protocol":"http","seen_in":[{"arch":"x64","beacon_ip":"154.201.74.112","beacon_port":"8080","config_hash":"f09ba8aa22285aaea88b574e84ec054254a150dddd6cd51c6aa799beadb3dc45","trial":false,"ts":1773500849.115042,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x86","beacon_ip":"154.201.74.112","beacon_port":"8080","config_hash":"5425606e7d88d76c462e1b7769a2d1f3e61f612b0b1d494fa2e8048cace82009","trial":false,"ts":1773500847.7418623,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://154.201.74.112:8080/dot.gif/submit.php","http://154.201.74.112:8080/submit.php","http://154.201.74.112:8080/ptj/submit.php"]}},"Firsttime":1766732826.9700842,"Host":"154.201.74.112","IP":"154.201.74.112","IPs":["154.201.74.112"],"Paths":["/visit.js","/match","/dot.gif","/ptj"],"Ports":["1433","8080"],"Protocols":["http"],"SubmitURIs":["/submit.php"],"URLs":["http://154.201.74.112:1433/submit.php","http://154.201.74.112:1433/visit.js/submit.php","http://154.201.74.112:1433/match/submit.php","http://154.201.74.112:8080/dot.gif/submit.php","http://154.201.74.112:8080/submit.php","http://154.201.74.112:8080/ptj/submit.php"],"ip_enrichment":{"154.201.74.112":{"ASN":{"number":8796,"org":"FD-298-8796"},"GEO":{"country":"US","country_name":"United States","lat":38.0,"lon":-97.0},"first":1766732826.9700842,"last":1767453124.6093209,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1767456637.938887}},"lasttime":1773500849.115042}