The Information provided at the time of posting was detected as “Cobalt Strike”. Depending on when you are viewing this article, it may no longer be the case and could be determined as being a false positive. Please do your own additional validation. – RedPacket Security
TimeStamp 2022-04-15T12:47:54.319774
Cobalt Strike
General Information
Cloud Provider
Cloud Region
Service
Domains
hwclouds-dns[.]com
Hostnames
ecs-124-70-200-2[.]compute[.]hwclouds-dns[.]com
HTTP Host
124[.]70[.]200[.]2
ISP
Huawei Cloud Service data center
ORG
Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)