misp-circl-feed/feeds/circl/misp/5a0f0f70-00bc-498e-9e24-47e3950d210f.json

1 line
12 KiB
JSON
Raw Permalink Normal View History

2023-12-14 14:30:15 +00:00
{"Event": {"info": "M2M - Trickbot 2017-11-14 : \"mac1\" : \"Emailing:\n 12345678.doc\" - \"12345678\"", "Tag": [{"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#0088cc", "exportable": true, "name": "misp-galaxy:tool=\"Trick Bot\""}], "publish_timestamp": "0", "timestamp": "1510937117", "analysis": "1", "Attribute": [{"comment": "", "category": "Artifacts dropped", "uuid": "5a0f0f71-e220-437e-8116-4753950d210f", "timestamp": "1510937110", "to_ids": true, "value": "313cd8de2dd277e5cb18180b1d4ec1c6", "disable_correlation": false, "object_relation": null, "type": "md5"}, {"comment": "", "category": "Network activity", "uuid": "5a0f0f72-7728-4a01-aff3-b664950d210f", "timestamp": "1510937110", "to_ids": true, "value": "http://nainovias.com/HGste3dd", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5a0f0f72-2860-4bfa-8e15-b6cc950d210f", "timestamp": "1510937110", "to_ids": true, "value": "nainovias.com", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "nainovias.com", "category": "Network activity", "uuid": "5a0f0f72-c4f4-4ac7-b55b-4cd2950d210f", "timestamp": "1510937110", "to_ids": false, "value": "185.73.178.91", "disable_correlation": false, "object_relation": null, "type": "ip-dst"}, {"comment": "", "category": "Network activity", "uuid": "5a0f0f72-8954-4a97-9408-5d86950d210f", "timestamp": "1510937110", "to_ids": true, "value": "http://nieuwsbrief.pilisoft.be/HGste3dd", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5a0f0f73-4090-481a-bff8-b84a950d210f", "timestamp": "1510937110", "to_ids": true, "value": "nieuwsbrief.pilisoft.be", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "nieuwsbrief.pilisoft.be", "category": "Network activity", "uuid": "5a0f0f73-f9e8-41da-8979-4764950d210f", "timestamp": "1510937110", "to_ids": false, "value": "81.95.121.146", "disable_correlation": false, "object_relation": null, "type": "ip-dst"}, {"comment": "", "category": "Network activity", "uuid": "5a0f0f73-1e78-47c0-94c8-5dfc950d210f", "timestamp": "1510937111", "to_ids": true, "value": "http://numdex.be/HGste3dd", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5a0f0f73-8f54-45a7-80d9-5d51950d210f", "timestamp": "1510937111", "to_ids": true, "value": "numdex.be", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "numdex.be", "category": "Network activity", "uuid": "5a0f0f74-2184-4643-b2c7-4474950d210f", "timestamp": "1510937111", "to_ids": false, "value": "94.126.70.249", "disable_correlation": false, "object_relation": null, "type": "ip-dst"}, {"comment": "", "category": "Network activity", "uuid": "5a0f0f74-f6d4-4de3-8748-b831950d210f", "timestamp": "1510937111", "to_ids": true, "value": "http://ors-omniprex.com/HGste3dd", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5a0f0f74-0ba0-4e63-87c6-5911950d210f", "timestamp": "1510937111", "to_ids": true, "value": "ors-omniprex.com", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "ors-omniprex.com", "category": "Network activity", "uuid": "5a0f0f74-2c1c-429b-acb0-b664950d210f", "timestamp": "1510937111", "to_ids": false, "value": "82.98.157.74", "disable_correlation": false, "object_relation": null, "type": "ip-dst"}, {"comment": "", "category": "Network activity", "uuid": "5a0f0f75-e714-4a39-9c17-5e08950d210f", "timestamp": "1510937111", "to_ids": true, "value": "http://profrapor.com/HGste3dd", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5a0f0f75-1520-4e20-8af0-4a22950d210f", "timestamp": "1510937111", "to_ids": true, "value": "profrapor.com", "disable_correlation": false, "object_relation": null, "type": "