ThreatFox IOC Database
You are viewing the ThreatFox database entry for url https://122.51.216.157/lib/v2/wcp-consent.js.
Database Entry
IOC ID: | 1289970 |
---|---|
IOC: | https://122.51.216.157/lib/v2/wcp-consent.js |
IOC Type : | url |
Threat Type : | botnet_cc |
Malware: | Cobalt Strike |
Malware alias: | Agentemis, BEACON, CobaltStrike, cobeacon |
Confidence Level : | Confidence level is high (100%) |
ASN: | AS701 UUNET |
Country: | ![]() |
First seen: | 2024-06-28 08:52:52 UTC |
Last seen: | never |
UUID: | cdb67fea-352b-11ef-8261-42010aa4000a |
Reporter | ![]() |
Reward |
10 credits from Jerome |
Tags: | CobaltStrike cs-watermark-666666666 Hangzhou Alibaba Advertising Co.Ltd. |
![Avatar](/images/avatar/2615bdce-28bf-4de8-8915-5874f37335f2.png)
drb_ra
Cobalt Strike Server FoundC2: HTTPS @ 39[.]99[.]34[.]125:443
C2 Server: 122[.]51[.]216[.]157,/lib/v2/wcp-consent[.]js
POST URI: /lib/v2/recaptcha__en[.]js
Country: China
ASN: Hangzhou Alibaba Advertising Co.,Ltd.
Host Header: static[.]microsoft[.]com