#domain,ioc,uri_path,ip
2458ccd60cc54149bb05537717d831f0--8000.ap-shanghai2.cloudstudio.club,Possible Cobalt Strike C2 Domain,/s/58462514417,27.124.30.18
accesserdsc.com,Possible Cobalt Strike C2 Domain,/en_US/all.js,154.201.74.112
api.cryptoprot.info,Possible Cobalt Strike C2 Fronting Domain,/dhl,138.124.15.54
api.shenzhenschool.fun,Possible Cobalt Strike C2 Domain,/dot.gif,115.190.233.79
asusupdateserver.asuscomm.com,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,38.54.112.234
auth.inmediavault.com,Possible Cobalt Strike C2 Domain,/assets/js/jquery-3.7.1.min.js,191.101.2.93
bgfi-groupe.com,Possible Cobalt Strike C2 Fronted Domain,/jquery-3.3.1.min.js,178.162.242.238
check.judicical.ml,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,67.219.102.244
check1.judicical.ml,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,67.219.102.244
cryptoprot.info,Possible Cobalt Strike C2 Fronted Domain,/dhl,138.124.15.54
d14hh3kwt0vf8s.cloudfront.net,Possible Cobalt Strike C2 Fronting Domain,/jquery-3.3.1.min.js,178.162.242.238
dakk5rnsax46s.cfc-execute.su.baidubce.com,Possible Cobalt Strike C2 Domain,/api/x,8.138.167.123
dianqi1.dianqi2.jiayongdianqi.xyz,Possible Cobalt Strike C2 Domain,/home/,45.135.118.251
dianqi1.jiayongdianqi.xyz,Possible Cobalt Strike C2 Domain,/home/,45.135.118.251
dianqi2.dianqi1.jiayongdianqi.xyz,Possible Cobalt Strike C2 Domain,/home/,45.135.118.251
dianqi2.jiayongdianqi.xyz,Possible Cobalt Strike C2 Domain,/home/,45.135.118.251
enter.xone.la,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,193.42.25.65
flyingbbird.abc,Possible Cobalt Strike C2 Domain,/updates,123.58.64.57
fx.doubao.com,Possible Cobalt Strike C2 Domain,/dot.gif,118.89.73.78
lab.google-analytcis.com,Possible Cobalt Strike C2 Domain,/assets/i18n/js/jquery-3.3.1.min.js,43.199.78.142
missmovie.lol,Possible Cobalt Strike C2 Domain,/api/3,8.159.146.72
n1.google-analytcis.com,Possible Cobalt Strike C2 Domain,/assets/i18n/js/jquery-3.3.1.min.js,43.199.78.142
n2.google-analytcis.com,Possible Cobalt Strike C2 Domain,/assets/i18n/js/jquery-3.3.1.min.js,43.199.78.142
n3.google-analytcis.com,Possible Cobalt Strike C2 Domain,/assets/i18n/js/jquery-3.3.1.min.js,43.199.78.142
new.sys-update.online,Possible Cobalt Strike C2 Domain,/g.pixel,51.79.251.70
ns.1.3.0o0.foo,Possible Cobalt Strike C2 Domain,/pixel.gif,47.129.171.26
ns.1.4.0o0.foo,Possible Cobalt Strike C2 Domain,/dot.gif,47.129.171.26
ns.jumpservers.net,Possible Cobalt Strike C2 Domain,/dot.gif,16.162.137.167
ns.yukklzwo.vip,Possible Cobalt Strike C2 Domain,/push,141.98.10.146
ns1.bbcbook.net,Possible Cobalt Strike C2 Domain,/api/v1/Updates,185.196.8.2
ns1.cmbchina.top,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,8.219.78.159
ns1.googleclouds.net,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,148.135.120.162
ns1.gygiuh.online,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,47.129.2.130
ns1.microoosoft.com,Possible Cobalt Strike C2 Domain,/Manag_backend/jquery-3.3.1.min.js,47.236.159.248
ns1.ns-apache.jo3.org,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,167.179.76.179
ns1.nsebseshop.cloud,Possible Cobalt Strike C2 Domain,/ms/625478102395,47.236.130.154
ns1.servicedata.services,Possible Cobalt Strike C2 Domain,/cx,169.239.129.45
ns1.translategoos.com,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,207.148.68.118
ns1.yukklzwo.vip,Possible Cobalt Strike C2 Domain,/load,141.98.10.146
ns2.bbcbook.net,Possible Cobalt Strike C2 Domain,/api/v1/Updates,185.196.8.2
ns2.cmbchina.top,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,8.219.78.159
ns2.googleclouds.net,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,148.135.120.162
ns2.microoosoft.com,Possible Cobalt Strike C2 Domain,/Manag_backend/jquery-3.3.1.min.js,47.236.159.248
ns2.nsebseshop.cloud,Possible Cobalt Strike C2 Domain,/ms/625478102395,47.236.130.154
ns2.translategoos.com,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,207.148.68.118
ns2.yukklzwo.vip,Possible Cobalt Strike C2 Domain,/__utm.gif,141.98.10.146
ns3.nsebseshop.cloud,Possible Cobalt Strike C2 Domain,/ms/625478102395,47.236.130.154
ns3.translategoos.com,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,207.148.68.118
update.mloadspring.com,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,70.34.196.238
upgrade.mloadspring.com,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,70.34.196.238
util.advertising-platform.top,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,139.196.223.82
vv4.qpalzmonline.uk,Possible Cobalt Strike C2 Domain,/push,117.72.79.68
www.dyshop.online,Possible Cobalt Strike C2 Domain,/login.js,111.229.4.108
www.koga.ar,Possible Cobalt Strike C2 Domain,/jquery-3.3.1.min.js,186.123.85.29
www.quick-shares.com,Possible Cobalt Strike C2 Domain,/api/v1/servlet/getuserinfo,101.132.173.62
xbjy123.com,Possible Cobalt Strike C2 Fronted Domain,/aaaaaaaaa,120.24.64.74