adulau/misp-circl-feed
1
0
Fork 0
Code Issues 1 Pull requests Projects 1 Releases Packages Wiki Activity Actions
misp-circl-feed/feeds/circl/misp/5b6d858f-6cb0-4a06-b826-57f5950d210f.json

5832 lines
201 KiB
JSON
Raw Permalink Normal View History

chg: [feed] added
2023-04-21 13:25:09 +00:00
{
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"Event": {
"uuid": "5b6d858f-6cb0-4a06-b826-57f5950d210f",
"info": "OSINT - Skygofree: Following in the footsteps of HackingTeam",
"analysis": "2",
"published": true,
"timestamp": "1538565628",
"date": "2018-01-16",
"threat_level_id": "3",
"publish_timestamp": "1538565735",
"extends_uuid": "",
"Orgc": {
"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f",
"name": "CIRCL"
},
"Tag": [
{
"colour": "#00223b",
"name": "osint:source-type=\"blog-post\""
},
{
"colour": "#ffffff",
"name": "tlp:white"
},
{
"colour": "#0088cc",
"name": "misp-galaxy:android=\"Skygofree\""
},
{
"colour": "#211c1c",
"name": "Android Malware"
},
{
"colour": "#5f0077",
"name": "ms-caro-malware:malware-platform=\"AndroidOS\""
},
{
"colour": "#001a40",
"name": "ms-caro-malware-full:malware-platform=\"AndroidOS\""
}
],
"Attribute": [
{
"comment": "",
"uuid": "5b6d869f-b8cc-460b-99fa-a199950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1533904780",
"to_ids": false,
"deleted": false,
"value": "https://securelist.com/skygofree-following-in-the-footsteps-of-hackingteam/83603/",
"type": "link",
"Tag": [
{
"colour": "#00223b",
"name": "osint:source-type=\"blog-post\""
}
]
},
{
"comment": "",
"uuid": "5b6d8769-acd4-435a-a6d6-7e1e950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1533904796",
"to_ids": false,
"deleted": false,
"value": "At the beginning of October 2017, we discovered new Android spyware with several features previously unseen in the wild. In the course of further research, we found a number of related samples that point to a long-term development process. We believe the initial versions of this malware were created at least three years ago \u00e2\u20ac\u201c at the end of 2014. Since then, the implant\u00e2\u20ac\u2122s functionality has been improving and remarkable new features implemented, such as the ability to record audio surroundings via the microphone when an infected device is in a specified location; the stealing of WhatsApp messages via Accessibility Services; and the ability to connect an infected device to Wi-Fi networks controlled by cybercriminals.\r\nWe observed many web landing pages that mimic the sites of mobile operators and which are used to spread the Android implants. These domains have been registered by the attackers since 2015. According to our telemetry, that was the year the distribution campaign was at its most active. The activities continue: the most recently observed domain was registered on October 31, 2017. Based on our KSN statistics, there are several infected individuals, exclusively in Italy.\r\nMoreover, as we dived deeper into the investigation, we discovered several spyware tools for Windows that form an implant for exfiltrating sensitive data on a targeted machine. The version we found was built at the beginning of 2017, and at the moment we are not sure whether this implant has been used in the wild.We named the malware Skygofree, because we found the word in one of the domains*",
"type": "text",
"Tag": [
{
"colour": "#00223b",
"name": "osint:source-type=\"blog-post\""
}
]
},
{
"comment": "Appendix \u00e2\u20ac\u201c Indicators of Compromise",
"uuid": "5b6d8809-0244-4327-9791-7cfd950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1533904932",
"to_ids": false,
"deleted": false,
"value": "https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/03/07164028/Skygofree_appendix_eng.pdf",
"type": "link",
"Tag": [
{
"colour": "#002b4a",
"name": "osint:source-type=\"technical-report\""
}
]
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8916-d718-4b4a-8a41-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905174",
"to_ids": true,
"deleted": false,
"value": "119.network",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8917-bcbc-4524-b1bc-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905175",
"to_ids": true,
"deleted": false,
"value": "119.business",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8917-1438-4e0f-8fd5-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905175",
"to_ids": true,
"deleted": false,
"value": "timbox.info",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8918-3c0c-4fca-a73b-57f5950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533905176",
"to_ids": true,
"deleted": false,
"value": "vodafoneinfinity.sytes.net",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8918-9248-4584-902d-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905176",
"to_ids": true,
"deleted": false,
"value": "vodafone.press",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8919-3f18-4f18-9ba5-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905177",
"to_ids": true,
"deleted": false,
"value": "voda.mobi",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8919-a254-4b06-b0ab-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905177",
"to_ids": true,
"deleted": false,
"value": "190.network",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d891a-f264-4f58-bab4-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905178",
"to_ids": true,
"deleted": false,
"value": "tre.support",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d891a-c58c-46e2-8cc5-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905178",
"to_ids": true,
"deleted": false,
"value": "3g.mobi",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d891a-3414-4db2-bca9-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905178",
"to_ids": true,
"deleted": false,
"value": "h3g.co",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d891b-ad98-4150-85ad-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905179",
"to_ids": true,
"deleted": false,
"value": "h3g.info",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d891c-2734-4ee8-9fc0-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905180",
"to_ids": true,
"deleted": false,
"value": "155wind.mobi",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d891e-fdc4-42d3-ba1a-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905182",
"to_ids": true,
"deleted": false,
"value": "wind.support",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d891f-558c-4449-864e-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905183",
"to_ids": true,
"deleted": false,
"value": "windupdate.serveftp.com",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8920-9a20-4b37-9365-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905184",
"to_ids": true,
"deleted": false,
"value": "skygofree.sytes.net",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8921-5af0-41ca-b69f-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905185",
"to_ids": true,
"deleted": false,
"value": "digimobil.mobi",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8923-6370-4714-ba67-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905187",
"to_ids": true,
"deleted": false,
"value": "kenamobile.mobi",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8924-b234-44da-a068-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905188",
"to_ids": true,
"deleted": false,
"value": "lycamobile.mobi",
"type": "domain"
},
{
"comment": "Domains related to distribution campaign",
"uuid": "5b6d8925-2c00-4026-82e3-57f5950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533905189",
"to_ids": true,
"deleted": false,
"value": "postemobile.help",
"type": "domain"
},
{
"comment": "Platform Android, Comment and Control Server",
"uuid": "5b6d8d91-1b94-4522-8633-cbfc950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533906321",
"to_ids": true,
"deleted": false,
"value": "217.194.13.133",
"type": "ip-dst"
},
{
"comment": "",
"uuid": "5b6d90f1-3bf4-4746-a265-4d62950d210f",
"disable_correlation": false,
"category": "Artifacts dropped",
"timestamp": "1538565263",
"to_ids": true,
"deleted": false,
"value": "mutex_var_AU",
"type": "mutex"
},
{
"comment": "",
"uuid": "5b6d9fab-3cf0-4839-8421-cc8c950d210f",
"disable_correlation": false,
"category": "Artifacts dropped",
"timestamp": "1538565263",
"to_ids": true,
"deleted": false,
"value": "mutex_var_K",
"type": "mutex"
},
{
"comment": "",
"uuid": "5b6da192-aa4c-4141-9993-b712950d210f",
"disable_correlation": false,
"category": "Artifacts dropped",
"timestamp": "1538565263",
"to_ids": true,
"deleted": false,
"value": "mutex_var_xboz",
"type": "mutex"
},
{
"comment": "",
"uuid": "5b6da23b-5980-40d9-b40e-fc18950d210f",
"disable_correlation": false,
"category": "Artifacts dropped",
"timestamp": "1538565263",
"to_ids": true,
"deleted": false,
"value": "mutex_var_SE",
"type": "mutex"
},
{
"comment": "",
"uuid": "5b6da2c9-e668-4985-a4c1-a1dd950d210f",
"disable_correlation": false,
"category": "Artifacts dropped",
"timestamp": "1538565263",
"to_ids": true,
"deleted": false,
"value": "mutex_var_scren",
"type": "mutex"
},
{
"comment": "",
"uuid": "5b6da343-5348-45c3-88f4-4756950d210f",
"disable_correlation": false,
"category": "Artifacts dropped",
"timestamp": "1538565263",
"to_ids": true,
"deleted": false,
"value": "mutex_var_Re_v_5",
"type": "mutex"
},
{
"comment": "Platform Android, Comment and Control Server",
"uuid": "5b6da485-3f88-4f5a-90e6-4750950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533912251",
"to_ids": true,
"deleted": false,
"value": "url.plus",
"type": "domain"
},
{
"comment": "Platform Android, Comment and Control Server",
"uuid": "5b6da4fd-d71c-4b44-883c-b711950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533912317",
"to_ids": true,
"deleted": false,
"value": "negg.ddns.net",
"type": "domain"
},
{
"comment": "Platform Android, Comment and Control Server",
"uuid": "5b6da52c-53d8-4052-832e-7cfd950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533912395",
"to_ids": true,
"deleted": false,
"value": "negg1.ddns.net",
"type": "domain"
},
{
"comment": "Platform Android, Comment and Control Server",
"uuid": "5b6da574-aeb4-4d95-af75-7d0f950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533912436",
"to_ids": true,
"deleted": false,
"value": "negg2.ddns.net",
"type": "domain"
},
{
"comment": "Platform Android, Comment and Control Server",
"uuid": "5b6da5a9-55e4-4e73-b66d-e737950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533912489",
"to_ids": true,
"deleted": false,
"value": "79.3.197.89",
"type": "ip-dst"
},
{
"comment": "Platforms Android and Windows, Comment and Control Server",
"uuid": "5b6da5da-1b0c-41b0-b0d9-a198950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533912538",
"to_ids": true,
"deleted": false,
"value": "54.67.109.199",
"type": "ip-dst"
},
{
"comment": "Platform Windows, Comment and Control Server",
"uuid": "5b6da61e-8dd4-4656-ba3b-cbf1950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1533912606",
"to_ids": true,
"deleted": false,
"value": "80.21.172.8",
"type": "ip-dst"
},
{
"comment": "Address to download the parser payload",
"uuid": "5b7e9771-afcc-4953-9591-a3d0950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535022961",
"to_ids": true,
"deleted": false,
"value": "http://url.plus/Updates/tt/parser.apk",
"type": "url"
},
{
"comment": "After launch of skype_sync2.exe it downloads a codec for MP3 encoding directly from this address.",
"uuid": "5b7ea118-b9ec-4598-b96a-49b7950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535025464",
"to_ids": true,
"deleted": false,
"value": "http://54.67.109.199/skype_resource/libmp3lame.dll",
"type": "url"
},
{
"comment": "The skype_sync2.exe module has the following PDB string:",
"uuid": "5b7ea243-31a0-4e2b-bb58-4fbe950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1535025788",
"to_ids": true,
"deleted": false,
"value": "\\\\vmware-host\\Shared Folders\\dati\\Backup\\Projects\\REcodin_2\\REcodin_2\\obj\\x86\\Release\\REcodin_2.pdb",
"type": "filename"
},
{
"comment": "",
"uuid": "5b8d3a80-f2b8-475d-8b6d-4d87950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982208",
"to_ids": true,
"deleted": false,
"value": "http://217.194.13.133/tre/internet/Configuratore_3.apk",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3a82-73ec-481e-b96e-4136950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982210",
"to_ids": true,
"deleted": false,
"value": "http://217.194.13.133/tre/internet/",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3a86-ad44-4523-8f8a-49a7950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982214",
"to_ids": true,
"deleted": false,
"value": "http://217.194.13.133/appPro_AC.apk",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3a8a-a3cc-42f1-8c76-4b5a950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982218",
"to_ids": true,
"deleted": false,
"value": "http://217.194.13.133/190/configurazione/vodafone/smartphone/VODAFONE%20Configuratore%20v5_4_2.apk",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3a8f-57dc-43f8-87db-466b950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982223",
"to_ids": true,
"deleted": false,
"value": "http://217.194.13.133/190/configurazione/vodafone/smartphone/index.html",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3a93-9ca4-4dee-8a6d-4b53950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982227",
