Cobalt Strike - 3.136.160.122

Cobalt Strike - 3.136.160.122

{"x86": {"md5": "14b8702f70942381f3bf001986e5c410", "sha1": "65722b1f7a74309fb56d0b2bbe9f447f2cc02bff", "time": 1620300626962.9, "config": {"Beacon Type": "8 (HTTPS)", "Spawn To x64": "%windir%\\sysnative\\spoolsv.exe", "Method 1": "GET", "HTTP Method Path 2": "\/jquery-3.3.2.min.js", "Header 1": "", "C2 Server": "telemetry.wessonlabpartners.com,\/jquery-3.3.1.min.js,admitting.healthfitconnection.com,\/jquery-3.3.1.min.js,skilled_nursing.healthmanagementtoday.com,\/jquery-3.3.1.min.js", "User Agent": "Mozilla\/5.0 (Windows NT 6.3; Trident\/7.0; rv:11.0) like Gecko", "Max DNS": 255, "Polling": 60000, "DNS Idle": "3.136.160.122", "Pipe Name": "", "Method 2": "POST", "DNS Sleep": 0, "Port": 443, "Jitter": 37, "Spawn To x86": "%windir%\\syswow64\\spoolsv.exe", "Header 2": ""}, "sha256": "2c345b24fe0c5c275ed85580b50565ee6b376a02f81356c723f15eabc0f2884a"}, "x64": {"md5": "12ebf918714aaeeec66272e690596a09", "sha1": "a13194e306cf2df2fb628ea236879d326ef190ed", "time": 1620300629257.4, "config": {"Beacon Type": "8 (HTTPS)", "Spawn To x64": "%windir%\\sysnative\\spoolsv.exe", "Method 1": "GET", "HTTP Method Path 2": "\/jquery-3.3.2.min.js", "Header 1": "", "C2 Server": "telemetry.wessonlabpartners.com,\/jquery-3.3.1.min.js,admitting.healthfitconnection.com,\/jquery-3.3.1.min.js,skilled_nursing.healthmanagementtoday.com,\/jquery-3.3.1.min.js", "User Agent": "Mozilla\/5.0 (Windows NT 6.3; Trident\/7.0; rv:11.0) like Gecko", "Max DNS": 255, "Polling": 60000, "DNS Idle": "3.136.160.122", "Pipe Name": "", "Method 2": "POST", "DNS Sleep": 0, "Port": 443, "Jitter": 37, "Spawn To x86": "%windir%\\syswow64\\spoolsv.exe", "Header 2": ""}, "sha256": "e7dcf447cd2f6fac7a22176cabbb8b4adc15437db4158a992b009af792f64122"}}