{"Endpoints":{"http:5566":{"Firsttime":1766732830.119196,"lasttime":1768115213.212641,"paths":["/image/"],"port":"5566","protocol":"http","seen_in":[{"arch":"x64","beacon_ip":"68.64.176.42","beacon_port":"5566","config_hash":"bc37f9658afba6d8633945c9e88c0667fe931ed3e518f741796526afcad67a1b","trial":false,"ts":1768115213.212641,"version":"Cobalt Strike 4.7 (Aug 17, 2022)","watermark":391144938},{"arch":"x86","beacon_ip":"68.64.176.42","beacon_port":"5566","config_hash":"3bcef198f9d5973047536627847a7a83117599529cb418719e8e7c426d5bf9ac","trial":false,"ts":1768115211.4286027,"version":"Cobalt Strike 4.7 (Aug 17, 2022)","watermark":391144938}],"submituris":["/email/"],"urls":["http://68.64.176.42:5566/email/","http://68.64.176.42:5566/image/email/"]},"https:443":{"Firsttime":1766732838.9377983,"lasttime":1768115132.691968,"paths":["/image/"],"port":"443","protocol":"https","seen_in":[{"arch":"x64","beacon_ip":"68.64.176.42","beacon_port":"443","config_hash":"0e3d908075233b2a2db632296289a294d7ab0cc97c1f77558ded84d02fcbe0b3","trial":false,"ts":1768115132.691968,"version":"Cobalt Strike 4.7 (Aug 17, 2022)","watermark":391144938},{"arch":"x86","beacon_ip":"68.64.176.42","beacon_port":"443","config_hash":"10fec4625fd41a9df2a0b83d43755dd66d48032bad9c33d16c73df806ccce2b1","trial":false,"ts":1768115131.1842287,"version":"Cobalt Strike 4.7 (Aug 17, 2022)","watermark":391144938}],"submituris":["/email/"],"urls":["https://68.64.176.42:443/email/","https://68.64.176.42:443/image/email/"]}},"Firsttime":1766732830.119196,"Host":"68.64.176.42","IP":"68.64.176.42","IPs":["68.64.176.42"],"Paths":["/image/"],"Ports":["443","5566"],"Protocols":["https","http"],"SubmitURIs":["/email/"],"URLs":["https://68.64.176.42:443/email/","https://68.64.176.42:443/image/email/","http://68.64.176.42:5566/email/","http://68.64.176.42:5566/image/email/"],"ip_enrichment":{"68.64.176.42":{"ASN":{"number":139659,"org":"LUCID-AS-AP LUCIDACLOUD LIMITED"},"GEO":{"country":"HK","country_name":"Hong Kong","lat":22.25,"lon":114.1667},"first":1766732830.119196,"last":1767452765.112579,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1767456638.6902995}},"lasttime":1768115213.212641}