"to_ids": true,
"deleted": false,
"value": "http://217.194.13.133/190/configurazione/vodafone/smartphone/Vodafone%20Configuratore.apk",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3a98-2cf4-4a25-a3a9-4d8d950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982232",
"to_ids": true,
"deleted": false,
"value": "http://vodafoneinfinity.sytes.net/tim/internet/Configuratore_TIM.apk",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3a9c-86d4-4eab-afab-46a4950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982236",
"to_ids": true,
"deleted": false,
"value": "http://vodafoneinfinity.sytes.net/tim/internet/",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3aa0-c450-4c78-a711-4162950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982240",
"to_ids": true,
"deleted": false,
"value": "http://vodafoneinfinity.sytes.net/190/configurazione/vodafone/smartphone/VODAFONE%20Configuratore%20v5_4_2.apk",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3aa5-59f8-40ba-bcfd-461a950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982245",
"to_ids": true,
"deleted": false,
"value": "http://vodafoneinfinity.sytes.net/190/configurazione/vodafone/smartphone/",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3aa9-402c-476e-8a8f-41b7950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982249",
"to_ids": true,
"deleted": false,
"value": "http://windupdate.serveftp.com/wind/LTE/WIND%20Configuratore%20v5_4_2.apk",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3aad-c6b0-4bf4-b585-46e3950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982253",
"to_ids": true,
"deleted": false,
"value": "http://windupdate.serveftp.com/wind/LTE/",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3ab2-e240-442e-b612-4ac6950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982258",
"to_ids": true,
"deleted": false,
"value": "http://119.network/lte/Internet-TIM-4G-LTE.apk",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3ab6-a73c-4f1d-982c-4590950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982262",
"to_ids": true,
"deleted": false,
"value": "http://119.network/lte/download.html",
"type": "url"
},
{
"comment": "",
"uuid": "5b8d3aba-54d0-4e0a-8721-42ce950d210f",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1535982266",
"to_ids": true,
"deleted": false,
"value": "http://119.network/lte/Configuratore_TIM.apk",
"type": "url"
},
{
"comment": "Attribute #1268287 enriched by dns.",
"uuid": "5bb4a4c2-13a4-458d-b7a8-45ffe387cbd9",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1538565314",
"to_ids": false,
"deleted": false,
"value": "52.88.53.237",
"type": "ip-src"
},
{
"comment": "Attribute #1268289 enriched by dns.",
"uuid": "5bb4a4c4-0e38-4d3e-94b5-4f8fe387cbd9",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1538565316",
"to_ids": false,
"deleted": false,
"value": "184.168.221.13",
"type": "ip-src"
},
{
"comment": "Attribute #1268291 enriched by dns.",
"uuid": "5bb4a4c5-0a94-411e-9ae8-4f03e387cbd9",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1538565317",
"to_ids": false,
"deleted": false,
"value": "184.168.221.21",
"type": "ip-src"
},
{
"comment": "Attribute #1268292 enriched by dns.",
"uuid": "5bb4a4c9-5554-4bab-9ae0-4fbbe387cbd9",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1538565321",
"to_ids": false,
"deleted": false,
"value": "184.168.221.12",
"type": "ip-src"
},
{
"comment": "Attribute #1268295 enriched by dns.",
"uuid": "5bb4a4ca-fe88-4bac-b21e-4a3ee387cbd9",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1538565322",
"to_ids": false,
"deleted": false,
"value": "208.109.232.108",
"type": "ip-src"
},
{
"comment": "Attribute #1268296 enriched by dns.",
"uuid": "5bb4a4cb-d184-49ea-a5c8-42fae387cbd9",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1538565323",
"to_ids": false,
"deleted": false,
"value": "184.168.221.61",
"type": "ip-src"
},
{
"comment": "Attribute #1268297 enriched by dns.",
"uuid": "5bb4a4cb-ceb0-47d2-a406-4886e387cbd9",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1538565323",
"to_ids": false,
"deleted": false,
"value": "50.63.202.56",
"type": "ip-src"
},
{
"comment": "Attribute #1268298 enriched by dns.",
"uuid": "5bb4a4cc-c0d0-453d-ab9e-4ccde387cbd9",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1538565324",
"to_ids": false,
"deleted": false,
"value": "184.168.221.23",
"type": "ip-src"
},
{
"comment": "Attribute #1268443 enriched by dns.",
"uuid": "5bb4a4cd-13f8-45ed-81a5-4fcee387cbd9",
"disable_correlation": false,
"category": "Network activity",
"timestamp": "1538565325",
"to_ids": false,
"deleted": false,
"value": "144.217.82.94",
"type": "ip-src"
}
],
"Object": [
{
"comment": "Android",
"uuid": "5b6d8b20-12a8-4910-aeae-57f5950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533905696",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d8b20-096c-46c5-bbbf-57f5950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533905696",
"to_ids": true,
"deleted": false,
"value": "0bc28ac5f2cadd524e7f443e06ad2a2b",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d8b22-3898-494a-8a9b-57f5950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533905698",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d8bac-aa38-4fd7-b277-7d0f950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533905836",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d8bac-9bf8-4268-a002-7d0f950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533905836",
"to_ids": true,
"deleted": false,
"value": "39fca709b416d8da592de3a3f714dce8",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d8bad-44f4-4709-acba-7d0f950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533905837",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android payload",
"uuid": "5b6d8c99-441c-4305-9431-4a6f950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533906073",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d8c99-4d3c-496c-afc8-48fd950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533906073",
"to_ids": true,
"deleted": false,
"value": "6964866106c0a353a7b91b580933c5d6",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d8c9b-7fc0-4cfc-832d-409b950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1533906075",
"to_ids": true,
"deleted": false,
"value": "update_reb.zip",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6d8c9b-3028-430e-bf4c-4e02950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533906075",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Module",
"uuid": "5b6d908d-7b7c-48a2-9f5d-cc41950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1535023949",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b6d9128-c6b0-4cd4-a4b6-a1d8950d210f",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "related-to",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1533907240",
"referenced_uuid": "5b6d90f1-3bf4-4746-a265-4d62950d210f",
"object_uuid": "5b6d908d-7b7c-48a2-9f5d-cc41950d210f"
}
],
"Attribute": [
{
"comment": "",
"uuid": "5b6d908d-1c80-4e5d-bf16-cc41950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1535023946",
"to_ids": false,
"deleted": false,
"value": "system.exe",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6d908d-003c-467f-a56e-cc41950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535023946",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b7e9b4a-76d0-4f5e-9f37-fc04950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535023946",
"to_ids": false,
"deleted": false,
"value": "%APPDATA%/myupd/aud/",
"type": "text",
"object_relation": "path"
}
]
},
{
"comment": "Android",
"uuid": "5b6d923b-1720-4be7-a432-cc41950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533907515",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d923b-0750-4121-a7a7-cc41950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533907515",
"to_ids": true,
"deleted": false,
"value": "70a937b2504b3ad6c623581424c7e53d",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d923c-0358-4e21-b7f3-cc41950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533907516",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d92d3-3150-429c-8aaa-b711950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533907667",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d92d3-c8c0-497d-8933-b711950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533907667",
"to_ids": true,
"deleted": false,
"value": "c091489a82263899d02b363b289a37f6",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d92d4-ce74-4f38-b822-b711950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533907668",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "",
"uuid": "5b6d9322-cf1c-4259-bed4-a179950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533907746",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9322-f1ac-4538-89fb-a179950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533907746",
"to_ids": true,
"deleted": false,
"value": "e12b9af5df1c638ef5a099961ffbe344",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9322-20c0-4832-84fe-a179950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533907746",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "",
"uuid": "5b6d9345-e134-4ff7-ae7d-cd92950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533907781",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9345-4a7c-4dd6-a0d5-cd92950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533907781",
"to_ids": true,
"deleted": false,
"value": "708445b8d358c254e861effffd4f819b",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9346-dfb8-4868-b386-cd92950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533907782",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d93f0-8528-4aa3-b1ea-4666950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533907952",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d93f0-9158-41ee-86ef-4656950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533907952",
"to_ids": true,
"deleted": false,
"value": "3f0e8a3ad9fab04377b8e9a57a26f972",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d93f1-cd88-4824-ad11-4315950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533907953",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d942f-1c14-47ff-92c6-cc71950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533908015",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d942f-b290-4a97-b937-cc71950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533908015",
"to_ids": true,
"deleted": false,
"value": "d574d0049f797611589803643a8aa3c3",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d942f-c430-4453-b86d-cc71950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533908015",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d9459-7168-46b5-b31c-cc71950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533908057",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9459-e8dc-428a-8359-cc71950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533908057",
"to_ids": true,
"deleted": false,
"value": "6414f4bfbdd08d70c40b107e86276dbb",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d945a-d484-48b9-9d5b-cc71950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533908058",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d9480-6300-4946-a56c-cc54950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533908096",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9481-9580-4919-9455-cc54950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533908097",
"to_ids": true,
"deleted": false,
"value": "90f26adb324a8b36d2cafdd755aa1e61",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9481-86a4-4f18-ac3b-cc54950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533908097",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d94ae-15c4-4c52-a4b0-a1de950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533908142",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d94af-39dc-4640-891c-a1de950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533908143",
"to_ids": true,
"deleted": false,
"value": "a2a8e8ac6f5fa5801395252e11afb356",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d94af-2780-4216-baf5-a1de950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533908143",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d94fd-4258-4009-9aaf-cc71950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533908221",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d94fe-f1e4-44a2-955d-cc71950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533908222",
"to_ids": true,
"deleted": false,
"value": "ce241b48377ca216d8f2017991c1cef0",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d94fe-ccbc-4f4b-af6c-cc71950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533908222",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d952c-48a4-4f24-8b5f-7cfd950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533908268",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d952c-5294-454f-a40d-7cfd950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533908268",
"to_ids": true,
"deleted": false,
"value": "0be2b5394dafb76efc54bd6113ac8689",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d952d-98dc-42e4-b816-7cfd950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533908269",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d956a-4d40-426d-baaa-a197950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533908330",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d956b-afb4-4a56-97df-a197950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533908331",
