{"Endpoints":{"http:80":{"Firsttime":1775253904.6977434,"lasttime":1775311514.0220098,"paths":["/cx","/ca"],"port":"80","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"141.98.11.205","beacon_port":"80","config_hash":"4d134bf732959e876aa6d0734275ebf98b25fe66e3c61e922f57e4ccdb2aefc6","trial":false,"ts":1775311513.6634316,"version":"Cobalt Strike 4.4 (Aug 04, 2021)","watermark":1234567890},{"arch":"x64","beacon_ip":"141.98.11.205","beacon_port":"80","config_hash":"e6a9da5611be46d11048eccf9d6490b634e6fcd58be7c2066a7824df5354e985","trial":false,"ts":1775311514.0220098,"version":"Unknown","watermark":1234567890}],"submituris":["/submit.php"],"urls":["http://www.yukklzwo.vip:80/cx/submit.php","http://www.yukklzwo.vip:80/submit.php","http://www.yukklzwo.vip:80/ca/submit.php"]},"https:443":{"Firsttime":1775225218.22575,"lasttime":1775311744.5708516,"paths":["/IE9CompatViewList.xml","/visit.js"],"port":"443","protocol":"https","seen_in":[{"arch":"x86","beacon_ip":"141.98.11.205","beacon_port":"443","config_hash":"953b20a3887c2b1035b8fa2b72631f032ec894780a1c710bb8706d65c7222980","trial":false,"ts":1775311744.154083,"version":"Cobalt Strike 4.4 (Aug 04, 2021)","watermark":1234567890},{"arch":"x64","beacon_ip":"141.98.11.205","beacon_port":"443","config_hash":"d86ae60027e8be42af23fd0380da8ec91a1edc964da3881805c4b8fed1d04148","trial":false,"ts":1775311744.5708516,"version":"Unknown","watermark":1234567890}],"submituris":["/submit.php"],"urls":["https://www.yukklzwo.vip:443/IE9CompatViewList.xml/submit.php","https://www.yukklzwo.vip:443/submit.php","https://www.yukklzwo.vip:443/visit.js/submit.php"]}},"Firsttime":1775225218.22575,"Host":"www.yukklzwo.vip","IP":"2606:4700:3035::6815:46df","IPs":["2606:4700:3035::6815:46df","2606:4700:3036::ac43:8c25","172.67.140.37","104.21.70.223"],"Paths":["/IE9CompatViewList.xml","/visit.js","/cx","/ca"],"Ports":["443","80"],"Protocols":["https","http"],"SubmitURIs":["/submit.php"],"URLs":["https://www.yukklzwo.vip:443/IE9CompatViewList.xml/submit.php","https://www.yukklzwo.vip:443/submit.php","https://www.yukklzwo.vip:443/visit.js/submit.php","http://www.yukklzwo.vip:80/cx/submit.php","http://www.yukklzwo.vip:80/submit.php","http://www.yukklzwo.vip:80/ca/submit.php"],"ip_enrichment":{"104.21.70.223":{"ASN":{"number":13335,"org":"CLOUDFLARENET"},"GEO":{"country":"US","country_name":"United States","lat":38.0,"lon":-97.0},"first":1775225218.22575,"last":1775225218.9258428,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1775225379.204113},"172.67.140.37":{"ASN":{"number":13335,"org":"CLOUDFLARENET"},"GEO":{"country":"US","country_name":"United States","lat":38.0,"lon":-97.0},"first":1775225218.22575,"last":1775225218.9258428,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1775225379.170519},"2606:4700:3035::6815:46df":{"ASN":{"number":13335,"org":"CLOUDFLARENET"},"GEO":{"country":"US","country_name":"United States","lat":38.0,"lon":-97.0},"first":1775225218.22575,"last":1775225218.9258428,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1775225379.1175883},"2606:4700:3036::ac43:8c25":{"ASN":{"number":13335,"org":"CLOUDFLARENET"},"GEO":{"country":"US","country_name":"United States","lat":38.0,"lon":-97.0},"first":1775225218.22575,"last":1775225218.9258428,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1775225379.1441479}},"lasttime":1775311744.5708516}