misp-circl-feed/feeds/circl/misp/4b475a5f-ea47-4f2f-aea3-d8ba9bd1b6b6.json

6428 lines
610 KiB
JSON
Raw Permalink Normal View History

2023-04-21 13:25:09 +00:00
{
2023-12-14 14:30:15 +00:00
"Event": {
"analysis": "2",
"date": "2022-01-30",
"extends_uuid": "",
"info": "OSINT - Cytrox Spyware Indicators of Compromise",
"publish_timestamp": "1643539217",
"published": true,
"threat_level_id": "3",
"timestamp": "1643539206",
"uuid": "4b475a5f-ea47-4f2f-aea3-d8ba9bd1b6b6",
"Orgc": {
"name": "CIRCL",
"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f"
},
"Tag": [
{
"colour": "#004646",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "type:OSINT",
"relationship_type": ""
},
{
"colour": "#0071c3",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "osint:lifetime=\"perpetual\"",
"relationship_type": ""
},
{
"colour": "#0087e8",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "osint:certainty=\"50\"",
"relationship_type": ""
},
{
"colour": "#ffffff",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "tlp:white",
"relationship_type": ""
},
{
"colour": "#0088cc",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:surveillance-vendor=\"Cytrox\"",
"relationship_type": ""
}
],
"Attribute": [
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "81efca44-80f3-4af5-8fb7-2adac09bc441",
"value": "koenigseggg.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "2e2f04a2-f118-4173-9c8e-0239bf1a2275",
"value": "bitlly.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "e96995ba-21b6-421c-ab76-2f9033027ba6",
"value": "newslive2.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "46501d2a-e0d5-433a-97a1-5c7a51e253fd",
"value": "uberegypt.cn.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "5a285db2-47e1-460b-a29b-578eaef98360",
"value": "yuom7.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "6e3a2a11-8388-4df3-a8e7-0d0e3d738087",
"value": "connectivitycheck.online",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "5446169c-6ecf-4170-84d5-693592ee3658",
"value": "webaffise.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "8107c1fb-fd2f-41a3-977b-8960a5d4c378",
"value": "ffoxnewz.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "96a6b121-bac8-4cf1-8787-059df157d254",
"value": "miniiosapps.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "09963b62-44aa-4818-9d98-c558f0273a15",
"value": "audit-pvv.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "debc2347-209b-4537-ba70-7901c3dc7283",
"value": "orangegypt.co",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "90a131af-f06b-463b-9e56-42d51a89deaa",
"value": "youarefired.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "7b706010-9ef4-45a5-a913-1e4162735294",
"value": "aramexegypt.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "255be985-8b0b-49a5-ad29-3d37fd0f3c63",
"value": "mozillaupdate.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "2fa975f4-7a1a-47b2-aa2a-e3f703b09ab2",
"value": "safelyredirecting.digital",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "b61d5c8c-8964-4e34-adb9-36e8245576cb",
"value": "mycoffeeshop.shop",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "49021dea-5371-4d79-b093-4948ba0c3ff1",
"value": "bookjob.club",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "13f42f7b-c0d5-4281-8d83-561ec441c930",
"value": "youtubewatch.co",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "24243169-8697-48a1-bb99-17bb1e37d4dd",
"value": "download4you.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "94220acf-d481-4f83-9aa0-3b6bb7c0177d",
"value": "cyber.country",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "dadba41c-dc50-42a3-ad92-b3ad524c2fa8",
"value": "itcgr.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "5c4c8469-56e2-46c6-8ed7-13f54f662102",
"value": "getsignalapps.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "1e534a66-1732-40d8-bff7-6e760a9a2b85",
"value": "clockupdate.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "1a2d9b3a-810e-4de0-8453-906287ff2997",
"value": "updateservice.center",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "993af816-13f6-4177-8df8-11a949b868d8",
"value": "crashonline.site",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "087f187b-3a41-4169-86aa-b1f76271dbec",
"value": "speedymax.shop",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "27d902d4-87d1-45c5-ae92-4db9d491ce22",
"value": "safelyredirecting.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "a9c4eaf8-9ea8-4c5a-af40-adcce69b9359",
"value": "lylink.online",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "d74372f1-bc95-426a-82f7-beb97d269dea",
"value": "ferrari.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "901470be-ea4b-4080-99b8-6ffec8f5a5a6",
"value": "telecomegy-ads.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "d6696519-191e-4396-bc80-4095a4fca6b0",
"value": "tw.itter.me",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "09d36209-d326-4235-b3bf-40443c98c511",
"value": "instagam.click",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538168",
"to_ids": true,
"type": "domain",
"uuid": "34ed38e3-7c6d-4c57-a839-620c1669b09c",
"value": "distedc.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "8aebd50d-ef2a-4402-a221-f50bef8e3480",
"value": "alraeesnews.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "efa49e47-f6f0-45df-9d4d-af12c97249de",
"value": "bitlinkin.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "003a463c-b29b-4364-81e4-74cde40801ae",
"value": "ewish.cards",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "9b18b86d-745f-42f8-a7a2-c267c3797041",
"value": "sniper.pet",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "485be54c-5794-4446-a0a3-67bfa4e50942",
"value": "wtc1111.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "28127113-c787-407c-adcc-c1a1cbd03f3c",
"value": "newsbeast.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "ebe02e6b-db9e-4bf0-a643-713bbd162773",