"to_ids": true,
"deleted": false,
"value": "d99a3c4348c88cdfa59e90d1b3b94fc3",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d956b-ce9c-46cd-aaf5-a197950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533908331",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d9595-20e0-4fe6-add9-cc54950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533908373",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9595-137c-4751-8586-cc54950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533908373",
"to_ids": true,
"deleted": false,
"value": "a287a434a0d40833d3ebf5808950b858",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9596-1914-4934-ac64-cc54950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533908374",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d9b83-f57c-49d1-8d6e-cc8c950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533910122",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9b84-2f40-42ec-8db9-cc8c950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533910122",
"to_ids": true,
"deleted": false,
"value": "7e6cb66a3623258444639d1fc2fd533f",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9b84-8298-4485-bab7-cc8c950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1533910122",
"to_ids": false,
"deleted": false,
"value": "update_set.zip",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6d9b84-ac84-4b27-86c7-cc8c950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533910122",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d9c4f-7290-45f0-ac9e-cbf1950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533910095",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9c4f-0850-40ee-a123-cbf1950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533910095",
"to_ids": true,
"deleted": false,
"value": "d9c7349e807e0f12eaa67b2de522954f",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9c4f-38d4-4721-ba01-cbf1950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1533910095",
"to_ids": false,
"deleted": false,
"value": "update_set.zip",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6d9c4f-c934-4c6a-b12e-cbf1950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533910095",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d9d0f-9fbc-47c4-b8ef-fc06950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533910287",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9d0f-d828-4612-a1f3-fc06950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533910287",
"to_ids": true,
"deleted": false,
"value": "2c21f61a8df19d07fd0f42b631151517",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9d0f-3a80-4454-966a-fc06950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1533910287",
"to_ids": false,
"deleted": false,
"value": "update_dev.zip",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6d9d0f-b66c-4898-a199-fc06950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533910287",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d9d6d-1848-48ca-8d1c-cd99950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533910381",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9d6e-667c-4e29-834f-cd99950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533910382",
"to_ids": true,
"deleted": false,
"value": "4f76bdfc40529984bf8e8a05d665cef8",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9d6e-7e74-485c-bb71-cd99950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1533910382",
"to_ids": false,
"deleted": false,
"value": "parser.apk",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6d9d6e-3414-4a3d-a3e6-cd99950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533910382",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Android",
"uuid": "5b6d9e03-619c-4049-9557-7cfd950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533910531",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9e03-5320-4b13-b84d-7cfd950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533910531",
"to_ids": true,
"deleted": false,
"value": "e2d6f1263000086e3146d5b5a3b78038",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9e04-fe20-48fb-bcb6-7cfd950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1533910532",
"to_ids": false,
"deleted": false,
"value": "startup.arm64-v8a.zip",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6d9e04-6a3c-4d9a-9576-7cfd950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1533910532",
"to_ids": false,
"deleted": false,
"value": "startup.armeabi.zip",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6d9e04-d614-4049-8985-7cfd950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1533910532",
"to_ids": false,
"deleted": false,
"value": "startup.armeabi-v7a.zip",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6d9e04-b614-49d6-b3f6-7cfd950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533910532",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Windows",
"uuid": "5b6d9e59-14a8-4925-a9c1-cc8c950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1535023186",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9e59-c8e8-4cc3-9af0-cc8c950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1535023186",
"to_ids": true,
"deleted": false,
"value": "55fb01048b6287eadcbd9a0f86d21adf",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9e59-5c08-4a9a-a083-cc8c950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535023186",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b7e9852-dd3c-4b2b-948c-a3d0950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1535023186",
"to_ids": true,
"deleted": false,
"value": "msconf.exe",
"type": "filename",
"object_relation": "filename"
}
]
},
{
"comment": "Windows",
"uuid": "5b6d9e85-048c-4c1a-ace7-fc06950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533910661",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9e85-9f28-4ba0-ab44-fc06950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533910661",
"to_ids": true,
"deleted": false,
"value": "f673bb1d519138ced7659484c0b66c5b",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9e85-6834-4c83-b238-fc06950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533910661",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Windows",
"uuid": "5b6d9eae-1e14-48eb-95ae-e737950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533910702",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9eae-4204-47bb-b6db-e737950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533910702",
"to_ids": true,
"deleted": false,
"value": "d3baa45ed342fbc5a56d974d36d5f73f",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9eae-5db0-45eb-984b-e737950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533910702",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Windows",
"uuid": "5b6d9ed4-4744-46d8-bf6b-cd92950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533910740",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9ed4-fbb4-4753-b87d-cd92950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533910740",
"to_ids": true,
"deleted": false,
"value": "395f9f87df728134b5e3c1ca4d48e9fa",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9ed5-cdb0-4449-8683-cd92950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533910741",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Windows",
"uuid": "5b6d9ef9-33e0-49f8-afc4-a1dd950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533910777",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9ef9-8a08-495b-b7ec-a1dd950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533910777",
"to_ids": true,
"deleted": false,
"value": "16311b16fd48c1c87c6476a455093e7a",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9ef9-a354-48c9-8dc4-a1dd950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533910777",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Windows",
"uuid": "5b6d9f15-302c-4528-b5b7-e737950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533910805",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"Attribute": [
{
"comment": "",
"uuid": "5b6d9f15-4f38-4817-878b-e737950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1533910805",
"to_ids": true,
"deleted": false,
"value": "6bcc3559d7405f25ea403317353d905f",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b6d9f16-ae48-4684-84b3-e737950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533910806",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Module",
"uuid": "5b6da0bc-5908-45f0-a3cb-7d2f950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1535024027",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b6da169-23f4-41ff-a3e2-7d0f950d210f",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "related-to",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1533911401",
"referenced_uuid": "5b6d9fab-3cf0-4839-8421-cc8c950d210f",
"object_uuid": "5b6da0bc-5908-45f0-a3cb-7d2f950d210f"
},
{
"comment": "",
"uuid": "5b6da1b4-9740-4ed3-8998-b712950d210f",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "related-to",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1533911476",
"referenced_uuid": "5b6da192-aa4c-4141-9993-b712950d210f",
"object_uuid": "5b6da0bc-5908-45f0-a3cb-7d2f950d210f"
}
],
"Attribute": [
{
"comment": "",
"uuid": "5b6da0bc-6b18-450b-a17e-7d2f950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1535024024",
"to_ids": false,
"deleted": false,
"value": "update.exe",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6da0bc-8440-49ca-be54-7d2f950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535024024",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b7e9b99-fb50-43ec-88d8-40aa950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535024025",
"to_ids": false,
"deleted": false,
"value": "%APPDATA%/myupd_tmp/txt/",
"type": "text",
"object_relation": "path"
},
{
"comment": "",
"uuid": "5b7e9b99-3d00-433e-b666-441e950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535024025",
"to_ids": false,
"deleted": false,
"value": "%APPDATA%/myupd/txt/",
"type": "text",
"object_relation": "path"
}
]
},
{
"comment": "Module",
"uuid": "5b6da202-2654-49e0-93dd-a1dd950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1533911660",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b6da269-8378-4a55-82e0-cc8c950d210f",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "related-to",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1533911657",
"referenced_uuid": "5b6da23b-5980-40d9-b40e-fc18950d210f",
"object_uuid": "5b6da202-2654-49e0-93dd-a1dd950d210f"
}
],
"Attribute": [
{
"comment": "",
"uuid": "5b6da202-0c98-4e15-a84b-a1dd950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1533911554",
"to_ids": false,
"deleted": false,
"value": "network.exe",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6da203-a454-4aa5-93f4-a1dd950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1533911555",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
}
]
},
{
"comment": "Module",
"uuid": "5b6da2a2-b7e0-4bec-ac25-7d2f950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1535024090",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b6da2e4-ef10-4a91-8728-cc8c950d210f",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "related-to",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1533911780",
"referenced_uuid": "5b6da2c9-e668-4985-a4c1-a1dd950d210f",
"object_uuid": "5b6da2a2-b7e0-4bec-ac25-7d2f950d210f"
}
],
"Attribute": [
{
"comment": "",
"uuid": "5b6da2a2-7370-4461-965c-7d2f950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1535024087",
"to_ids": false,
"deleted": false,
"value": "wow.exe",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6da2a2-2f58-4df3-a7bb-7d2f950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535024087",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b7e9bd8-8ef0-40c5-b985-4835950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535024088",
"to_ids": false,
"deleted": false,
"value": "%APPDATA%/myupd/scr/",
"type": "text",
"object_relation": "path"
}
]
},
{
"comment": "Module",
"uuid": "5b6da326-0c08-44a0-90be-fc18950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1535023551",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b6da382-4780-4c28-aa2d-7d2f950d210f",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "related-to",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1533911938",
"referenced_uuid": "5b6da343-5348-45c3-88f4-4756950d210f",
"object_uuid": "5b6da326-0c08-44a0-90be-fc18950d210f"
}
],
"Attribute": [
{
"comment": "",
"uuid": "5b6da327-8060-476b-bbdf-fc18950d210f",
"disable_correlation": true,
"category": "Payload delivery",
"timestamp": "1535023548",
"to_ids": false,
"deleted": false,
"value": "msconf.exe",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b6da327-d3c8-4cf5-b190-fc18950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535023548",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b7e99bd-a06c-44b8-85de-4dbd950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535023549",
"to_ids": false,
"deleted": false,
"value": "%APPDATA%/myupd/gen/",
"type": "text",
"object_relation": "path"
}
]
},
{
"comment": "",
"uuid": "5b7141f1-ca14-400c-879d-8bd7950d210f",
"sharing_group_id": "0",
"meta-category": "vulnerability",
"timestamp": "1538565513",
