{"Endpoints":{"https:34567":{"Firsttime":1775154640.101391,"lasttime":1780149978.6764874,"paths":["/updates","/socialapiVersion=1.1"],"port":"34567","protocol":"https","seen_in":[{"arch":"x86","beacon_ip":"123.58.64.57","beacon_port":"34567","config_hash":"824813f1615201d8fbbadbb29fabc391104ca2ecb21ac311cfb43ed6dfbbe1ee","trial":false,"ts":1775570754.7994437,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"123.58.64.57","beacon_port":"34567","config_hash":"927ca4ccb7a1ca23277ba7e44f628d0dec11a615c468b192008284aa053ffdd6","trial":false,"ts":1775570759.6115985,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321},{"arch":"x86","beacon_ip":"123.58.64.57","beacon_port":"34567","config_hash":"e5989cbd55b57ffb25d6c545658ad69a117ff7619bc4f40e7d65bfde4aaa6f6e","trial":false,"ts":1777903563.4425323,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"123.58.64.57","beacon_port":"34567","config_hash":"e7d37a920f07889159e33c4cd0b10f3f65639cf8d9766c2d415360f5949129e9","trial":false,"ts":1777903566.565446,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321},{"arch":"x86","beacon_ip":"123.58.64.57","beacon_port":"34567","config_hash":"3d561789a5dd72954ef8383a3c7382275b805f13ecf04099564e655b311947e7","trial":false,"ts":1780149974.3600326,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"123.58.64.57","beacon_port":"34567","config_hash":"a273b489863b7abe68357334d90628c7b548defec1a35d81d6729ecc702112b3","trial":false,"ts":1780149978.6764874,"version":"Cobalt Strike 4.9 (Sep 19, 2023)","watermark":987654321}],"submituris":["/windebug/updcheck.php","/hello/flash.php","/aircanada/dark.php","/socialapiVersion=2.0&include_base=true"],"urls":["https://flyingbbird.cc:34567/updates/windebug/updcheck.php","https://flyingbbird.cc:34567/windebug/updcheck.php","https://flyingbbird.cc:34567/hello/flash.php","https://flyingbbird.cc:34567/updates/hello/flash.php","https://flyingbbird.cc:34567/aircanada/dark.php","https://flyingbbird.cc:34567/updates/aircanada/dark.php","https://flyingbbird.cc:34567/socialapiVersion=1.1/socialapiVersion=2.0&include_base=true","https://flyingbbird.cc:34567/socialapiVersion=2.0&include_base=true"]}},"Firsttime":1775154640.101391,"Host":"flyingbbird.cc","IP":"2600:1900:4001:96e:8000:1:e2bc:1317","IPs":["2600:1900:4001:96e:8000:1:e2bc:1317","34.41.139.193"],"Paths":["/updates","/socialapiVersion=1.1"],"Ports":["34567"],"Protocols":["https"],"SubmitURIs":["/windebug/updcheck.php","/hello/flash.php","/aircanada/dark.php","/socialapiVersion=2.0&include_base=true"],"URLs":["https://flyingbbird.cc:34567/updates/windebug/updcheck.php","https://flyingbbird.cc:34567/windebug/updcheck.php","https://flyingbbird.cc:34567/hello/flash.php","https://flyingbbird.cc:34567/updates/hello/flash.php","https://flyingbbird.cc:34567/aircanada/dark.php","https://flyingbbird.cc:34567/updates/aircanada/dark.php","https://flyingbbird.cc:34567/socialapiVersion=1.1/socialapiVersion=2.0&include_base=true","https://flyingbbird.cc:34567/socialapiVersion=2.0&include_base=true"],"ip_enrichment":{"2600:1900:4001:96e:8000:1:e2bc:1317":{"ASN":{"number":396982,"org":"GOOGLE-CLOUD-PLATFORM"},"GEO":{"country":"US","country_name":"United States","lat":38.0,"lon":-97.0},"first":1775154640.101391,"last":1778508788.9240165,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1778508924.2016006},"34.41.139.193":{"ASN":{"number":396982,"org":"GOOGLE-CLOUD-PLATFORM"},"GEO":{"country":"US","country_name":"United States","lat":38.0,"lon":-97.0},"first":1775154640.101391,"last":1778508788.9240165,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1778508924.2269075}},"lasttime":1780149978.6764874}