IOC pivotioc · ipv4
162[.]244[.]80[.]235
RU · RussiaConticonfidence · high
Cobalt Strike C2 server IP identified in artifacts leaked with the Conti 'playbook' and republished in the March 9, 2022 update to joint CISA/FBI/NSA/USSS advisory AA21-265A as previously used by Conti affiliates.
- family
- Conti
- first seen
- Sep 21, 2021
- publisher
- CISA