"description": "Vulnerability object describing a common vulnerability enumeration which can describe published, unpublished, under review or embargo vulnerability for software, equipments or hardware.",
"deleted": false,
"template_version": "5",
"distribution": "5",
"template_uuid": "81650945-f186-437b-8945-9f31715d32da",
"name": "vulnerability",
"Attribute": [
{
"comment": "",
"uuid": "5b7141f1-406c-40cd-9b8d-8bd7950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "7.2",
"type": "float",
"object_relation": "cvss-score"
},
{
"comment": "",
"uuid": "5b7141f1-cb04-412b-a84c-8bd7950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "https://cve.circl.lu/cve/CVE-2013-2094",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b7141f2-d7b0-4898-b9e0-8bd7950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8176cced706b5e5d15887584150764894e94e02f",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b7141f2-e1a8-400d-8e1c-8bd7950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "http://lists.centos.org/pipermail/centos-announce/2013-May/019729.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b7141f3-4718-49de-9230-8bd7950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "http://lists.centos.org/pipermail/centos-announce/2013-May/019733.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b7141f3-4a2c-4fc8-beac-8bd7950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00008.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b7141f3-60d8-40d1-ae0c-8bd7950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00018.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b7141f3-4d58-40b3-b9e0-8bd7950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "Published",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b7141f4-7708-4417-a5d3-8bd7950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "2013-05-14T16:55:00",
"type": "datetime",
"object_relation": "published"
},
{
"comment": "",
"uuid": "5b7141f4-2e9c-4398-86e1-8bd7950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "The perf_swevent_init function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type, which allows local users to gain privileges via a crafted perf_event_open system call.",
"type": "text",
"object_relation": "summary"
},
{
"comment": "",
"uuid": "5b7141f4-6e2c-4600-a17d-8bd7950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.8.8\r\nLinux Kernel 3.8.4\r\nLinux Kernel 3.8.1\r\nLinux Kernel 3.8.0\r\nLinux Kernel 3.8.2",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b7141f4-b1ec-4d63-a865-8bd7950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "2017-01-06T21:59:00",
"type": "datetime",
"object_relation": "modified"
},
{
"comment": "",
"uuid": "5b7141f4-8790-4100-8d11-8bd7950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1538565513",
"to_ids": false,
"deleted": false,
"value": "CVE-2013-2094",
"type": "text",
"object_relation": "id"
}
]
},
{
"comment": "Main purpose of this module is to exfiltrate Skype call recordings. Written in .Net. ",
"uuid": "5b7ea077-cfbc-4059-9ac0-4554950d210f",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1535025538",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b7ea17f-3118-4472-87c4-a3d6950d210f",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "related-to",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1535025535",
"referenced_uuid": "5b7ea118-b9ec-4598-b96a-49b7950d210f",
"object_uuid": "5b7ea077-cfbc-4059-9ac0-4554950d210f"
}
],
"Attribute": [
{
"comment": "",
"uuid": "5b7ea077-f7b8-4e62-b0dc-4784950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1535025271",
"to_ids": true,
"deleted": false,
"value": "6bcc3559d7405f25ea403317353d905f",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "5b7ea077-45b8-4901-bc69-4331950d210f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1535025271",
"to_ids": true,
"deleted": false,
"value": "skype_sync2.exe",
"type": "filename",
"object_relation": "filename"
},
{
"comment": "",
"uuid": "5b7ea078-7620-4db2-932a-4e2b950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535025272",
"to_ids": false,
"deleted": false,
"value": "Malicious",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b7ea078-8848-4285-b021-4515950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535025272",
"to_ids": false,
"deleted": false,
"value": "%APPDATA%/myupd_tmp/skype/",
"type": "text",
"object_relation": "path"
},
{
"comment": "",
"uuid": "5b7ea078-6774-4bfd-b221-4134950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535025272",
"to_ids": false,
"deleted": false,
"value": "%APPDATA%/myupd/skype/",
"type": "text",
"object_relation": "path"
}
]
},
{
"comment": "Attempt to get root privilages",
"uuid": "5b8d2e5e-fd90-47bd-941d-4e98950d210f",
"sharing_group_id": "0",
"meta-category": "vulnerability",
"timestamp": "1535979102",
"description": "Vulnerability object describing a common vulnerability enumeration which can describe published, unpublished, under review or embargo vulnerability for software, equipments or hardware.",
"deleted": false,
"template_version": "5",
"distribution": "5",
"template_uuid": "81650945-f186-437b-8945-9f31715d32da",
"name": "vulnerability",
"Attribute": [
{
"comment": "",
"uuid": "5b8d2e5e-6918-48e1-ab02-4337950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535979102",
"to_ids": false,
"deleted": false,
"value": "7.2",
"type": "float",
"object_relation": "cvss-score"
},
{
"comment": "",
"uuid": "5b8d2e5e-6124-4017-84f5-4396950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535979102",
"to_ids": false,
"deleted": false,
"value": "7.2 (as of 02-09-2014 - 14:41)",
"type": "text",
"object_relation": "cvss-string"
},
{
"comment": "",
"uuid": "5b8d2e5e-d5a4-432c-93f2-4804950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535979102",
"to_ids": false,
"deleted": false,
"value": "https://www.codeaurora.org/projects/security-advisories/uncontrolled-memory-mapping-camera-driver-cve-2013-2595",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d2e5f-c250-46a7-8000-4e62950d210f",
"disable_correlation": true,
"category": "Internal reference",
"timestamp": "1535979103",
"to_ids": false,
"deleted": false,
"value": "http://cve.circl.lu/cve/CVE-2013-2595",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d2e5f-e440-4147-a87c-464e950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535979103",
"to_ids": false,
"deleted": false,
"value": "Published",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b8d2e60-74b0-4ade-9c1c-4edf950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535979104",
"to_ids": false,
"deleted": false,
"value": "2014-08-31T06:55:00",
"type": "datetime",
"object_relation": "published"
},
{
"comment": "",
"uuid": "5b8d2e60-3324-40a1-ac17-499a950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535979104",
"to_ids": false,
"deleted": false,
"value": "The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, enables MSM_CAM_IOCTL_SET_MEM_MAP_INFO ioctl calls for an unrestricted mmap interface, which allows attackers to gain privileges via a crafted application.",
"type": "text",
"object_relation": "description"
},
{
"comment": "",
"uuid": "5b8d2e61-7f40-4bef-896f-44a6950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535979105",
"to_ids": false,
"deleted": false,
"value": "2014-02-09T14:41:00",
"type": "datetime",
"object_relation": "modified"
},
{
"comment": "",
"uuid": "5b8d2e61-d9e8-4ae2-baf5-4036950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535979105",
"to_ids": false,
"deleted": false,
"value": "CVE-2013-2595",
"type": "text",
"object_relation": "id"
}
]
},
{
"comment": "Attempt to get root privilages",
"uuid": "5b8d306d-ed34-4a9c-9350-49ca950d210f",
"sharing_group_id": "0",
"meta-category": "vulnerability",
"timestamp": "1535979629",
"description": "Vulnerability object describing a common vulnerability enumeration which can describe published, unpublished, under review or embargo vulnerability for software, equipments or hardware.",
"deleted": false,
"template_version": "5",
"distribution": "5",
"template_uuid": "81650945-f186-437b-8945-9f31715d32da",
"name": "vulnerability",
"Attribute": [
{
"comment": "",
"uuid": "5b8d306e-0184-4b3c-95e7-4516950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535979630",
"to_ids": false,
"deleted": false,
"value": "7.2",
"type": "float",
"object_relation": "cvss-score"
},
{
"comment": "",
"uuid": "5b8d306e-f2a0-445a-ac61-47b2950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535979630",
"to_ids": false,
"deleted": false,
"value": "7.2 (as of 20-11-2013 - 10:35)",
"type": "text",
"object_relation": "cvss-string"
},
{
"comment": "",
"uuid": "5b8d306e-3094-4cd6-bec6-4f54950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535979630",
"to_ids": false,
"deleted": false,
"value": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8404663f81d212918ff85f493649a7991209fa04",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d306f-e888-49a5-8a3d-4b28950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535979631",
"to_ids": false,
"deleted": false,
"value": "http://www.codeaurora.org/projects/security-advisories/missing-access-checks-putusergetuser-kernel-api-cve-2013-6282",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3071-f6a8-4bf7-ab61-43b0950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535979633",
"to_ids": false,
"deleted": false,
"value": "http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.5.5",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3072-8258-4809-8fff-42e5950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535979634",
"to_ids": false,
"deleted": false,
"value": "http://www.openwall.com/lists/oss-security/2013/11/14/11",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3074-6b6c-4971-b690-4e2c950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535979636",
"to_ids": false,
"deleted": false,
"value": "http://www.securityfocus.com/bid/63734",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3075-0d48-4374-80fb-4a6d950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535979637",
"to_ids": false,
"deleted": false,
"value": "http://www.ubuntu.com/usn/USN-2067-1",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3077-3fb4-42d5-824f-407d950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535979639",
"to_ids": false,
"deleted": false,
"value": "https://github.com/torvalds/linux/commit/8404663f81d212918ff85f493649a7991209fa04",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3078-2bec-47e6-bae6-4fcf950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535979640",
"to_ids": false,
"deleted": false,
"value": "https://www.exploit-db.com/exploits/40975/",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d307a-6a44-4cfc-bba3-4a25950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535979642",
"to_ids": false,
"deleted": false,
"value": "http://cve.circl.lu/cve/CVE-2013-6282",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d307c-2918-4792-990f-4edc950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535979644",
"to_ids": false,
"deleted": false,
"value": "Published",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b8d307c-6568-4d1a-a981-4413950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535979644",
"to_ids": false,
"deleted": false,
"value": "2013-11-20T08:19:00",
"type": "datetime",
"object_relation": "published"
},
{
"comment": "",
"uuid": "5b8d307c-ac1c-4137-8764-4747950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535979644",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel < 3.4.5 - Local Root Exploit (ARM - Android 4.2.2 / 4.4) Local exploit for arm platform",
"type": "text",
"object_relation": "description"
},
{
"comment": "",
"uuid": "5b8d307d-5fa8-4c83-8c9c-4c00950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535979645",
"to_ids": false,
"deleted": false,
"value": "The (1) get_user and (2) put_user API functions in the Linux kernel before 3.5.5 on the v6k and v7 ARM platforms do not validate certain addresses, which allows attackers to read or modify the contents of arbitrary kernel memory locations via a crafted application, as exploited in the wild against Android devices in October and November 2013.",
"type": "text",
"object_relation": "summary"
},
{
"comment": "",
"uuid": "5b8d307f-1760-4c06-b952-4c4a950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535979647",
"to_ids": false,
"deleted": false,
"value": "2017-02-09T21:29:00",
"type": "datetime",
"object_relation": "modified"
},
{
"comment": "",
"uuid": "5b8d307f-2998-435a-bad3-4d0a950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535979647",
"to_ids": false,
"deleted": false,
"value": "CVE-2013-6282",
"type": "text",
"object_relation": "id"
}
]
},
{
"comment": "Futex aka TowelRoot",
"uuid": "5b8d34d9-a7ac-407e-8faf-4357950d210f",
"sharing_group_id": "0",
"meta-category": "vulnerability",
"timestamp": "1535981021",
"description": "Vulnerability object describing a common vulnerability enumeration which can describe published, unpublished, under review or embargo vulnerability for software, equipments or hardware.",
"deleted": false,
"template_version": "5",
"distribution": "5",
"template_uuid": "81650945-f186-437b-8945-9f31715d32da",
"name": "vulnerability",
"Attribute": [
{
"comment": "",
