misp-circl-feed/feeds/circl/misp/5a0eb192-bf90-4995-9082-fb44950d210f.json

{"Event": {"info": "OSINT - HIDDEN COBRA \u2013 North Korean Trojan: Volgmer", "Tag": [{"colour": "#004646", "exportable": true, "name": "type:OSINT"}, {"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#002b4a", "exportable": true, "name": "osint:source-type=\"technical-report\""}, {"colour": "#13eb00", "exportable": true, "name": "misp-galaxy:threat-actor=\"Lazarus Group\""}, {"colour": "#0088cc", "exportable": true, "name": "misp-galaxy:tool=\"Volgmer\""}], "publish_timestamp": "0", "timestamp": "1511183700", "Object": [{"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5a0ebb4a-6b6c-4af4-a678-46be950d210f", "sharing_group_id": "0", "timestamp": "1510914890", "description": "File object describing a file with meta-information", "template_version": "4", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5a0ebb4a-3d8c-4a8d-b34c-40d6950d210f", "timestamp": "1510914890", "to_ids": true, "value": "1ecd83ee7e4cfc8fed7ceb998e75b996", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5a0ebb4a-6768-4c0c-ba5e-4ed1950d210f", "timestamp": "1510914890", "to_ids": false, "value": "7.00782518905", "disable_correlation": false, "object_relation": "entropy", "type": "float"}, {"comment": "", "category": "Payload delivery", "uuid": "5a0ebb4a-0c90-4fbb-b447-49ba950d210f", "timestamp": "1510914890", "to_ids": true, "value": "1ecd83ee7e4cfc8fed7ceb998e75b996", "disable_correlation": false, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5a0ebb4a-c02c-48b7-a177-4873950d210f", "timestamp": "1510914890", "to_ids": true, "value": "eddb7228e2f8b7a99c4c32a743504ed3c16b5ef3", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "5a0ebb4a-8ea8-46a4-804c-4614950d210f", "timestamp": "1510914890", "to_ids": true, "value": "3072:Kn13mR+uvEuCBlMclG4te7DFQstzN29ZfyXZM5QVj+XZ4dC:KneZvrRclG4mF5qZfyO2AJWC", "disable_correlation": false, "object_relation": "ssdeep", "type": "ssdeep"}, {"comment": "", "category": "Other", "uuid": "5a0ebb4a-c288-421c-bb0e-4711950d210f", "timestamp": "1510914890", "to_ids": false, "value": "131072", "disable_correlation": false, "object_relation": "size-in-bytes", "type": "size-in-bytes"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5a0ebfbe-2cd4-4955-a509-48cb950d210f", "sharing_group_id": "0", "timestamp": "1510916030", "description": "File object describing a file with meta-information", "template_version": "4", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5a0ebfbe-72d4-4880-8256-4fe0950d210f", "timestamp": "1510916030", "to_ids": true, "value": "81180bf9c7b282c6b8411f8f315bc422", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5a0ebfbe-2b40-4444-92fd-41c6950d210f", "timestamp": "1510916030", "to_ids": false, "value": "1.69870551288", "disable_correlation": false, "object_relation": "entropy", "type": "float"}, {"comment": "", "category": "Payload delivery", "uuid": "5a0ebfbe-2e38-48f1-84fe-4954950d210f", "timestamp": "1510916030", "to_ids": true, "value": "c9b703cbc692977dfa0fe7b82768974f17dbf309", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "5a0ebfbe-56b0-4a3e-afe4-4281950d210f", "timestamp": "1510916030", "to_ids": true, "value": "3:3l/l/0P5BQCfqgFwylTDRv9tWpdYYg11MBMs5v\r\nY6Pw/l/lN:3tlMP5BQCigFwyFDlWzYn1FF6PQ/", "disable_correlation": false, "object_relation": "ssdeep", "type": "ssdeep"}, {"comment": "", "category": "Other", "uuid": "5a0ebfbe-9978-486d-9f18-4acc950d210f", "timestamp": "1510916030", "to_ids": false, "value": "546", "disable_correlation": false, "object_relation": "size-in-bytes", "type": "size-in-bytes"}], "distribution": "5", "meta-category": "f