"value": "in-politics.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "f601391e-ebec-409d-a7ba-7abe6706692a",
"value": "wtc2222.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "ac07bced-2620-4c9a-9825-d33c71129563",
"value": "icloudflair.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "4cf86a85-fd40-4310-bcb4-766f86104fe3",
"value": "omanreal.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "7e6e9143-9521-4368-b75f-946791fa8c88",
"value": "lexpress.me",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "4ca0f5bd-f5b0-4358-95fd-6ac37ed422fe",
"value": "chatwithme.store",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "bd289319-bfd2-4457-8da3-7c86e4eb5432",
"value": "link-m.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "f0242937-a663-49d9-91a6-d9bef37d184e",
"value": "efsyn.online",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "70f73d47-44ff-495c-bb7c-f674701d149c",
"value": "mitube1.link",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "066398c3-48ee-49b7-ad63-963b5ee1026b",
"value": "updete.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "cf85f4b1-cef7-499b-b1b4-82dc31b54a9d",
"value": "weathersite.online",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "3a86a1be-a0a7-4b5b-b1ad-1d77b971dcff",
"value": "llinkedin.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "d14c16d2-076f-4f02-8936-18626086f961",
"value": "api-telecommunication.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "dad4879f-778b-4349-8d6b-13ff83e39150",
"value": "2y4nothing.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "4ccdcdef-e94d-4f7c-98c4-067061db73f1",
"value": "updates4you.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "5ae720ed-4497-4a02-a5b7-d2f0ec505129",
"value": "fastuploads.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "8d7c8719-1658-42a1-aeb2-94951be93893",
"value": "kormoran.bid",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "bb1174df-0262-42b5-8993-dfbca988fe2a",
"value": "jquery-updater.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "95277b90-4b66-4b18-8523-ec395c7207fe",
"value": "synctimestamp.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "948b8dea-36f0-4709-8fa6-8073a3aebb3a",
"value": "bmw.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "a059e603-2cc4-4d03-b537-24f7e9a2eacb",
"value": "insider.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "8c4831ff-88e5-4bfd-8b9f-40c734af3144",
"value": "smsuns.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "ddcb07c2-00c8-4762-9cc2-6177b57a47c8",
"value": "uservicescheck.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "9010dfd7-e4e8-4e00-9266-c7b594ee3098",
"value": "connectivitycheck.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "3edfc428-bee7-404e-a38a-03ffca7d8825",
"value": "newzeto.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "cac2c444-a625-4574-b924-d3ebefc923d3",
"value": "hellasjournal.website",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "20a63ad7-9927-4644-9ebe-14e43d3598dc",
"value": "danas.bid",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "744a4091-f302-4928-a3d9-e8babddd9529",
"value": "enikos.news",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "2da02320-e77b-4bfb-929f-9b322f284249",
"value": "nabd.site",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "1a411d21-2364-4298-ad20-a7212732dff6",
"value": "quickupdates.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "f04f6fb9-2e63-4b50-911d-ce521e7af9c0",
"value": "trecv.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "ff5a4722-b6d8-4019-9af0-3a6c591dfd3e",
"value": "we-site.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "9b58b24d-4f1a-4079-a036-ff11ef863252",
"value": "getsignalapps.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "ce6e0ba9-89ba-4806-9869-0cc8aaa590ea",
"value": "bi.tly.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "21f6f6a8-cf16-4a91-b142-2a5a3bf40904",
"value": "kinder.engine.ninja",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "49bc9b6b-c1a3-4ad0-9a7d-a9eb2cf4c5bc",
"value": "nemshi-news.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "8b89b16a-6e38-4b7a-99a1-a8f5792db563",
"value": "yo.utube.to",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "bbc93630-e44f-4a0d-ae60-922ffe9e0b93",
"value": "instagam.in",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "c70788c3-eca7-40d4-b662-cbab7a49a6b1",
"value": "svetovid.bid",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "6000ef97-f5da-40de-a188-024799603502",
"value": "vodafoneegypt.tech",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "104689c1-9d29-4577-9d9e-9fb6f14da5e8",
"value": "cellconn.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "e045fa9f-fc3a-4123-9cd4-3448061b97d3",
"value": "solargroup.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "fe6b466f-62fa-48ac-ab2c-a92be207a833",
"value": "youtubesyncapi.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "b67703a6-5f6b-4d73-a27f-199821f73ed6",
"value": "ancienthistory.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "bf5d25ea-75de-472a-8310-15f5e0b4932e",
"value": "goldenscint.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "2f367350-f35f-4ec8-adf0-d475a6eb7302",
"value": "speedygonzales.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "81cae761-b61d-499c-ad2b-ae98c67f5bc3",
"value": "liponals.store",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "e1a8674a-8801-4373-b2bd-d5b591c02d9f",
"value": "altsantiri.news",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "23a09185-6628-4af7-a388-ce657638553a",
"value": "viva.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "f7dd2207-35c2-47ae-89b5-2a8bd2c042cc",
"value": "sinai-new.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "dc8879b3-2fdd-45d8-88e7-b8482788a5b2",
"value": "eagerfox.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "db0c7980-ec7f-48d4-8f52-79b773832083",
"value": "weathear.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "8cbe0466-9c7b-49fb-989c-d2b3f4855a96",
