{"Endpoints":{"http:80":{"Firsttime":1770476730.36239,"lasttime":1770622251.356517,"paths":["/IE9CompatViewList.xml","/g.pixel"],"port":"80","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"39.105.200.188","beacon_port":"80","config_hash":"1a6e006cc3606a84dba067e4d85f85078fa5b8958fefc5791c045366f4955bfe","trial":false,"ts":1770622249.9432275,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"39.105.200.188","beacon_port":"80","config_hash":"b89e4d34ff1be2d9f0b08940c0658cd41e0c5b8f54475e7929ec01307fbf438f","trial":false,"ts":1770622251.356517,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://39.105.200.188:80/IE9CompatViewList.xml/submit.php","http://39.105.200.188:80/submit.php","http://39.105.200.188:80/g.pixel/submit.php"]},"https:443":{"Firsttime":1766733124.4448087,"lasttime":1767625621.0145483,"paths":["/__utm.gif","/push"],"port":"443","protocol":"https","seen_in":[{"arch":"x64","beacon_ip":"39.105.200.188","beacon_port":"443","config_hash":"fcc7f8879c744e71df4bb382937541bbb7fabeb65359160d5ec71245d4aa3832","trial":false,"ts":1767625621.0145483,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x86","beacon_ip":"39.105.200.188","beacon_port":"443","config_hash":"b8649f0c12e5f9e63bfac1954980c90069e48c8ac3fed66bfb6b6dd4109bc59a","trial":false,"ts":1767625618.520615,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["https://39.105.200.188:443/__utm.gif/submit.php","https://39.105.200.188:443/submit.php","https://39.105.200.188:443/push/submit.php"]}},"Firsttime":1766733124.4448087,"Host":"39.105.200.188","IP":"39.105.200.188","IPs":["39.105.200.188"],"Paths":["/__utm.gif","/push","/IE9CompatViewList.xml","/g.pixel"],"Ports":["443","80"],"Protocols":["https","http"],"SubmitURIs":["/submit.php"],"URLs":["https://39.105.200.188:443/__utm.gif/submit.php","https://39.105.200.188:443/submit.php","https://39.105.200.188:443/push/submit.php","http://39.105.200.188:80/IE9CompatViewList.xml/submit.php","http://39.105.200.188:80/submit.php","http://39.105.200.188:80/g.pixel/submit.php"],"ip_enrichment":{"39.105.200.188":{"ASN":{"number":37963,"org":"ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.,Ltd."},"GEO":{"country":"CN","country_name":"China","lat":35.0,"lon":105.0},"first":1766733124.4448087,"last":1767395162.5481248,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1767456638.6597722}},"lasttime":1770622251.356517}