{"Endpoints":{"https:8080":{"Firsttime":1766739992.1103404,"lasttime":1767827475.136242,"paths":["/visit.js","/IE9CompatViewList.xml"],"port":"8080","protocol":"https","seen_in":[{"arch":"x86","beacon_ip":"20.74.209.192","beacon_port":"8080","config_hash":"86108925f47a911aad639b9ab7bc3f668dbf314ffe0217fcf5de3050157a9bcc","trial":false,"ts":1767827474.184904,"version":"Cobalt Strike 4.10.1 (Dec 10, 2024)","watermark":318104477},{"arch":"x64","beacon_ip":"20.74.209.192","beacon_port":"8080","config_hash":"f8dde94b9b9daca7673c7995ad483ed379892c807ce7f01f0dd38126e02618d4","trial":false,"ts":1767827475.136242,"version":"Unknown","watermark":318104477}],"submituris":["/submit.php"],"urls":["https://20.74.209.192:8080/submit.php","https://20.74.209.192:8080/visit.js/submit.php","https://20.74.209.192:8080/IE9CompatViewList.xml/submit.php"]},"https:8081":{"Firsttime":1766732706.1297195,"lasttime":1767827477.0434115,"paths":["/activity","/cx"],"port":"8081","protocol":"https","seen_in":[{"arch":"x64","beacon_ip":"20.74.209.192","beacon_port":"8081","config_hash":"eee2e8303a67c43466316d6919f13d57e1f432ca0f19284a83ddaeff4e68701e","trial":false,"ts":1767827477.0434115,"version":"Unknown","watermark":318104477},{"arch":"x86","beacon_ip":"20.74.209.192","beacon_port":"8081","config_hash":"d711ee46700b243dea649a2158d87dd2c7a4239400e548ebd5eb8a80ea1c4096","trial":false,"ts":1767827476.110233,"version":"Cobalt Strike 4.10.1 (Dec 10, 2024)","watermark":318104477}],"submituris":["/submit.php"],"urls":["https://20.74.209.192:8081/activity/submit.php","https://20.74.209.192:8081/submit.php","https://20.74.209.192:8081/cx/submit.php"]}},"Firsttime":1766732706.1297195,"Host":"20.74.209.192","IP":"20.74.209.192","IPs":["20.74.209.192"],"Paths":["/visit.js","/IE9CompatViewList.xml","/activity","/cx"],"Ports":["8080","8081"],"Protocols":["https"],"SubmitURIs":["/submit.php"],"URLs":["https://20.74.209.192:8080/submit.php","https://20.74.209.192:8080/visit.js/submit.php","https://20.74.209.192:8080/IE9CompatViewList.xml/submit.php","https://20.74.209.192:8081/activity/submit.php","https://20.74.209.192:8081/submit.php","https://20.74.209.192:8081/cx/submit.php"],"ip_enrichment":{"20.74.209.192":{"ASN":{"number":8075,"org":"MICROSOFT-CORP-MSN-AS-BLOCK"},"GEO":{"country":"US","country_name":"United States","lat":38.0,"lon":-97.0},"first":1766732706.1297195,"last":1767453076.034788,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1767456639.0011976}},"lasttime":1767827477.0434115}