"value": "adibjan.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "a1e0afc3-3cfa-4b2e-8dda-95c717b0da9d",
"value": "alpineai.uk",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "f0cadc91-b2be-4df1-8a68-581d21b6dcff",
"value": "livingwithbadkidny.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "61f0ef41-183d-49d5-ae07-a2694af55919",
"value": "espressonews.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "30da6c62-4d17-4aae-b16a-3f675297d52c",
"value": "olexegy.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "99309856-9569-45e7-9d5d-4910c12af72f",
"value": "blacktrail.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "90c4c296-a888-458a-a651-2d3aea700a45",
"value": "yout.ube.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "09ec9968-d4d5-4d8e-a833-e63b7151db86",
"value": "leanwithme.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "935bcab5-38e0-41ac-911d-2b9501398643",
"value": "apps-ios.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "748caba0-792e-4d50-98aa-bb9973de74bc",
"value": "bi.tly.link",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "1c00ba31-22af-4a47-81d3-133ee183085b",
"value": "fbc8213450838f7ae251d4519c195138.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "2506b0da-f468-4cdc-a82e-a9dab7ffb204",
"value": "fisherman.engine.ninja",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "0b3993ca-f7cc-450a-ba56-9472951c2ef7",
"value": "politique-koaci.info",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "549abe91-8cb0-4b7a-ba5f-0046df003803",
"value": "adultpcz.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "73a0329a-7b63-400a-97cd-e26dfa12929c",
"value": "youtube.gr.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "0871e302-e849-4c77-a2d3-53c67dcf2719",
"value": "yallakora-egy.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "2e33ab1d-f4ec-42bb-9991-e6fdd621ca82",
"value": "android-apps.tech",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "2f29f944-733c-4b93-bbe7-9e98b72bb187",
"value": "instagam.photos",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "a91b2b7d-e0ad-427e-b79b-ca420a12a048",
"value": "flexipagez.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "2d9765d7-e61d-487d-825d-a41699a9741f",
"value": "ereportaz.news",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "e229cdc0-aa20-46d1-afc3-8d6178a4fe37",
"value": "kohaicorp.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "1152787e-ed89-4860-bd4c-eac820d3fd57",
"value": "md-news-direct.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "eaa84fae-1045-4efc-9f34-645782acd116",
"value": "worldnws.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "ee4de759-0ad6-48fe-a698-71987e9a2086",
"value": "landingpge.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "1feca209-54ad-4250-980b-c1213595059f",
"value": "etisalatgreen.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "ca625364-45a8-4fb4-a919-365004a9d24a",
"value": "lamborghini-s.shop",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "db2ba484-cfdc-4c5b-991f-14906020b97b",
"value": "nemshi-news.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "a8ed5319-8b87-46f3-bce3-a228b2ba3d81",
"value": "teslal.shop",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "f811b4e9-128a-4ce4-b211-05bf34896abf",
"value": "hellasjournal.company",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "3e1d9744-4318-453d-983b-db773ed4e003",
"value": "bbcsworld.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "e9e59dde-a35f-4170-87e6-030ee72d6845",
"value": "fireup.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "1337cc14-1b9c-4d37-a25d-bd736508041d",
"value": "goldenscent.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "7ea3ac59-ee17-4530-8b81-c53d66fdccb3",
"value": "youtu-be.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "99433f06-e227-474d-9045-8e8af7be1f52",
"value": "trkc.online",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538169",
"to_ids": true,
"type": "domain",
"uuid": "437fa889-e76f-44ac-9b17-83ef6d8f11e2",
"value": "niceonesa.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "4777a5d1-e638-42b0-95a3-7f88d99be990",
"value": "api-apple-buy.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "ded354aa-0ced-4165-9154-b1b1848e5d58",
"value": "mifcbook.link",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "3d73627d-b4ca-484e-9983-936fe2509ddf",
"value": "symoty.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "01b6f708-1a03-45d3-8b1d-4cae8036359f",
"value": "cut.red",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "07450a98-9bc3-4fb6-adbf-cf710bac5846",
"value": "dragonair.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "ac57b5b8-68d4-4e43-bf71-3c345b6c8547",
"value": "updatetime.zone",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "3d385ce8-bc5c-4a52-9ab3-958b67fadb33",
"value": "shortenurls.me",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "1de007be-18ec-4987-b71b-785a9ff63254",
"value": "qwxzyl.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "73e43a97-2e2f-4a7f-87da-b379c17f13fa",
"value": "invoker.icu",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "dbb91060-cfc7-47d7-96de-c88e70c62a2b",
"value": "nassosblog.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "13a740d1-d5e2-414e-9673-837d5fa433de",
"value": "youtube.voto",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "75861ba5-a4ac-4daf-8987-9303658ec41c",
"value": "hopnope.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "4d48f243-9a16-4a88-a79e-13d53445c9d2",
"value": "myutbe.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "b516d270-21e1-4f29-a1a0-764911e8c8cf",
"value": "shortmee.one",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "deb22c9f-cb56-4197-9424-e08f9ba1ae32",
"value": "almasryelyuom.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "10da3fbb-8412-4577-b26a-8858ab9f7b71",
