C2
Key: 68.64.178.246 · Resolved IP: 68.64.178.246
Protocols: http · Ports: 2021
First view: 2026-02-13 00:05:19 CET · Last view: 2026-02-28 20:18:50 CET
Endpoints
| ID |
Protocole |
Port |
First view |
Last view |
SubmitURIs |
Paths |
URLs |
Seen in |
| http:2021 |
http |
2021 |
2026-02-13 00:05:19 CET |
2026-02-28 20:18:50 CET |
/submit.php |
/match, /pixel, /pixel.gif, /activity |
5
Sample
- http://68.64.178.246:2021/match/submit.php
- http://68.64.178.246:2021/submit.php
- http://68.64.178.246:2021/pixel/submit.php
- http://68.64.178.246:2021/pixel.gif/submit.php
- http://68.64.178.246:2021/activity/submit.php
|
4
hashes
|
{
"Endpoints": {
"http:2021": {
"Firsttime": 1770937519.4977791,
"lasttime": 1772306330.6434808,
"paths": [
"/match",
"/pixel",
"/pixel.gif",
"/activity"
],
"port": "2021",
"protocol": "http",
"seen_in": [
{
"arch": "x86",
"beacon_ip": "68.64.178.246",
"beacon_port": "2021",
"config_hash": "9f55f7a3f2f035e92260d481a1aa2b37bd0de4c1d6c4fe4e470886abb7fb6b85",
"trial": false,
"ts": 1771639813.8203661,
"version": "Cobalt Strike 4.9 (Sep 19, 2023)",
"watermark": 666666666
},
{
"arch": "x64",
"beacon_ip": "68.64.178.246",
"beacon_port": "2021",
"config_hash": "21bd9a0d3f336beaea326740dea639ba5ee568fac5458d77ff20d1987acf74e2",
"trial": false,
"ts": 1771639815.9849343,
"version": "Cobalt Strike 4.9 (Sep 19, 2023)",
"watermark": 666666666
},
{
"arch": "x86",
"beacon_ip": "68.64.178.246",
"beacon_port": "2021",
"config_hash": "7d24ce551b7377e1ecd3a02b4af44b84330947ca1a508d89e5b38d583da13d3a",
"trial": false,
"ts": 1772306328.0164614,
"version": "Cobalt Strike 4.9 (Sep 19, 2023)",
"watermark": 666666666
},
{
"arch": "x64",
"beacon_ip": "68.64.178.246",
"beacon_port": "2021",
"config_hash": "5cdb371cbe845f710778362925be63c82791ce62ee62757336f1cb5296dc1815",
"trial": false,
"ts": 1772306330.6434808,
"version": "Cobalt Strike 4.9 (Sep 19, 2023)",
"watermark": 666666666
}
],
"submituris": [
"/submit.php"
],
"urls": [
"http://68.64.178.246:2021/match/submit.php",
"http://68.64.178.246:2021/submit.php",
"http://68.64.178.246:2021/pixel/submit.php",
"http://68.64.178.246:2021/pixel.gif/submit.php",
"http://68.64.178.246:2021/activity/submit.php"
]
}
},
"Firsttime": 1770937519.4977791,
"Host": "68.64.178.246",
"IP": "68.64.178.246",
"IPs": [
"68.64.178.246"
],
"Paths": [
"/match",
"/pixel",
"/pixel.gif",
"/activity"
],
"Ports": [
"2021"
],
"Protocols": [
"http"
],
"SubmitURIs": [
"/submit.php"
],
"URLs": [
"http://68.64.178.246:2021/match/submit.php",
"http://68.64.178.246:2021/submit.php",
"http://68.64.178.246:2021/pixel/submit.php",
"http://68.64.178.246:2021/pixel.gif/submit.php",
"http://68.64.178.246:2021/activity/submit.php"
],
"ip_enrichment": {
"68.64.178.246": {
"ASN": {
"number": 139659,
"org": "LUCID-AS-AP LUCIDACLOUD LIMITED"
},
"GEO": {
"country": "HK",
"country_name": "Hong Kong",
"lat": 22.25,
"lon": 114.1667
},
"first": 1770937519.4977791,
"last": 1770937527.99063,
"meta": {
"build_db": "2025-10-14 12:06:54",
"db_source": "GeoOpen-Country-ASN"
},
"source": "ip.circl.lu",
"updated": 1770937610.0151906
}
},
"lasttime": 1772306330.6434808
}