"uuid": "5b8d34d9-25ac-474c-8235-4a61950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=e9c243a5a6de0be8e584c604d353412584b592f8",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34db-6508-429a-9f19-4c05950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://linux.oracle.com/errata/ELSA-2014-0771.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34de-2d5c-4e04-9ea7-469f950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://linux.oracle.com/errata/ELSA-2014-3037.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34e0-dbd8-4526-a83b-413c950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://linux.oracle.com/errata/ELSA-2014-3038.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34e2-82a0-45df-9c25-4aec950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://linux.oracle.com/errata/ELSA-2014-3039.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34e4-1018-49e4-8741-47cb950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00014.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34e7-a8f8-4bf0-a716-442e950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00018.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34e9-ab20-4dda-8d33-4998950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00025.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34ec-a1c8-41e2-9926-4ada950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2014-07/msg00006.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34ee-c244-4f7a-89d4-4d37950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34f0-3854-4349-82b3-44ed950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34f3-668c-4c76-a72b-4d13950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://openwall.com/lists/oss-security/2014/06/05/24",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34f5-a924-493a-869c-4d33950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://openwall.com/lists/oss-security/2014/06/06/20",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34f7-4900-45cd-93c8-4ff3950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://rhn.redhat.com/errata/RHSA-2014-0800.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34fa-12ec-4fa8-819b-4251950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://www.debian.org/security/2014/dsa-2949",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34fc-a900-4019-b974-45c9950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://www.exploit-db.com/exploits/35370",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d34fe-250c-41b9-87fd-40de950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://www.openwall.com/lists/oss-security/2014/06/05/22",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3501-a7e8-43c0-a1de-487d950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://www.securityfocus.com/bid/67906",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3503-dca4-49c0-8791-4bf2950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://www.securitytracker.com/id/1030451",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3505-0304-4626-91dc-46b7950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://www.ubuntu.com/usn/USN-2237-1",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3508-3700-4162-a24e-4df2950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://www.ubuntu.com/usn/USN-2240-1",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d350a-5b18-45eb-a0b6-4b7c950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "https://bugzilla.redhat.com/show_bug.cgi?id=1103626",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d350c-2b84-44dc-82be-4a40950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=13fbca4c6ecd96ec1a1cfa2e4f2ce191fe928a5e",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d350f-2ca0-429e-b0c4-4bab950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=54a217887a7b658e2650c3feff22756ab80c7339",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3511-96b0-4e5a-a3fa-4002950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b3eaa9fc5cd0a4d74b18f6b8dc617aeaf1873270",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3513-4520-49be-a85e-4a70950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "https://github.com/torvalds/linux/commit/e9c243a5a6de0be8e584c604d353412584b592f8",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3516-02ac-4485-ace7-40ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "http://cve.circl.lu/cve/CVE-2014-3153",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3518-29a8-4833-b175-4dfd950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Published",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b8d3518-7ccc-43c9-ac56-4829950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "2014-07-06T10:55:00",
"type": "datetime",
"object_relation": "published"
},
{
"comment": "",
"uuid": "5b8d3518-da2c-4511-b5f7-43aa950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEX_REQUEUE command that facilitates unsafe waiter modification.",
"type": "text",
"object_relation": "summary"
},
{
"comment": "",
"uuid": "5b8d351a-7688-4958-b662-4527950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d351d-cd18-46ac-9471-43ae950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14 release candidate 1 cpe:2.3:o:linux:linux_kernel:3.14:rc1",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d351f-71b0-4200-ab73-4b8d950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14 release candidate 2 cpe:2.3:o:linux:linux_kernel:3.14:rc2",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3521-15b4-49c1-aaeb-43e5950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14 release candidate 3 cpe:2.3:o:linux:linux_kernel:3.14:rc3",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3524-89f4-49c6-ac7a-4a1f950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14 release candidate 4 cpe:2.3:o:linux:linux_kernel:3.14:rc4",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3526-71e8-48f3-acc9-4bc9950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14 release candidate 5 cpe:2.3:o:linux:linux_kernel:3.14:rc5",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3529-d7c8-40bf-8bae-45ef950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14 release candidate 6 cpe:2.3:o:linux:linux_kernel:3.14:rc6",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d352b-2bd4-4e17-b4ec-4fc1950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14 release candidate 7 cpe:2.3:o:linux:linux_kernel:3.14:rc7",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d352d-0500-4e15-8332-4200950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14 release candidate 8 cpe:2.3:o:linux:linux_kernel:3.14:rc8",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3530-bb38-4113-944e-401b950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14.1 cpe:2.3:o:linux:linux_kernel:3.14.1",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3532-4d8c-4e7c-abc5-46f8950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14.2 cpe:2.3:o:linux:linux_kernel:3.14.2",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3535-51fc-46ba-b88a-4919950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14.3 cpe:2.3:o:linux:linux_kernel:3.14.3",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3537-2e58-42d3-baa0-4669950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14.4 cpe:2.3:o:linux:linux_kernel:3.14.4",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d353a-4ef0-4c43-9d3e-4c4a950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 3.14.5 cpe:2.3:o:linux:linux_kernel:3.14.5",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d353c-c81c-4fa2-ae5a-46d2950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "RedHat Enterprise MRG 2.0 cpe:2.3:a:redhat:enterprise_mrg:2.0",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d353e-1a7c-44ad-9cda-497d950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "Red Hat Enterprise Linux 6 cpe:2.3:o:redhat:enterprise_linux:6",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3541-d18c-449f-9bc4-4c6f950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "2017-12-28T21:29:00",
"type": "datetime",
"object_relation": "modified"
},
{
"comment": "",
"uuid": "5b8d3541-2158-4be2-9031-418c950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "CVE-2014-3153",
"type": "text",
"object_relation": "id"
},
{
"comment": "",
"uuid": "5b8d35dd-df20-44a7-99ae-44d8950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535981021",
"to_ids": false,
"deleted": false,
"value": "7.2",
"type": "float",
"object_relation": "cvss-score"
}
]
},
{
"comment": "Attempt to get root privileges",
"uuid": "5b8d38fc-abb0-4860-8182-73ee950d210f",
"sharing_group_id": "0",
"meta-category": "vulnerability",
"timestamp": "1535981820",
"description": "Vulnerability object describing a common vulnerability enumeration which can describe published, unpublished, under review or embargo vulnerability for software, equipments or hardware.",
"deleted": false,
"template_version": "5",
"distribution": "5",
"template_uuid": "81650945-f186-437b-8945-9f31715d32da",
"name": "vulnerability",
"Attribute": [
{
"comment": "",
"uuid": "5b8d38fc-ec50-4557-98f4-73ee950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535981820",
"to_ids": false,
"deleted": false,
"value": "4.9",
"type": "float",
"object_relation": "cvss-score"
},
{
"comment": "",
"uuid": "5b8d38ff-e28c-40c6-8c57-73ee950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535981823",
"to_ids": false,
"deleted": false,
"value": "4.9 (as of 21-06-2016 - 15:09)",
"type": "text",
"object_relation": "cvss-string"
},
{
"comment": "",
"uuid": "5b8d38ff-53e0-4e0f-8447-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981823",
"to_ids": false,
"deleted": false,
"value": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a134f083e79fb4c3d0a925691e732c56911b4326",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3902-0e74-4386-b4cd-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981826",
"to_ids": false,
"deleted": false,
"value": "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157788.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3906-c6fc-49da-a6d5-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981830",
"to_ids": false,
"deleted": false,
"value": "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157897.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d390a-aca4-4ad0-87ac-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981834",
"to_ids": false,
"deleted": false,
"value": "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/158804.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d390e-2edc-4234-974f-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981838",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00023.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3911-ff44-48a9-aec2-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981841",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00011.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3915-c2a0-44d8-b2ea-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981845",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00004.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3919-9e08-4206-bdcc-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981849",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00007.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d391d-c64c-4469-8171-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981853",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00009.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3921-53fc-447c-aaf4-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981857",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00008.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3925-0618-4772-aaa1-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981861",
"to_ids": false,
"deleted": false,
"value": "http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00011.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3929-73f0-47ac-a840-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981865",
"to_ids": false,
"deleted": false,
"value": "http://rhn.redhat.com/errata/RHSA-2015-1221.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d392c-210c-4979-aa76-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981868",
"to_ids": false,
"deleted": false,
"value": "http://rhn.redhat.com/errata/RHSA-2015-1534.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3930-9568-4047-9b10-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981872",
"to_ids": false,
"deleted": false,
"value": "http://rhn.redhat.com/errata/RHSA-2015-1564.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3934-3d80-45ec-b394-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981876",
"to_ids": false,
"deleted": false,
"value": "http://rhn.redhat.com/errata/RHSA-2015-1583.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3938-1dec-4c2f-bfb4-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981880",
"to_ids": false,
"deleted": false,
"value": "http://rhn.redhat.com/errata/RHSA-2015-1643.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d393c-bee8-479b-b96b-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981884",
"to_ids": false,
"deleted": false,
"value": "http://www.debian.org/security/2015/dsa-3290",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d393f-e4dc-44bd-b5a6-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981887",
