{"Endpoints":{"http:2345":{"Firsttime":1771542320.7614648,"lasttime":1772304167.3104272,"paths":["/cx","/__utm.gif"],"port":"2345","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"38.55.99.173","beacon_port":"2345","config_hash":"3a1f747f340f211142700ba028b76563060299dc3ec0fe776700a99729c6cdb2","trial":false,"ts":1772304165.9921513,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"38.55.99.173","beacon_port":"2345","config_hash":"0fef6c01e78a93c9d1e16f03e37747e5baf830325f8606a3eda0bcbe4608950f","trial":false,"ts":1772304167.3104272,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://38.55.99.173:2345/cx/submit.php","http://38.55.99.173:2345/submit.php","http://38.55.99.173:2345/__utm.gif/submit.php"]},"http:4567":{"Firsttime":1774479919.8458595,"lasttime":1775225317.6715758,"paths":["/load","/__utm.gif"],"port":"4567","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"38.55.99.173","beacon_port":"4567","config_hash":"1c77412fa1436f306399da91fee4629c2d0759b258c6994ddb1bfa7545a2495a","trial":false,"ts":1775225316.3846636,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"38.55.99.173","beacon_port":"4567","config_hash":"eaf36e6619822450967cc2c58c090a7cf8237db99dcb07af536d61585f71fd4a","trial":false,"ts":1775225317.6715758,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://38.55.99.173:4567/load/submit.php","http://38.55.99.173:4567/submit.php","http://38.55.99.173:4567/__utm.gif/submit.php"]}},"Firsttime":1771542320.7614648,"Host":"38.55.99.173","IP":"38.55.99.173","IPs":["38.55.99.173"],"Paths":["/cx","/__utm.gif","/load"],"Ports":["2345","4567"],"Protocols":["http"],"SubmitURIs":["/submit.php"],"URLs":["http://38.55.99.173:2345/cx/submit.php","http://38.55.99.173:2345/submit.php","http://38.55.99.173:2345/__utm.gif/submit.php","http://38.55.99.173:4567/load/submit.php","http://38.55.99.173:4567/submit.php","http://38.55.99.173:4567/__utm.gif/submit.php"],"ip_enrichment":{"38.55.99.173":{"ASN":{"number":42960,"org":"VH-GLOBAL VH Global Limited"},"GEO":{"country":"HK","country_name":"Hong Kong","lat":22.25,"lon":114.1667},"first":1771542320.7614648,"last":1771542322.423717,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1771542371.5043757}},"lasttime":1775225317.6715758}