"value": "youtub.app",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "a09f38b9-2f25-4837-b3b4-cf9dbc34ea77",
"value": "elpais.me",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "e10f7108-0b61-4122-ad2a-ac5fcc097f72",
"value": "actumali.org",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "d653dd3b-50e0-4168-855b-14ac89a31695",
"value": "bit-li.ws",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "e663cf20-129e-428c-b3e3-ddaa86176059",
"value": "fimes.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "0a3f5bbd-8180-43cf-9c39-8413e2188fb5",
"value": "ps2link.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "dac7d9c5-1724-48a9-91e0-63e8fdd9e994",
"value": "tribune-mg.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "fa8b1e27-b650-48f6-9eed-df46fb4acf6f",
"value": "bumabara.bid",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "febf276c-3a9e-4fd6-ab4d-04bc5822af78",
"value": "simetricode.uk",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "77a5a2fe-80a1-4030-a1ba-a6df896bd41a",
"value": "ps1link.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "77641e2c-87d6-4462-a3ec-79ef3f39e0bc",
"value": "hellottec.art",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "038ea7ab-9500-4e0e-97d1-857234a7d2ec",
"value": "stonisi.news",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "f27e61ab-f594-4c80-aeec-cdc975e507ca",
"value": "xf.actor",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "2fe5b0a1-ac80-42c6-9e35-dd86c9198897",
"value": "ikea-egypt.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "171a043d-c5bb-4483-83ee-12976193d80d",
"value": "bit-ly.link",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "1eaaf3b8-9112-4b90-9215-68e0e71126e6",
"value": "tly.link",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "2f0d8b48-2ccf-4b12-bb10-1efc7e309911",
"value": "nikjol.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "eb45c367-fea6-40b7-9ab3-8d4f2eb8dfe3",
"value": "egyqaz.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "f6f1db9a-4053-4e23-96eb-6eea6fe592b7",
"value": "ios-apps.store",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "ecd35815-a4a2-4c62-82b8-647c68533168",
"value": "serviceupdaterequest.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "8af2791b-1ea1-4a82-b8c9-4d8d50f8cd17",
"value": "tovima.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "cf6b3708-8f55-42a6-a613-4b9a7f8b4e59",
"value": "wha.tsapp.me",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "980ad684-f736-417b-a656-c06228756e6f",
"value": "businesnews.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "97ba1829-a091-44c1-9455-61c31d07a4e3",
"value": "tiol.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "1db30066-a2ef-4ac0-8b1d-df030f595d9d",
"value": "mobnetlink1.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "18345894-209f-4f7d-beb3-708bfe43a1c2",
"value": "shortxyz.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "257362fd-2770-4707-8599-fa65f8ad7d0a",
"value": "ube.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "daf7ca58-8b52-4f62-9c5f-035e8bf0529a",
"value": "teslali.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "b602a4e2-5ca8-4e85-ad09-57855044607f",
"value": "iibt.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "7b5c8565-cfb5-43d7-97d2-180a2589d413",
"value": "kranos.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "4a7422c4-4688-4d64-839b-ddf90c946a1b",
"value": "solargoup.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "4de4af8f-3ece-42bc-b40a-becd9523374a",
"value": "carrefourmisr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "c1bcd463-8ba8-4602-983e-b07c8c50849a",
"value": "5m5.io",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "5a45ac49-4b17-4cbb-a960-bc2af1a7dba7",
"value": "pronews.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "b7a889c1-d2ae-480a-afab-590fa8a2a5ee",
"value": "shortwidgets.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "89dc5738-d457-4823-a60a-94f21f72673f",
"value": "pocopoc.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "6f8bcbd9-b94f-4f82-915a-b0d39c7ee3c4",
"value": "charmander.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "1df46c75-7921-4308-9d75-e91430724ca2",
"value": "enigmase.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "4fdeb5cc-a7de-4fe6-bdf3-0b9af4b880fb",
"value": "xnxx-hub.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "b8ccb07d-2109-4d0b-83e0-7ef9ac907d0f",
"value": "proupload.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "b3ca055c-e81c-4844-8c70-85ef9b1cf463",
"value": "cloudstatistics.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "40bbaea3-00ff-468f-8add-d902e3b5c1b0",
"value": "burgerprince.us",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "9a9c8608-9838-4dfb-854e-96975cf8b939",
"value": "infosms-a.site",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "3dcfbcca-074f-4981-a2df-ba5c828d984a",
"value": "heiiasjournai.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "baf8af4c-4a16-49fe-a2ca-39dd4d217986",
"value": "citroen.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "dfdc12cd-78c0-436f-9d9f-13d15b24e616",
"value": "ebill.cosmote.center",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "8e9283c5-2053-470f-ac0e-1f1867e9e11a",
"value": "ckforward.one",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "973187cb-f794-480c-ab45-7870236cf63f",
"value": "syncupdate.site",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "5d0c0e15-a56d-4fb9-b6d4-c8b74feed731",
"value": "shortely.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "259a7697-5957-4302-b237-7bcfafea0d94",
"value": "canyouc.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "21d1bbcf-6b29-45bb-8984-2838acbcada9",
"value": "suzuki.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "0fa4f763-1376-4214-ba31-b6e98819f416",
"value": "makeitshort.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "121c8d12-90ce-4578-b89a-856fa1df547a",