"to_ids": false,
"deleted": false,
"value": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.0.3",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3943-9174-44cf-935e-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981891",
"to_ids": false,
"deleted": false,
"value": "http://www.openwall.com/lists/oss-security/2015/05/02/5",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3947-7d10-4ebb-a1dd-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981895",
"to_ids": false,
"deleted": false,
"value": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d394b-4c40-4ff4-9a8f-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981899",
"to_ids": false,
"deleted": false,
"value": "http://www.securityfocus.com/bid/74450",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d394f-6944-41bb-bc7a-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981903",
"to_ids": false,
"deleted": false,
"value": "http://www.securitytracker.com/id/1033186",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3953-0fa4-47ff-a194-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981907",
"to_ids": false,
"deleted": false,
"value": "http://www.ubuntu.com/usn/USN-2631-1",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3956-371c-45ce-b3e8-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981910",
"to_ids": false,
"deleted": false,
"value": "http://www.ubuntu.com/usn/USN-2632-1",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d395a-d79c-48ce-8c93-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981914",
"to_ids": false,
"deleted": false,
"value": "http://www.ubuntu.com/usn/USN-2633-1",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d395e-6288-4fb8-98d1-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981918",
"to_ids": false,
"deleted": false,
"value": "http://www.ubuntu.com/usn/USN-2634-1",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3961-a2c4-4743-85bb-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981921",
"to_ids": false,
"deleted": false,
"value": "https://bugzilla.redhat.com/show_bug.cgi?id=1218074",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3965-dd3c-4313-9c37-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981925",
"to_ids": false,
"deleted": false,
"value": "https://github.com/torvalds/linux/commit/a134f083e79fb4c3d0a925691e732c56911b4326",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d3969-ddd0-4960-aa69-73ee950d210f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1535981929",
"to_ids": false,
"deleted": false,
"value": "http://cve.circl.lu/cve/CVE-2015-3636",
"type": "link",
"object_relation": "references"
},
{
"comment": "",
"uuid": "5b8d396d-57c8-4139-80de-73ee950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535981933",
"to_ids": false,
"deleted": false,
"value": "Published",
"type": "text",
"object_relation": "state"
},
{
"comment": "",
"uuid": "5b8d396d-0e14-47e6-8bd0-73ee950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535981933",
"to_ids": false,
"deleted": false,
"value": "2015-05-08T21:59:00",
"type": "datetime",
"object_relation": "published"
},
{
"comment": "",
"uuid": "5b8d396d-b1e0-4880-b7c8-73ee950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981933",
"to_ids": false,
"deleted": false,
"value": "The ping_unhash function in net/ipv4/ping.c in the Linux kernel before 4.0.3 does not initialize a certain list data structure during an unhash operation, which allows local users to gain privileges or cause a denial of service (use-after-free and system crash) by leveraging the ability to make a SOCK_DGRAM socket system call for the IPPROTO_ICMP or IPPROTO_ICMPV6 protocol, and then making a connect system call after a disconnect.",
"type": "text",
"object_relation": "summary"
},
{
"comment": "",
"uuid": "5b8d3971-a870-4dc3-9b0b-73ee950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981937",
"to_ids": false,
"deleted": false,
"value": "Linux Kernel 4.0.2 cpe:2.3:o:linux:linux_kernel:4.0.2",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3975-cc9c-417a-97f9-73ee950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981941",
"to_ids": false,
"deleted": false,
"value": "Debian Linux 7.0 cpe:2.3:o:debian:debian_linux:7.0",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3978-93c0-49e1-8c8f-73ee950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981944",
"to_ids": false,
"deleted": false,
"value": "Red Hat Enterprise Linux 6 cpe:2.3:o:redhat:enterprise_linux:6",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d397c-7f54-436b-af64-73ee950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981948",
"to_ids": false,
"deleted": false,
"value": "Canonical Ubuntu Linux 12.04 LTS cpe:2.3:o:canonical:ubuntu_linux:12.04:-:-:-:lts",
"type": "text",
"object_relation": "vulnerable_configuration"
},
{
"comment": "",
"uuid": "5b8d3980-5920-4d24-b990-73ee950d210f",
"disable_correlation": true,
"category": "Other",
"timestamp": "1535981952",
"to_ids": false,
"deleted": false,
"value": "2018-04-01T21:30:00",
"type": "datetime",
"object_relation": "modified"
},
{
"comment": "",
"uuid": "5b8d3980-fa1c-461a-99b9-73ee950d210f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1535981952",
"to_ids": false,
"deleted": false,
"value": "CVE-2015-3636",
"type": "text",
"object_relation": "id"
}
]
},
{
"comment": "",
"uuid": "ef468365-addd-40d5-a24d-543722f12e93",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045347",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314c-686c-4b57-9fef-449d02de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045388",
"referenced_uuid": "68dc24db-7625-4d35-b6d3-c6fb1283bf18",
"object_uuid": "ef468365-addd-40d5-a24d-543722f12e93"
}
],
"Attribute": [
{
"comment": "",
"uuid": "66793ee6-2e58-43c5-a68b-3b29ee235b86",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045344",
"to_ids": true,
"deleted": false,
"value": "16311b16fd48c1c87c6476a455093e7a",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "ec5f6c9f-cdec-4e91-86e9-796b9a6bc8b8",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045345",
"to_ids": true,
"deleted": false,
"value": "b467ff02b2a3ed5c902a8e76316527ae79dd80fe",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "ad08b9b2-f14c-4d89-87c9-2f3096b29b56",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045345",
"to_ids": true,
"deleted": false,
"value": "5f567844bd0da47426d14426d8acbfefad6426c1139648969e3b0dd5352d3ed5",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "68dc24db-7625-4d35-b6d3-c6fb1283bf18",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045346",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "2866c689-6723-4b41-90d7-9ca6b8550254",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045346",
"to_ids": false,
"deleted": false,
"value": "2018-08-10T04:22:44",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "5fed8734-d371-4581-88cd-f6fd4e8d47a4",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045347",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/5f567844bd0da47426d14426d8acbfefad6426c1139648969e3b0dd5352d3ed5/analysis/1533874964/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "e92dcd5e-0717-4da4-97fc-f503e9efb0a6",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045347",
"to_ids": false,
"deleted": false,
"value": "40/67",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "6ccf462a-1c20-452a-be71-cfe9936ed3ba",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045350",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-18cc-456f-85fe-4ddc02de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "d2f2004d-2309-4a22-99cd-031a09bde2f1",
"object_uuid": "6ccf462a-1c20-452a-be71-cfe9936ed3ba"
}
],
"Attribute": [
{
"comment": "",
"uuid": "29cd84d2-5b9f-4899-abdb-0352345ff31c",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045347",
"to_ids": true,
"deleted": false,
"value": "6964866106c0a353a7b91b580933c5d6",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "bfaab625-fbfb-414d-ad3a-d5d767bee035",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045348",
"to_ids": true,
"deleted": false,
"value": "dbfcd7c45371a6bcbfe1e570b9fa4f0480c24796",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "cd850a76-6a0a-4dcf-b7c8-654e2f157787",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045348",
"to_ids": true,
"deleted": false,
"value": "943e1c57294a3163fb77235122143c05919baad0b93cc74c52210b90c9d0d0c9",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "d2f2004d-2309-4a22-99cd-031a09bde2f1",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045348",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "f5e87f4e-d258-4a0e-ad5c-45867585d02b",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045349",
"to_ids": false,
"deleted": false,
"value": "2018-07-18T23:58:40",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "a82685eb-fbba-4863-b744-6b35093d87d4",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045349",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/943e1c57294a3163fb77235122143c05919baad0b93cc74c52210b90c9d0d0c9/analysis/1531958320/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "457681d3-47a8-4c88-b363-e89ce44576bd",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045350",
"to_ids": false,
"deleted": false,
"value": "15/61",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "7d3abf61-6c8e-47c1-93eb-d9f5103a9d5e",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045353",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-dbb0-451a-ab0a-419602de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "b822f813-8192-409c-8ccc-27c368ce781a",
"object_uuid": "7d3abf61-6c8e-47c1-93eb-d9f5103a9d5e"
}
],
"Attribute": [
{
"comment": "",
"uuid": "dd87b522-c9c2-4986-a044-e5e821b01973",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045350",
"to_ids": true,
"deleted": false,
"value": "f673bb1d519138ced7659484c0b66c5b",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "2db893ac-4032-43cb-aef6-0eaf659b0ea8",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045350",
"to_ids": true,
"deleted": false,
"value": "deec3985f31f5372ce314e581154450bb51037a3",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "4384b96e-ecde-474d-a434-01459ee148fd",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045352",
"to_ids": true,
"deleted": false,
"value": "012966cc1b714531790dd3f5f6cc040b2232fea98b0dbe56a24b13ae72160be5",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "b822f813-8192-409c-8ccc-27c368ce781a",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045352",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "faf32260-f5de-46e2-a4e6-3f38108b822f",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045353",
"to_ids": false,
"deleted": false,
"value": "2018-08-10T04:25:00",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "af58aa64-2487-4d3c-9c28-b4e889a1bd73",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045353",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/012966cc1b714531790dd3f5f6cc040b2232fea98b0dbe56a24b13ae72160be5/analysis/1533875100/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "68eaf88d-92e3-4bd5-8784-d8ed85864f53",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045353",
"to_ids": false,
"deleted": false,
"value": "39/68",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "cacbd9c4-03d0-435d-ad3c-a31a568e8d8e",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045356",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-84e4-4bcf-8b43-467102de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "60d09241-1457-4f27-8c62-a010c19eeb21",
"object_uuid": "cacbd9c4-03d0-435d-ad3c-a31a568e8d8e"
}
],
"Attribute": [
{
"comment": "",
"uuid": "79080db6-2ce3-49d7-8e0f-8c089442affb",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045354",
"to_ids": true,
"deleted": false,
"value": "d574d0049f797611589803643a8aa3c3",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "664e9e2e-39cf-4531-91a1-49b56796a023",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045354",
"to_ids": true,
"deleted": false,
"value": "6cd604721a280103938173420ff6164896ac51c9",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "7fee7349-1ed6-458b-bc4a-cee90dddce50",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045354",
"to_ids": true,
"deleted": false,
"value": "f241af9ba7501e28974729c229b445ee709a7ef438448b6e9f88ff7ff7228cb2",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "60d09241-1457-4f27-8c62-a010c19eeb21",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045355",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "c532b896-fa38-417d-b84d-34e261beca8c",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045355",
"to_ids": false,
"deleted": false,
"value": "2018-01-19T10:25:00",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "c387dc9e-3e90-48cd-9864-0b0816f6208c",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045355",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/f241af9ba7501e28974729c229b445ee709a7ef438448b6e9f88ff7ff7228cb2/analysis/1516357500/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "0217ee93-1f1c-46c9-b098-75007bc65581",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045356",
"to_ids": false,
"deleted": false,
