{"Endpoints":{"http:88":{"Firsttime":1778508375.1002355,"lasttime":1780754806.3731487,"paths":["/dot.gif","/updates.rss"],"port":"88","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"8.134.70.73","beacon_port":"88","config_hash":"e1d69f26bad59471c1301df17c9b22725d664413bc6e2c34c29039a20b1cbfb6","trial":false,"ts":1780754801.6146154,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"8.134.70.73","beacon_port":"88","config_hash":"d5eadec2007b7706e98b464a9dd02e932daecb0964fd8c3638d96f115f5517b0","trial":false,"ts":1780754806.3731487,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://8.134.70.73:88/dot.gif/submit.php","http://8.134.70.73:88/submit.php","http://8.134.70.73:88/updates.rss/submit.php"]},"http:9999":{"Firsttime":1778796344.892718,"lasttime":1780927557.8460708,"paths":["/j.ad","/en_US/all.js"],"port":"9999","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"8.134.70.73","beacon_port":"7777","config_hash":"1f91a0ba745a7ba3bc150e39163997b717f16d1246db5be5b8fee64865b66af5","trial":false,"ts":1780927556.0933657,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"8.134.70.73","beacon_port":"7777","config_hash":"70454177e685a7c3656e312a87ef75b3d07857cce2b0f005ce8d1cec1f2b09de","trial":false,"ts":1780927557.8460708,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://8.134.70.73:9999/j.ad/submit.php","http://8.134.70.73:9999/submit.php","http://8.134.70.73:9999/en_US/all.js/submit.php"]}},"Firsttime":1778508375.1002355,"Host":"8.134.70.73","IP":"8.134.70.73","IPs":["8.134.70.73"],"Paths":["/dot.gif","/updates.rss","/j.ad","/en_US/all.js"],"Ports":["88","9999"],"Protocols":["http"],"SubmitURIs":["/submit.php"],"URLs":["http://8.134.70.73:88/dot.gif/submit.php","http://8.134.70.73:88/submit.php","http://8.134.70.73:88/updates.rss/submit.php","http://8.134.70.73:9999/j.ad/submit.php","http://8.134.70.73:9999/submit.php","http://8.134.70.73:9999/en_US/all.js/submit.php"],"ip_enrichment":{"8.134.70.73":{"ASN":{"number":37963,"org":"ALIBABA-CN-NET Hangzhou Alibaba Advertising Co.,Ltd."},"GEO":{"country":"CN","country_name":"China","lat":35.0,"lon":105.0},"first":1778508375.1002355,"last":1778508379.1336048,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1778508924.3066306}},"lasttime":1780927557.8460708}