"value": "amazing.lab",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "388aaffe-3152-4fab-8428-36f2110c1888",
"value": "protothema.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "6863db87-c31f-4040-9d6b-4410dbb725f4",
"value": "tinyurl.cloud",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "d89f16cc-cb4d-4991-b224-f23214917175",
"value": "conlnk.one",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "c8fba428-3a34-4565-937b-f2494adbaf91",
"value": "timeupdate.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "d3d207be-fa7f-4748-8082-fe32084d1b19",
"value": "localegem.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "ecd8eaf2-dc91-43c4-825e-b6e5853d56e5",
"value": "tesla-s.shop",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "f3b34772-179d-4bcc-87d7-b2c70900b955",
"value": "bityl.me",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "8fee3f0d-dcca-47fc-9097-40dbfc848c0b",
"value": "xyvok.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "5315e7f4-aa10-4641-bbbe-6b1c7eb241df",
"value": "wtc3333.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "95d39b25-592e-464d-9212-b564af06a4e5",
"value": "itly.link",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "81fa911d-c5af-42fb-b61b-288021e0cf3a",
"value": "heaven.army",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "2668dfce-54f5-4fbc-b99b-faa0a21ef1ae",
"value": "pdfviewer.app",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "7e71dd5c-82b5-40b4-855e-6a80cb4acb1d",
"value": "teslal.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "2f7a915c-a00f-4bb2-b862-66be4a250c9e",
"value": "nemshi.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "e32d5970-af9b-4017-94e0-05fa64820cd4",
"value": "bank-alahly.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "de46ff06-912f-45fa-8e86-2229efe4cbd1",
"value": "syncservices.one",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "e6c9173b-44d1-484a-bf42-90b7aa74d1f2",
"value": "sportsnewz.site",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "70ef642d-57a1-41ea-b941-da4b5801c760",
"value": "bit-ly.org",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "a5ad04a7-dfd3-4c85-9387-ee322da7a24a",
"value": "newzgroup.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538170",
"to_ids": true,
"type": "domain",
"uuid": "eda5157b-dcc3-4609-8002-f50710c04434",
"value": "guardian-tt.me",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "c77d5da9-2488-4b78-a396-56893089b69f",
"value": "zougla.news",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "78c52144-60f1-4c7e-8986-0a0e9a2ae3d2",
"value": "wavekli.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "44e854d4-267a-4c1f-8b4d-dde49985030c",
"value": "fastdownload.me",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "d200af18-edbf-4f8b-87c3-52045227e189",
"value": "iosmnbg.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "d5fff34d-eb00-4b37-8273-3b51fbb87995",
"value": "oilgy.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "b82a6099-2c5b-4562-a1f8-c385f5cead46",
"value": "linkit.cloud",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "4dfced26-0d23-4c22-ae8d-c1de4519582b",
"value": "url-tiny.app",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "73be604e-31d3-4b41-bcf5-e63690b35055",
"value": "vodafonegypt.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "9dc12793-cb24-4761-bcbf-471ec47f585c",
"value": "cbbc01.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "a76a122d-3156-46e2-815d-69b39734bd5d",
"value": "goldescent.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "90c431f9-fcc2-45e8-ab7d-56a3c271b066",
"value": "bitlyrs.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "40abb731-15d2-467a-a435-8ce7de39cc0e",
"value": "niceonase.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "dc850998-3aa8-4103-bee6-b70f4ea53628",
"value": "link-protection.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "fb1eeecb-61fa-4d8f-89d2-60ef8e8136ad",
"value": "connectivitychecker.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "c45e6ed2-2368-428f-a212-abce61b09865",
"value": "url-promo.club",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "d16d3fe3-c515-4420-9fb0-d21f0b60565c",
"value": "forwardeshoptt.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "daa7def9-a735-4e8a-b3e6-18d9e78f37b5",
"value": "uservicesforyou.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "482b6622-30bc-4b62-bffe-c7dd3f336d29",
"value": "playestore.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "097992c8-e640-40c2-9031-35f0976531ac",
"value": "advertsservices.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "f83be75e-53ff-4b62-8d9f-493651c10c35",
"value": "servers-mobile.info",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "de9abd2f-8c29-4e73-8b6b-934ab2f5514e",
"value": "mobnetlink2.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "72b9c18f-2b54-4aea-8540-33c76119814e",
"value": "guardnew.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "e365f17f-3ddd-4b26-b73e-402268373aed",
"value": "sepenet.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "257a5633-f116-4d9b-8775-2bdb83d3f5f0",
"value": "z2adigital.cloud",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "e8f7c662-b7f6-4257-ae60-79629bb5a91f",
"value": "instegram.co",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "bcbd25ee-8c06-4713-8d23-f31c98004b3a",
"value": "browsercheck.services",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "f35a869f-52e4-49c0-a354-118acb9ccffb",
"value": "static-graph.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "fbf5f170-11e6-40b7-9ae0-65a00ec39314",
"value": "cnn.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "8f2aa532-d874-42f5-b2b6-9f64bd4bcc90",
"value": "shorten.fi",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "e68bf835-515a-44bc-ada6-0ba42c331949",
"value": "celebrnewz.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "7664644e-31ad-4f60-9739-34237f6d81df",