"value": "26/60",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "93f7c2d4-3eda-4a19-aba6-b3bdb34be6c6",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045359",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-9624-42fd-b961-426e02de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "fa8c321e-5cde-45bb-a01c-7e2a2a09b969",
"object_uuid": "93f7c2d4-3eda-4a19-aba6-b3bdb34be6c6"
}
],
"Attribute": [
{
"comment": "",
"uuid": "dcf7c67f-3cdb-4671-afc9-09bbc2cb4e12",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045356",
"to_ids": true,
"deleted": false,
"value": "a287a434a0d40833d3ebf5808950b858",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "35efa3f4-3c88-4792-b4f5-6085c2863471",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045356",
"to_ids": true,
"deleted": false,
"value": "0068a8e61fe75213738ecf9ad4927cb7a533886b",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "177cfde7-d340-428e-9471-30d2c4898b54",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045357",
"to_ids": true,
"deleted": false,
"value": "bf20c17881ff3c4b0bf121cc56c6e79d2ce8ecb4c08cc719e5835e6c74f339a0",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "fa8c321e-5cde-45bb-a01c-7e2a2a09b969",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045357",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "6fcb1e6c-ec15-4884-88db-247a51dfc5b0",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045357",
"to_ids": false,
"deleted": false,
"value": "2018-01-25T04:39:04",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "e0465689-cbe2-4691-bab3-95b3b960ec31",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045358",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/bf20c17881ff3c4b0bf121cc56c6e79d2ce8ecb4c08cc719e5835e6c74f339a0/analysis/1516855144/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "76f4af1a-a82f-42e4-ac27-526c258e1f50",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045358",
"to_ids": false,
"deleted": false,
"value": "27/60",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "6bf27c78-9d3b-4926-9c37-ec97cf90fee5",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045361",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-d0e4-4d99-bad9-488702de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "22999236-217f-4117-ae67-135d962de74e",
"object_uuid": "6bf27c78-9d3b-4926-9c37-ec97cf90fee5"
}
],
"Attribute": [
{
"comment": "",
"uuid": "25a7c5e2-e369-45eb-b4b0-d1d8faf415ce",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045358",
"to_ids": true,
"deleted": false,
"value": "a2a8e8ac6f5fa5801395252e11afb356",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "79de19f7-e005-4095-b879-803a3348c676",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045359",
"to_ids": true,
"deleted": false,
"value": "640b42bc0b054458631877c8de46028528e4ac3e",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "751d7f99-aae6-4c85-8c3d-41b324918274",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045359",
"to_ids": true,
"deleted": false,
"value": "91fa0d2414e029c042eb78d4f53010c3af161edb815e97a021c24f8a03033a07",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "22999236-217f-4117-ae67-135d962de74e",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045360",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "051f2ef5-b025-4238-9141-06d9400fe8d2",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045360",
"to_ids": false,
"deleted": false,
"value": "2018-07-04T09:04:20",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "731ed6fb-d0ab-4ebe-abf1-1795a4be554a",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045360",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/91fa0d2414e029c042eb78d4f53010c3af161edb815e97a021c24f8a03033a07/analysis/1530695060/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "be591f16-c971-48ba-bb88-67faee3866c8",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045361",
"to_ids": false,
"deleted": false,
"value": "33/58",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "a4995eaf-38d1-4aed-a189-061d8ad9eb5b",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045364",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-2280-4f25-b837-415402de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "28a0ab9f-4372-42ba-bea6-9a437f2c55e6",
"object_uuid": "a4995eaf-38d1-4aed-a189-061d8ad9eb5b"
}
],
"Attribute": [
{
"comment": "",
"uuid": "a7aec783-ccdd-4684-a41f-35a1c54c465b",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045361",
"to_ids": true,
"deleted": false,
"value": "3f0e8a3ad9fab04377b8e9a57a26f972",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "a9799b79-54f4-4f04-afed-953aef64b998",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045361",
"to_ids": true,
"deleted": false,
"value": "018085fac80c537ec80c292e2b10f48259d4764a",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "ac542c03-e22b-497d-a7f8-cc5a7e9e3498",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045362",
"to_ids": true,
"deleted": false,
"value": "2d087d89364b22d180a7e8e923a6dca5fd6d131dad12db9dd2a2ae5c4b9d9675",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "28a0ab9f-4372-42ba-bea6-9a437f2c55e6",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045362",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "1345557f-678e-446a-ad9e-ead4683b8e06",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045362",
"to_ids": false,
"deleted": false,
"value": "2018-07-27T15:55:19",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "5ce5ac4b-a328-43de-9a26-772f3d643fe7",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045363",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/2d087d89364b22d180a7e8e923a6dca5fd6d131dad12db9dd2a2ae5c4b9d9675/analysis/1532706919/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "181a8e99-3d23-4157-ac33-803c5fd7b2c6",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045363",
"to_ids": false,
"deleted": false,
"value": "33/62",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "19019d95-d653-45c4-a76a-e1d0514ea188",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045366",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-eae0-4d43-b655-440e02de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "a6f536ba-7227-4404-a445-3859005c2d85",
"object_uuid": "19019d95-d653-45c4-a76a-e1d0514ea188"
}
],
"Attribute": [
{
"comment": "",
"uuid": "517eae0d-b0cc-4596-b6b6-b568780db38b",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045363",
"to_ids": true,
"deleted": false,
"value": "70a937b2504b3ad6c623581424c7e53d",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "3c6690c1-73ad-416d-a2b3-f6103cdcf217",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045364",
"to_ids": true,
"deleted": false,
"value": "23912d8a28324ae6c5fe5acd518045a2cf4d339f",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "293a7eda-95c1-4764-83c5-32a25fcabae4",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045364",
"to_ids": true,
"deleted": false,
"value": "9722d16ec5d19edca0c6f53ba7d5ca2df650fd6892ed5c2a7b279b2299487b0a",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "a6f536ba-7227-4404-a445-3859005c2d85",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045365",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "b857d04b-c991-4d6e-8b5c-66e76a7ee423",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045365",
"to_ids": false,
"deleted": false,
"value": "2018-07-02T19:56:42",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "06527aee-c15a-45f2-8952-2a9ed26ae858",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045365",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/9722d16ec5d19edca0c6f53ba7d5ca2df650fd6892ed5c2a7b279b2299487b0a/analysis/1530561402/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "bf5444cf-5f02-4ea6-af87-9a085f8fdde0",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045366",
"to_ids": false,
"deleted": false,
"value": "32/56",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "dddd50b2-9d97-476a-864e-021d7986d6fb",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045369",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-bdb4-4913-a206-4de502de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "497f5b93-ac74-4869-b34e-e18258a06405",
"object_uuid": "dddd50b2-9d97-476a-864e-021d7986d6fb"
}
],
"Attribute": [
{
"comment": "",
"uuid": "7d295b3a-d432-4998-a972-a82d5307677f",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045366",
"to_ids": true,
"deleted": false,
"value": "6bcc3559d7405f25ea403317353d905f",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "cc8987ac-655e-4c39-b279-261e01762385",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045366",
"to_ids": true,
"deleted": false,
"value": "5e7a6a62db26fe16be4e0851d5801397d591bed6",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "08a86c36-991f-4fef-a996-4312f81cce6b",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045367",
"to_ids": true,
"deleted": false,
"value": "c74108a74a9afd47eee894921784fd1ea26a80627afd2fe2103b388abafdc2cc",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "497f5b93-ac74-4869-b34e-e18258a06405",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045367",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "0f6adb2c-3165-41f9-a980-917261bfebe1",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045367",
"to_ids": false,
"deleted": false,
"value": "2018-08-10T13:16:08",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "75510a63-1046-43b6-8e41-66d6d4de0375",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045368",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/c74108a74a9afd47eee894921784fd1ea26a80627afd2fe2103b388abafdc2cc/analysis/1533906968/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "4456fe6b-aff2-4621-9265-61ed1523a5ff",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045368",
"to_ids": false,
"deleted": false,
"value": "46/68",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "f43d2055-c298-4014-b16c-cb31bb84171b",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045371",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-6e18-42e5-a1b6-4a3d02de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "f9620a5e-f529-47ca-b57b-52959ee91051",
"object_uuid": "f43d2055-c298-4014-b16c-cb31bb84171b"
}
],
"Attribute": [
{
"comment": "",
"uuid": "41b5dd28-4586-4aff-a140-0767158e5f87",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045368",
"to_ids": true,
"deleted": false,
"value": "39fca709b416d8da592de3a3f714dce8",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "473e3e17-67f4-433b-8c7c-b2624b8af521",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045369",
"to_ids": true,
"deleted": false,
"value": "90320997c7dac34d4261eb38eb548910efc2b983",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "3990f284-f938-419b-aba1-2443277bae80",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045369",
"to_ids": true,
"deleted": false,
"value": "e6aba7629608a525b020f4e76e4694d6d478dd9561d934813004b6903d66e44c",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "f9620a5e-f529-47ca-b57b-52959ee91051",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045370",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "26e7365b-c650-4b23-9ac4-d76ed6016811",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045370",
"to_ids": false,
"deleted": false,
"value": "2018-08-18T09:47:32",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "e63f2789-3b7b-421f-bff5-dbc2cc417ab5",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045370",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/e6aba7629608a525b020f4e76e4694d6d478dd9561d934813004b6903d66e44c/analysis/1534585652/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "104d1f87-4293-4bf5-85f7-9dcb05ddcbd4",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045371",
"to_ids": false,
"deleted": false,
"value": "37/62",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "aa457e4c-9f49-4f78-84ec-5d60a7c157a2",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045374",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-f924-46ce-bbaf-4d7602de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "8af76320-edcc-4b95-bdbd-bf638bd1e369",
"object_uuid": "aa457e4c-9f49-4f78-84ec-5d60a7c157a2"
}
],
"Attribute": [
{
"comment": "",
"uuid": "fea9d3e3-b7ff-4ff0-87be-6abeeb8c750b",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045371",
"to_ids": true,
"deleted": false,
"value": "708445b8d358c254e861effffd4f819b",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "7fce689e-6fcf-4287-b1b7-62948da4810a",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045371",
"to_ids": true,
"deleted": false,
"value": "d190b480942ac732f282c61a540e9138a3e764b5",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "173fecf1-715f-463a-aa1a-d8a9ac956071",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045372",
"to_ids": true,
"deleted": false,
"value": "af848999a4b8df0e33f5a05a618c83d1f3052d4026ab77b2acf66def71df754e",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "8af76320-edcc-4b95-bdbd-bf638bd1e369",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045372",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "76c45898-d592-4b3b-98f7-f21727ec10d7",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045372",
"to_ids": false,
"deleted": false,
