{"Endpoints":{"http:8080":{"Firsttime":1781993105.2823324,"lasttime":1782050744.7752903,"paths":["/match","/fwlink"],"port":"8080","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"114.134.187.38","beacon_port":"8080","config_hash":"e5451c26df38d9df69ed964f5cdeff7fd8ccc30d16c0f4a89cdda5be64ea1b56","trial":false,"ts":1782050743.1519134,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"114.134.187.38","beacon_port":"8080","config_hash":"3ff2f3e77e538fddf517d9603866e90b9f8526b15d1bfbc347df3113ed7d1620","trial":false,"ts":1782050744.7752903,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://47.242.0.207:8080/match/submit.php","http://47.242.0.207:8080/submit.php","http://47.242.0.207:8080/fwlink/submit.php"]},"http:9999":{"Firsttime":1782252347.2583554,"lasttime":1782252350.0317209,"paths":["/j.ad","/ptj"],"port":"9999","protocol":"http","seen_in":[{"arch":"x86","beacon_ip":"114.134.187.38","beacon_port":"9999","config_hash":"30a52e2e086d4430671ecd601bf9fed336f017e60f5e39ca452f421026976e9f","trial":false,"ts":1782252347.2583554,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321},{"arch":"x64","beacon_ip":"114.134.187.38","beacon_port":"9999","config_hash":"33fbe9d454dac9ba8489c8b7c05ce8312204720ce6869298c9be1fc70b663c6c","trial":false,"ts":1782252350.0317209,"version":"Cobalt Strike 4.8 (Feb 28, 2023)","watermark":987654321}],"submituris":["/submit.php"],"urls":["http://47.242.0.207:9999/j.ad/submit.php","http://47.242.0.207:9999/submit.php","http://47.242.0.207:9999/ptj/submit.php"]}},"Firsttime":1781993105.2823324,"Host":"47.242.0.207","IP":"47.242.0.207","IPs":["47.242.0.207"],"Paths":["/match","/fwlink","/j.ad","/ptj"],"Ports":["8080","9999"],"Protocols":["http"],"SubmitURIs":["/submit.php"],"URLs":["http://47.242.0.207:8080/match/submit.php","http://47.242.0.207:8080/submit.php","http://47.242.0.207:8080/fwlink/submit.php","http://47.242.0.207:9999/j.ad/submit.php","http://47.242.0.207:9999/submit.php","http://47.242.0.207:9999/ptj/submit.php"],"ip_enrichment":{"47.242.0.207":{"ASN":{"number":45102,"org":"ALIBABA-CN-NET Alibaba US Technology Co., Ltd."},"GEO":{"country":"CN","country_name":"China","lat":35.0,"lon":105.0},"first":1781993105.2823324,"last":1781993113.7514036,"meta":{"build_db":"2025-10-14 12:06:54","db_source":"GeoOpen-Country-ASN"},"source":"ip.circl.lu","updated":1781993134.2899432}},"lasttime":1782252350.0317209}