"value": "lifestyleshops.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "6ca386b8-0289-488b-81b8-056e5851ce81",
"value": "pastepast.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "a2c247a1-6df2-49dd-bb61-68a4f244ddda",
"value": "snapfire.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "43387a03-7765-47aa-b5ed-d7c6bfb0f3b9",
"value": "omeega.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "2ff9e891-845e-4db2-a960-14fdf7b5abbe",
"value": "koora-egypt.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "9da56dc0-555b-43c6-849e-d395e513239a",
"value": "etisalategypt.tech",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "c30fbf27-e36b-4dc7-ad5b-274dbe216442",
"value": "yo.utube.digital",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "23eb7677-9c5b-40f3-8db8-0db9d00bfca0",
"value": "sextape225.me",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "0de655ae-07ff-4809-84cc-3cfea8da58ef",
"value": "supportset.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "093937c1-4034-4617-a9dc-e55dcb15a4f6",
"value": "getupdatesnow.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "b77dffc5-435e-4aab-8246-3e0073599068",
"value": "prmopromo.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "1be173ac-b016-4979-bfc6-32c1ea7019ce",
"value": "ilnk.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "2af63a3a-315c-498d-bb85-dcdecb26bc52",
"value": "tsrt.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "eece0b35-ae03-416b-b183-2bf5a4b0641c",
"value": "affise.app",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "947939ec-59ee-496e-ac18-9cbb5657563f",
"value": "telenorconn.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "f398103d-3f84-4c35-9223-71ecbc90f867",
"value": "mobnetlink3.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "6993238b-037a-4768-a706-db895d6cff06",
"value": "zougla.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "1fa4b4d3-8601-499d-8fae-e21f7d0c398e",
"value": "myfcbk.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "a0b446c7-0ce0-43b7-90b0-a3d277e7b1a9",
"value": "z2a.digital",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "c271cc6a-04c3-4004-a17f-9d28e742d360",
"value": "engine.ninja",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "3c6feb64-187d-4a26-acc0-9b2c877ef5e0",
"value": "gosokm.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "25b51862-e0ee-4eba-b346-2abae972932b",
"value": "z2digital.cloud",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "1c6bb5e8-1a88-440d-b50d-2958b2961d96",
"value": "utube.digital",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "a644a71a-7a07-4a23-92fa-648f30d8b225",
"value": "mlinks.ws",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "32a10c7f-3c82-4c8b-8766-3e44d6ac7870",
"value": "redeitt.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "6997e2e3-b181-48d0-9da5-bf629b5de9b4",
"value": "updatingnews.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "bf0e8173-9770-4307-8329-f41719027704",
"value": "limk.one",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "59547364-db43-4c9a-afc6-b7e39e9be2fd",
"value": "nissan.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "5ccba526-fa0d-404f-8aba-19914f1edf9e",
"value": "sports-mdg.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "a6f786e9-8a29-49a3-850b-642f0d4563a9",
"value": "politika.bid",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "408a82c7-6834-4ca8-9a8e-2ebcb1b15308",
"value": "sephoragroup.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "abd16fd0-19e2-4b9b-b14c-8d3081057dd7",
"value": "msas.ws",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "e0af7147-9b8b-43e4-bfb7-a42f2fce452c",
"value": "orchomenos.news",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "7cf9ff37-8293-4987-89da-b4eb81bb5c4d",
"value": "mywebsitevpstest.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "19673405-e01f-4696-8069-ee6ee69bdc05",
"value": "novosti.bid",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "f6b9694d-6190-486e-8eae-63e5556c8c3d",
"value": "twtter.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "ca3b431d-8853-4867-9eab-827685c24b77",
"value": "nabde.app",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "c36623b5-b5a9-4983-8159-bda79298a059",
"value": "addons.news",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "9c46cf47-d808-4076-8850-0cc8a1b381be",
"value": "lexpress-mg.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "446b7036-23d2-4d3e-af71-a5305024f691",
"value": "redirecting.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "061792c8-d321-4605-8ea0-39b3204a6c90",
"value": "mytrips.quest",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "7fd8ff56-990a-419a-a260-8ac6f49676ec",
"value": "bitt.fi",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "a9b7cebc-98bc-419d-836d-ee33ef2cfc1f",
"value": "landingpg.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "1a288c93-01a0-4fa7-a15a-2fe3f77d32ff",
"value": "lnkedin.org",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "63f4adae-01b0-459c-a5c1-cbb6de37179c",
"value": "linktothisa.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "52982af2-5d85-4c84-a05d-b9d86a7c13f2",
"value": "adservices.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "42e67512-d527-469d-8d9e-37f89162404a",
"value": "timestampsync.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "57cc5253-a9ca-4d2a-b701-0a95f3974ad0",
"value": "olxeg.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "d613d620-f216-452c-8d3d-6fd321704f36",
"value": "bit-li.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "a5f4b662-a4ec-45c2-8929-0bb3791077ca",
"value": "weathernewz.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "517e7065-9b0e-415b-8fbc-e3e0e80c132b",
"value": "linkit.digital",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "3d60bde8-5506-45d8-866c-8262c499ed43",
"value": "onlineservices.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "523a26a1-c08c-4b6b-a47b-71255fd3ef91",