"value": "2018-08-25T12:52:29",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "8da17835-8e60-4ffa-92b6-7da88f623d95",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045373",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/af848999a4b8df0e33f5a05a618c83d1f3052d4026ab77b2acf66def71df754e/analysis/1535201549/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "d782b423-3f90-48ee-8600-3b6502d59692",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045373",
"to_ids": false,
"deleted": false,
"value": "25/60",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "790fef27-93cc-4a9f-803a-b320db0dee95",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045376",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-8174-4a38-99b5-499402de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "f234144d-1765-4cf4-b8ad-6d6f1a2b6472",
"object_uuid": "790fef27-93cc-4a9f-803a-b320db0dee95"
}
],
"Attribute": [
{
"comment": "",
"uuid": "542d7c0f-a90b-4498-8096-14a78eb8985c",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045373",
"to_ids": true,
"deleted": false,
"value": "d9c7349e807e0f12eaa67b2de522954f",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "3a9f1f91-9fec-4f47-9550-0bf7a9b5f847",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045374",
"to_ids": true,
"deleted": false,
"value": "5f37de1ced07e35444ce4ea015084b92bc1baabf",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "74dfc3e8-230f-4975-89a0-58d431928ffd",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045374",
"to_ids": true,
"deleted": false,
"value": "255be8e830c9b43928b11a8e1b531a94826d30919e7f739a5ed07141d6a70bb7",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "f234144d-1765-4cf4-b8ad-6d6f1a2b6472",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045375",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "88e2183e-9edb-463f-ae3c-a86be7e7ae59",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045375",
"to_ids": false,
"deleted": false,
"value": "2018-07-19T00:11:55",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "f0445432-dab0-46e8-a8f5-455d9a6645d3",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045375",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/255be8e830c9b43928b11a8e1b531a94826d30919e7f739a5ed07141d6a70bb7/analysis/1531959115/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "a030e69a-a20f-475f-b2c1-066595ff0684",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045376",
"to_ids": false,
"deleted": false,
"value": "31/61",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "6ff856c9-fa6e-454c-ba8c-0fc21d5cc864",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045379",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-a0ac-4a05-b1a5-4a0602de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "41755892-e078-4a46-87e8-1f5e2677e25c",
"object_uuid": "6ff856c9-fa6e-454c-ba8c-0fc21d5cc864"
}
],
"Attribute": [
{
"comment": "",
"uuid": "7c23397f-0d68-4693-a241-491be5230711",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045376",
"to_ids": true,
"deleted": false,
"value": "395f9f87df728134b5e3c1ca4d48e9fa",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "4b112b17-7dcf-42b3-8a1f-cea43caaf589",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045376",
"to_ids": true,
"deleted": false,
"value": "ab0debc27d171ac15a235910847faee6ae1f053d",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "8647d583-49b2-444f-94d1-0a4fc0778192",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045377",
"to_ids": true,
"deleted": false,
"value": "48477ffcc2cf57e34fbc45599efa830620dc18139dbbb8dfe59d56fd87728b25",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "41755892-e078-4a46-87e8-1f5e2677e25c",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045377",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "40fcc649-7ce9-4874-a2a6-98fb47cab457",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045377",
"to_ids": false,
"deleted": false,
"value": "2018-08-10T04:37:28",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "1ab545b6-d270-4a3c-bc5d-95dcd354c48f",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045378",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/48477ffcc2cf57e34fbc45599efa830620dc18139dbbb8dfe59d56fd87728b25/analysis/1533875848/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "f4ed9f04-016d-486c-8992-a3d99bce65b5",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045378",
"to_ids": false,
"deleted": false,
"value": "43/68",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "09391239-3536-4168-8f87-72ae9d533bef",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045381",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-f084-4d0b-829f-428f02de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "d85d218a-03c1-40d8-9b3f-b88bb3f6e132",
"object_uuid": "09391239-3536-4168-8f87-72ae9d533bef"
}
],
"Attribute": [
{
"comment": "",
"uuid": "596de2f6-d50b-4b78-af63-062a327a3727",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045378",
"to_ids": true,
"deleted": false,
"value": "0bc28ac5f2cadd524e7f443e06ad2a2b",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "0baf2995-0445-4946-abcc-8a629c0b1679",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045379",
"to_ids": true,
"deleted": false,
"value": "13c2cf52c2d97c50b5d10300911e15b52a9f5bc4",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "1bb6b906-81bf-401b-a275-4370b465f1dd",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045379",
"to_ids": true,
"deleted": false,
"value": "accd05c00951ef568594efebd5c30bdce2e63cee9b2cdd88cb705776e0a4ca70",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "d85d218a-03c1-40d8-9b3f-b88bb3f6e132",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045380",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "96807bd6-ba7b-436f-a02b-a2173383a39a",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045380",
"to_ids": false,
"deleted": false,
"value": "2018-01-24T10:54:09",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "b2059571-77ea-48f7-8cb2-6f05e670e267",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045380",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/accd05c00951ef568594efebd5c30bdce2e63cee9b2cdd88cb705776e0a4ca70/analysis/1516791249/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "63871844-c633-4cb4-a641-c2ecd075c6e6",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045381",
"to_ids": false,
"deleted": false,
"value": "27/60",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "bd4d9903-64a2-48b5-9aca-8daaf2bcc0ee",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045384",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-91b4-4908-8f16-434e02de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "57bf09f8-10dd-40e1-b635-be7748f76773",
"object_uuid": "bd4d9903-64a2-48b5-9aca-8daaf2bcc0ee"
}
],
"Attribute": [
{
"comment": "",
"uuid": "697f3f80-f6a8-42d4-9caf-856acedc615d",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045381",
"to_ids": true,
"deleted": false,
"value": "7e6cb66a3623258444639d1fc2fd533f",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "ed92849a-1a5a-4d41-9e8f-5ae98837c5d7",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045381",
"to_ids": true,
"deleted": false,
"value": "79741484c3c59e6b15b14be4853128edb7fd2f4a",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "4d1a53c2-e3e0-4129-a2b9-258a3d12f582",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045382",
"to_ids": true,
"deleted": false,
"value": "e9722d22967068c74f4c149c29bc4988d6178dda7b15fd72f488bbefed4faf28",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "57bf09f8-10dd-40e1-b635-be7748f76773",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045382",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "b3ea6da3-525d-4014-83f7-b0b4e482b79e",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045382",
"to_ids": false,
"deleted": false,
"value": "2018-01-17T07:52:11",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "439ccd4e-59c1-49ff-8d89-5c34f9bb064b",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045383",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/e9722d22967068c74f4c149c29bc4988d6178dda7b15fd72f488bbefed4faf28/analysis/1516175531/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "c30149ef-276a-48cc-8e0b-c497bd7a2f62",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045383",
"to_ids": false,
"deleted": false,
"value": "15/60",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "1e7e2181-e880-4274-9ddf-f8daa44549c7",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045386",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-1acc-4d48-99d9-466602de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "084b441e-ce8b-4086-ad6c-0ef1e2b2c78b",
"object_uuid": "1e7e2181-e880-4274-9ddf-f8daa44549c7"
}
],
"Attribute": [
{
"comment": "",
"uuid": "ce02c7ff-c8df-43fa-9361-c1fb230524aa",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045383",
"to_ids": true,
"deleted": false,
"value": "d3baa45ed342fbc5a56d974d36d5f73f",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "ade753f6-8c06-49da-aa38-56e83dccc20a",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045384",
"to_ids": true,
"deleted": false,
"value": "54f88d82f3468bde37abeb6c209348401de02999",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "6bc6483a-2851-4a9e-884a-70d90bf07365",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045384",
"to_ids": true,
"deleted": false,
"value": "74b1d9c27313dd8a266bf3011896cc9673653a84c2475bed483fa72a1dfb9361",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "084b441e-ce8b-4086-ad6c-0ef1e2b2c78b",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045385",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "f16ae11a-12b4-4626-b5ac-96166c0d8f99",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045385",
"to_ids": false,
"deleted": false,
"value": "2018-08-10T04:42:30",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "b30e9b63-6c0d-4eb2-a712-2c27f8886e82",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045385",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/74b1d9c27313dd8a266bf3011896cc9673653a84c2475bed483fa72a1dfb9361/analysis/1533876150/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "1856e87d-a719-48f9-9c0b-d57b633eb969",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045386",
"to_ids": false,
"deleted": false,
"value": "38/68",
"type": "text",
"object_relation": "detection-ratio"
}
]
},
{
"comment": "",
"uuid": "43892c3f-9a1b-466c-9bee-8e397cfe7d99",
"sharing_group_id": "0",
"meta-category": "file",
"timestamp": "1536045389",
"description": "File object describing a file with meta-information",
"deleted": false,
"template_version": "11",
"distribution": "5",
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
"name": "file",
"ObjectReference": [
{
"comment": "",
"uuid": "5b8e314d-5560-48ed-84b5-4d5a02de0b81",
chg: [feed] added
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
chg: [gen] updated
2023-12-14 14:30:15 +00:00
"timestamp": "1536045389",
"referenced_uuid": "d57f6827-03ab-40da-9465-a87640bda410",
"object_uuid": "43892c3f-9a1b-466c-9bee-8e397cfe7d99"
}
],
"Attribute": [
{
"comment": "",
"uuid": "441d7e83-b919-4f73-8e8c-62c4dc367b48",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045386",
"to_ids": true,
"deleted": false,
"value": "55fb01048b6287eadcbd9a0f86d21adf",
"type": "md5",
"object_relation": "md5"
},
{
"comment": "",
"uuid": "632cf2a1-d4f8-4371-8533-ba60577c7294",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045386",
"to_ids": true,
"deleted": false,
"value": "d7e22fdecd2cc533852b5a662039dfcb99a13487",
"type": "sha1",
"object_relation": "sha1"
},
{
"comment": "",
"uuid": "dbe0fce4-dd6d-466a-b4ac-25c76acc90b7",
"disable_correlation": false,
"category": "Payload delivery",
"timestamp": "1536045387",
"to_ids": true,
"deleted": false,
"value": "7a35a20bb3fc5d879b99a71d9c5c5475752b900a3082aa5c4f2d6d23aa78dee2",
"type": "sha256",
"object_relation": "sha256"
}
]
},
{
"comment": "",
"uuid": "d57f6827-03ab-40da-9465-a87640bda410",
"sharing_group_id": "0",
"meta-category": "misc",
"timestamp": "1536045387",
"description": "VirusTotal report",
"deleted": false,
"template_version": "2",
"distribution": "5",
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
"name": "virustotal-report",
"Attribute": [
{
"comment": "",
"uuid": "3183fed9-2981-4063-9f5e-78d811d9b601",
"disable_correlation": false,
"category": "Other",
"timestamp": "1536045387",
"to_ids": false,
"deleted": false,
"value": "2018-08-29T00:19:01",
"type": "datetime",
"object_relation": "last-submission"
},
{
"comment": "",
"uuid": "23b507c2-0f42-4e17-b3dc-90ceaeb84866",
"disable_correlation": false,
"category": "External analysis",
"timestamp": "1536045388",
"to_ids": false,
"deleted": false,
"value": "https://www.virustotal.com/file/7a35a20bb3fc5d879b99a71d9c5c5475752b900a3082aa5c4f2d6d23aa78dee2/analysis/1535501941/",
"type": "link",
"object_relation": "permalink"
},
{
"comment": "",
"uuid": "f2cf6afa-89ee-4cac-9353-eb7c910b3948",
"disable_correlation": true,
"category": "Other",
"timestamp": "1536045388",
"to_ids": false,
"deleted": false,
"value": "40/67",
"type": "text",
"object_relation": "detection-ratio"
}
]
}
chg: [feed] added
2023-04-21 13:25:09 +00:00
]
chg: [gen] updated
2023-12-14 14:30:15 +00:00
}
chg: [feed] added
2023-04-21 13:25:09 +00:00
}
Reference in a new issue Copy permalink