"value": "guardnews.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "d4651539-5d99-466b-b0d8-a186b6c86017",
"value": "trecvf.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "ef26bd65-1e7c-4ba5-881b-70fb93d10722",
"value": "speedy.sbs",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "96749e37-6f8c-44e1-9096-e43595ea733e",
"value": "advfb.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "2b41641d-7d9d-4a50-b655-7c589dffb607",
"value": "qwert.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "d1602855-1ee1-4ae4-8729-f1abb18f6802",
"value": "alraeeenews.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "01abdc3a-1ec8-467e-a813-5d3ffcb99d21",
"value": "sitepref.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "212bea34-adb6-4534-b911-e79c0b3b66e7",
"value": "covid19masks.shop",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538171",
"to_ids": true,
"type": "domain",
"uuid": "5de6ace5-5cd8-4411-ae30-68e6e823fa71",
"value": "tly.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "e2a87abf-b466-4ca0-a52c-6515a84c5b8d",
"value": "cloudtimesync.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "be337a4c-ff98-41f3-8f36-7a134803813e",
"value": "tinylinks.live",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "bd70bd72-7db3-44a0-9863-eb2202552c02",
"value": "itter.me",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "ac9bc3a3-5ab9-4351-a17e-b91a243eaf5b",
"value": "bity.ws",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "38afc77b-fd77-4109-ba61-b3870c2b56c5",
"value": "tgrthgsrgwrthwrtgwr.xyz",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "b5bc59d0-2bc0-453e-a5c3-9a30b7e393a3",
"value": "icloudeu.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "16eb733c-d4f1-4c16-b30f-cd3f2bc527a6",
"value": "otaupdatesios.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "930907c5-f6e1-4ee9-9835-932a5d90a059",
"value": "applepps.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "e51e8d5c-2512-44e4-89f8-0bf316a88a54",
"value": "paok-24.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "10f5c0be-70be-4d07-b006-31251e4bb69c",
"value": "inservices.digital",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "af08b906-d57a-439e-a289-a8abf9fa7ec8",
"value": "tinyulrs.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "85a840e6-cdb0-4d3c-bf69-605a19c15f19",
"value": "tiny.gr.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "fcadfe21-9397-44cf-8ab5-05333d7e4cb1",
"value": "networkenterprise.net",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "20c71cd0-bf51-4619-a3b5-d595079fbe3b",
"value": "timeupdateservice.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "2e5a81d5-ccaf-458a-bb44-14aeb2646ca5",
"value": "kathimerini.news",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "e476e602-3f9a-4d4e-9170-20d055a6cde8",
"value": "atheere.com",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "a57eba23-64f8-4272-a0cf-e2f56a957d0f",
"value": "hempower.shop",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "domain",
"uuid": "f267c753-54ee-4e39-9b34-8420fd4a8a10",
"value": "eg-gov.org",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "filename",
"uuid": "90d70bef-8ba5-4746-85d1-3c97f922c2a1",
"value": "/data/local/tmp/wd/",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "filename",
"uuid": "a5f27704-92a7-4a29-95ab-ec87dd629508",
"value": "/data/local/tmp/wd/fs.db",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "filename",
"uuid": "7ba97760-750d-4820-997e-3117785d9257",
"value": "/private/var/tmp/hooker",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "filename",
"uuid": "98189417-0dae-48b9-bff6-949af6e01b28",
"value": "/private/var/tmp/takePhoto",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "filename",
"uuid": "cb20da93-7103-4c07-b1c6-ff738c1ecb76",
"value": "/private/var/tmp/UserEventAgent",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1643538172",
"to_ids": true,
"type": "filename",
"uuid": "ed3e1a53-9e7c-4fd6-8d6e-27029f8bee1f",
"value": "/private/var/tmp/com.apple.WebKit.Networking",
"Tag": [
{
"colour": "#9ca1bd",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:malware=\"Cytrox\"",
"relationship_type": ""
}
]
}
],
"Object": [
{
"comment": "",
"deleted": false,
"description": "An object describing a STIX pattern. The object can be linked via a relationship to other attributes or objects to describe how it can be represented as a STIX pattern.",
"meta-category": "misc",
"name": "stix2-pattern",
"template_uuid": "0c5bd072-7c3e-4d45-86f7-a8104d9143b9",
"template_version": "3",
"timestamp": "1639651665",
"uuid": "08efc3c1-86a3-4276-a1ef-f3a2c5db7469",
"Attribute": [
{
"category": "Other",
"comment": "",
"deleted": false,
"disable_correlation": true,
"object_relation": "version",
"timestamp": "1643538172",
"to_ids": false,
"type": "text",
"uuid": "1b365d0e-c6ce-41c7-a801-53a7ebcd4bc8",
"value": "STIX 2.1"
},
{
"category": "Payload installation",
"comment": "",
"deleted": false,
"disable_correlation": false,
"object_relation": "stix2-pattern",
"timestamp": "1643538172",
"to_ids": true,
"type": "stix2-pattern",
"uuid": "6a35d1f2-6f77-43ea-93c9-16a90d20f4ff",
"value": "[configuration-profile:id='76DAB334-7E17-475D-A5D6-0794EB5818A5']"
}
]
},
{
"comment": "",
"deleted": false,
"description": "Object describing the original file used to import data in MISP.",
"meta-category": "file",
"name": "original-imported-file",
"template_uuid": "4cd560e9-2cfe-40a1-9964-7b2e797ecac5",
"template_version": "2",
"timestamp": "1643538172",
"uuid": "b9e6b927-ce2d-4094-80de-9507c3700c38",
"Attribute": [
{
"category": "External analysis",
"comment": "",
"data": "ewogICAgInR5cGUiOiAiYnVuZGxlIiwKICAgICJpZCI6ICJidW5kbGUtLTRiNDc1YTVmLWVhNDctNGYyZi1hZWEzLWQ4YmE5YmQxYjZiNiIsCiAgICAib2JqZWN0cyI6IFsKICAgICAgICB7CiAgICAgICAgICAgICJ0eXBlIjogIm1hbHdhcmUiLAogICAgICAgICAgICAic3BlY192ZXJzaW9uIjogIjIuMSIsCiAgICAgICAgICAgICJpZCI6ICJtYWx3YXJlLS1hYjYyODY0ZS1lMjQ1LTQ4ODUtODc4Ni1hNjU2NjJiYjZkNmMiLAogICAgICAgICAgICAiY3JlYXRlZCI6ICIyMDIxLTEyLTE2VDEwOjQ3OjQ1LjI4NjgxMloiLAogICAgICAgICAgICAibW9kaWZpZWQiOiAiMjAyMS0xMi0xNlQxMDo0Nzo0NS4yODY4MTJaIiwKICAgICAgICAgICAgIm5hbWUiOiAiQ3l0cm94IiwKICAgICAgICAgICAgImRlc2NyaXB0aW9uIjogIklPQ3MgZm9yIEN5dHJveCIsCiAgICAgICAgICAgICJpc19mYW1pbHkiOiBmYWxzZQogICAgICAgIH0sCiAgICAgICAgewogICAgICAgICAgICAidHlwZSI6ICJpbmRpY2F0b3IiLAogICAgICAgICAgICAic3BlY192ZXJzaW9uIjogIjIuMSIsCiAgICAgICAgICAgICJpZCI6ICJpbmRpY2F0b3ItLTgxZWZjYTQ0LTgwZjMtNGFmNS04ZmI3LTJhZGFjMDliYzQ0MSIsCiAgICAgICAgICAgICJjcmVhdGVkIjogIjIwMjEtMTItMTZUMTA6NDc6NDUuMjg3MDJaIiwKICAgICAgICAgICAgIm1vZGlmaWVkIjogIjIwMjEtMTItMTZUMTA6NDc6NDUuMjg3MDJaIiwKICAgICAgICAgICAgImluZGljYXRvcl90eXBlcyI6IFsKICAgICAgICAgICAgICAgICJtYWxpY2lvdXMtYWN0aXZpdHkiCiAgICAgICAgICAgIF0sCiAgICAgICAgICAgICJwYXR0ZXJuIjogIltkb21haW4tbmFtZTp2YWx1ZT0na29lbmlnc2VnZ2cuY29tJ10iLAogICAgICAgICAgICAicGF0dGVybl90eXBlIjogInN0aXgiLAogICAgICAgICAgICAicGF0dGVybl92ZXJzaW9uIjogIjIuMSIsCiAgICAgICAgICAgICJ2YWxpZF9mcm9tIjogIjIwMjEtMTItMTZUMTA6NDc6NDUuMjg3MDJaIgogICAgICAgIH0sCiAgICAgICAgewogICAgICAgICAgICAidHlwZSI6ICJyZWxhdGlvbnNoaXAiLAogICAgICAgICAgICAic3BlY192ZXJzaW9uIjogIjIuMSIsCiAgICAgICAgICAgICJpZCI6ICJyZWxhdGlvbnNoaXAtLWE0ZTBkZDMyLTRkMWUtNGU4Ni1hNDU0LTAwZWM5ZjQ1NTM4MyIsCiAgICAgICAgICAgICJjcmVhdGVkIjogIjIwMjEtMTItMTZUMTA6NDc6NDUuMjg3OTQ1WiIsCiAgICAgICAgICAgICJtb2RpZmllZCI6ICIyMDIxLTEyLTE2VDEwOjQ3OjQ1LjI4Nzk0NVoiLAogICAgICAgICAgICAicmVsYXRpb25zaGlwX3R5cGUiOiAiaW5kaWNhdGVzIiwKICAgICAgICAgICAgInNvdXJjZV9yZWYiOiAiaW5kaWNhdG9yLS04MWVmY2E0NC04MGYzLTRhZjUtOGZiNy0yYWRhYzA5YmM0NDEiLAogICAgICAgICAgICAidGFyZ2V0X3JlZiI6ICJtYWx3YXJlLS1hYjYyODY0ZS1lMjQ1LTQ4ODUtODc4Ni1hNjU2NjJiYjZkNmMiCiAgICAgICAgfSwKICAgICAgICB7CiAgICAgICAgICAgICJ0eXBlIjogImluZGljYXRvciIsCiAgICAgICAgICAgICJzcGVjX3ZlcnNpb24iOiAiMi4xIiwKICAgICAgICAgICAgImlkIjogImluZGljYXRvci0tMmUyZjA0YTItZjExOC00MTczLTljOGUtMDIzOWJmMWEyMjc1IiwKICAgICAgICAgICAgImNyZWF0ZWQiOiAiMjAyMS0xMi0xNlQxMDo0Nzo0NS4yODgwOTRaIiwKICAgICAgICAgICAgIm1vZGlmaWVkIjogIjIwMjEtMTItMTZUMTA6NDc6NDUuMjg4MDk0WiIsCiAgICAgICAgICAgICJpbmRpY2F0b3JfdHlwZXMiOiBbCiAgICAgICAgICAgICAgICAibWFsaWNpb3VzLWFjdGl2aXR5IgogICAgICAgICAgICBdLAogICAgICAgICAgICAicGF0dGVybiI6ICJbZG9tYWluLW5hbWU6dmFsdWU9J2JpdGxseS5saXZlJ10iLAogICAgICAgICAgICAicGF0dGVybl90eXBlIjogInN0aXgiLAogICAgICAgICAgICAicGF0dGVybl92ZXJzaW9uIjogIjIuMSIsCiAgICAgICAgICAgICJ2YWxpZF9mcm9tIjogIjIwMjEtMTItMTZUMTA6NDc6NDUuMjg4MDk0WiIKICAgICAgICB9LAogICAgICAgIHsKICAgICAgICAgICAgInR5cGUiOiAicmVsYXRpb25zaGlwIiwKICAgICAgICAgICAgInNwZWNfdmVyc2lvbiI6ICIyLjEiLAogICAgICAgICAgICAiaWQiOiAicmVsYXRpb25zaGlwLS04Y2FmZjg4Ni01OWM1LTQ5NzQtOTAyYS0yYWIzZTZjODg3ZGYiLAogICAgICAgICAgICAiY3JlYXRlZCI6ICIyMDIxLTEyLTE2VDEwOjQ3OjQ1LjI4ODc5M1oiLAogICAgICAgICAgICAibW9kaWZpZWQiOiAiMjAyMS0xMi0xNlQxMDo0Nzo0NS4yODg3OTNaIiwKICAgICAgICAgICAgInJlbGF0aW9uc2hpcF90eXBlIjogImluZGljYXRlcyIsCiAgICAgICAgICAgICJzb3VyY2VfcmVmIjogImluZGljYXRvci0tMmUyZjA0YTItZjExOC00MTczLTljOGUtMDIzOWJmMWEyMjc1IiwKICAgICAgICAgICAgInRhcmdldF9yZWYiOiAibWFsd2FyZS0tYWI2Mjg2NGUtZTI0NS00ODg1LTg3ODYtYTY1NjYyYmI2ZDZjIgogICAgICAgIH0sCiAgICAgICAgewogICAgICAgICAgICAidHlwZSI6ICJpbmRpY2F0b3IiLAogICAgICAgICAgICAic3BlY192ZXJzaW9uIjogIjIuMSIsCiAgICAgICAgICAgICJpZCI6ICJpbmRpY2F0b3ItLWU5Njk5NWJhLTIxYjYtNDIxYy1hYjc2LTJmOTAzMzAyN2JhNiIsCiAgICAgICAgICAgICJjcmVhdGVkIjogIjIwMjEtMTItMTZUMTA6NDc6NDUuMjg4OTI1WiIsCiAgICAgICAgICAgICJtb2RpZmllZCI6ICIyMDIxLTEyLTE2VDEwOjQ3OjQ1LjI4ODkyNVoiLAogICAgICAgICAgICAiaW5kaWNhdG9yX3R5cGVzIjogWwogICAgICAgICAgICAgICAgIm1hbGljaW91cy1hY3Rpdml0eSIKICAgICAgICAgICAgXSwKICAgICAgICAgICAgInBhdHRlcm4iOiAiW2RvbWFpbi1uYW1lOnZhbHVlPSduZXdzbGl2ZTIueHl6J10iLAogICAgICAgICAgICAicGF0dGVybl90eXBlIjogInN0aXgiLAogICAgICAgICAgICAicGF0dGVybl92ZXJzaW9uIjogIjIuMSIsCiAgICAgICAgICAgICJ2YWxpZF9mcm9tIjogIjIwMjEtMTItMTZUMTA6NDc6NDUuMjg4OTI1WiIKICAgICAgICB9LAogICAgICAgIHsKICAgICAgIC
"deleted": false,
"disable_correlation": true,
"object_relation": "imported-sample",
"timestamp": "1643538172",
"to_ids": false,
"type": "attachment",
"uuid": "2dc29630-ca09-4f31-a4d3-0516a6ba87e6",
"value": "cytrox.stix2"
},
{
"category": "Other",
"comment": "",
"deleted": false,
"disable_correlation": true,
"object_relation": "format",
"timestamp": "1643538172",
"to_ids": false,
"type": "text",
"uuid": "636a8777-490d-42d5-850b-589ec0cd32e2",
"value": "STIX 2.0"
}
]
},
{
"comment": "",
"deleted": false,
"description": "Metadata used to generate an executive level report",
"meta-category": "misc",
"name": "report",
"template_uuid": "70a68471-df22-4e3f-aa1a-5a3be19f82df",
"template_version": "5",
"timestamp": "1643538248",
"uuid": "aa74ba61-2d36-42a4-88e9-b238dc2a8b92",
"Attribute": [
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"object_relation": "link",
"timestamp": "1643538248",
"to_ids": false,
"type": "link",
"uuid": "01a90efd-c99f-41ee-95e9-71714756e58c",
"value": "https://github.com/AmnestyTech/investigations/tree/master/2021-12-16_cytrox"
},
{
"category": "Other",
"comment": "",
"deleted": false,
"disable_correlation": false,
"object_relation": "summary",
"timestamp": "1643538248",
"to_ids": false,
"type": "text",
"uuid": "d7ebf909-06c5-4ed9-9bb5-193eab1182a5",
"value": "This repository contains network and device indicators of compromised (IoCs) related to the IOS and Android spyware tools developed by the cyber-surveillance company Cytrox. These indicators were first published in December 2021 by Meta in their Threat Report on the Surveillance-for-Hire Industry and by Citizen Lab in their report Pegasus vs. Predator - Dissident\u2019s Doubly-Infected iPhone Reveals Cytrox Mercenary Spyware. Additional indicators of compromise were identified by the Amnesty Tech Security Lab as part of an independent investigation."
},
{
"category": "Other",
"comment": "",
"deleted": false,
"disable_correlation": true,
"object_relation": "type",
"timestamp": "1643538248",
"to_ids": false,
"type": "text",
"uuid": "71bdc154-7709-433b-b9c9-8d183a435474",
"value": "Report"
}
]
}
2023-04-21 13:25:09 +00:00
]
2023-12-14 14:30:15 +00:00
}
2023-04-21 13:25:09 +00:00
}