adulau/misp-circl-feed
1
0
Fork 0
Code Issues 1 Pull requests Projects 1 Releases Packages Wiki Activity Actions
misp-circl-feed/feeds/circl/stix-2.1/54932a3e-7284-4753-b95c-4e08950d210b.json

2645 lines
6 MiB
JSON
Raw Permalink Normal View History

chg: [misp-stix] STIX 2.1 export added
2023-04-21 14:44:17 +00:00
{
"type": "bundle",
"id": "bundle--54932a3e-7284-4753-b95c-4e08950d210b",
"objects": [
{
"type": "identity",
"spec_version": "2.1",
"id": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2018-02-02T13:28:26.000Z",
"modified": "2018-02-02T13:28:26.000Z",
"name": "CthulhuSPRL.be",
"identity_class": "organization"
},
{
"type": "report",
"spec_version": "2.1",
"id": "report--54932a3e-7284-4753-b95c-4e08950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2018-02-02T13:28:26.000Z",
"modified": "2018-02-02T13:28:26.000Z",
"name": "Expansion on two IPs listed in OSINT IOCs from various campaigns listed in Detecting Bleeding Edge Malware presentation at hack.lu 2014",
"published": "2018-02-02T13:33:41Z",
"object_refs": [
"indicator--54932a4c-029c-47a5-9d72-2601950d210b",
"indicator--54932a4c-81e0-4651-9361-2601950d210b",
"x-misp-attribute--54932a67-ac50-4532-9064-4de5950d210b",
"indicator--54932ab4-defc-4e11-8e9c-4e18950d210b",
"indicator--54932ab4-bcd0-4d21-81e5-4e98950d210b",
"indicator--54932ab4-4880-4327-a276-4a81950d210b",
"indicator--54932ab4-2eec-49a6-8a29-4f94950d210b",
"indicator--54932ab5-f704-41a4-8680-4cb4950d210b",
"indicator--54932ab5-0424-4e41-b294-4761950d210b",
"indicator--54932ab5-3c58-4efe-8a78-4a6b950d210b",
"indicator--54932ab5-ba1c-4c23-a540-4915950d210b",
"indicator--54932ab5-0a24-4299-b490-4bc0950d210b",
"indicator--54932ab5-7200-48b0-bab3-461a950d210b",
"x-misp-attribute--54932b20-70a4-4d6f-8dbe-2601950d210b",
"indicator--54932b2d-1a44-4ed3-bb6d-4883950d210b",
"indicator--54932b2d-7d98-4490-92d4-436f950d210b",
"indicator--54932b2d-7234-43a0-bd15-42af950d210b",
"indicator--54932b2d-8a10-451b-912a-4664950d210b",
"indicator--54932b2d-caf4-431d-8a71-4af5950d210b",
"indicator--54932b2d-114c-42fc-b9d1-45a2950d210b",
"indicator--54932b2d-7f18-4367-849f-459a950d210b",
"indicator--54932b2d-c49c-467e-b0d3-42de950d210b",
"indicator--54932b2d-fc84-4119-a256-4605950d210b",
"indicator--54932b2e-c8bc-49a0-ba48-479e950d210b",
"indicator--54932b2e-e260-4cc7-ad47-4e3a950d210b",
"indicator--54932b2e-15e8-4a7a-957a-4da2950d210b",
"indicator--54932b2e-2e3c-42c2-8355-4dc4950d210b",
"indicator--54932b2e-75b4-4b26-9872-4b92950d210b",
"indicator--54932b2e-1c1c-4084-acd2-42b3950d210b",
"indicator--54932b2e-8d6c-4852-986b-453a950d210b",
"indicator--54932b2e-9e28-4a9b-b493-4e40950d210b",
"indicator--54932b2e-7b10-4a6e-99b0-4b1c950d210b",
"indicator--54932b2e-ca1c-4fe1-a14f-443c950d210b",
"indicator--54932b2e-edf0-46a5-ab47-438b950d210b",
"indicator--54932b2e-c2f0-423b-be6e-468e950d210b",
"indicator--54932b2e-d84c-48e3-89e0-4d6f950d210b",
"indicator--54932b2f-9fec-4cf2-9076-4e8c950d210b",
"indicator--54932b2f-0744-49da-95cc-4bb9950d210b",
"indicator--54932b2f-62a0-403a-984e-4399950d210b",
"indicator--54932b2f-0bd8-472a-b863-44bc950d210b",
"indicator--54932b2f-8f50-496b-86e3-40ac950d210b",
"indicator--54932b2f-bab4-4c2d-a295-428f950d210b",
"indicator--54932b2f-6cd4-4006-83c7-4080950d210b",
"indicator--54932b2f-b864-4cdf-856d-4336950d210b",
"indicator--54932b2f-93d8-4374-8e0d-47ab950d210b",
"indicator--54932b2f-c408-46b0-8858-463b950d210b",
"indicator--54932b2f-17e8-42a8-a6b0-4fc6950d210b",
"indicator--54932b2f-6424-4921-89ae-49d1950d210b",
"indicator--54932b30-65e0-42ba-a12d-4f96950d210b",
"indicator--54932b30-9eec-45bf-951e-4efe950d210b",
"indicator--54932b30-2280-4e7b-b7f2-494e950d210b",
"indicator--54932b30-eaac-491f-821f-48f8950d210b",
"indicator--54932b30-209c-4f9d-b60e-4c7a950d210b",
"indicator--54932b30-c078-4d28-9cc2-403c950d210b",
"indicator--54932b30-7f48-46a3-afc0-4326950d210b",
"indicator--54932b30-e544-42a4-8f5a-46c5950d210b",
"indicator--54932b30-2790-4b14-9ef6-465e950d210b",
"indicator--54932b30-3798-42f7-a2af-4cf1950d210b",
"indicator--54932b30-9098-4998-ab47-4dc2950d210b",
"indicator--54932b30-8998-4554-b2c6-40c7950d210b",
"indicator--54932b31-17f4-419e-a87a-426e950d210b",
"indicator--54932b31-c140-455d-a950-4bf1950d210b",
"indicator--54932b31-6190-4709-9918-4acc950d210b",
"indicator--54932b31-f68c-4a41-9d1b-4c19950d210b",
"indicator--54932b31-2638-4f0b-94af-438b950d210b",
"indicator--54932b31-218c-40eb-9fa8-4cb9950d210b",
"indicator--54932b31-cfec-493a-aa35-4849950d210b",
"indicator--54932b31-6de4-4b85-8fc5-4367950d210b",
"indicator--54932b31-d964-4cb5-b6df-42ae950d210b",
"indicator--54932b31-e2ec-41a7-99c0-4792950d210b",
"indicator--54932b31-d6d4-4fc8-b397-4486950d210b",
"indicator--54932b31-dc50-4fa0-9242-4e54950d210b",
"indicator--54932b32-cf30-40d0-b0b4-415a950d210b",
"indicator--54932b32-e1f4-4376-93ad-4018950d210b",
"indicator--54932b32-ba84-4f71-8f57-4bd1950d210b",
"indicator--54932b32-95d0-4947-acce-4a89950d210b",
"indicator--54932b32-256c-4140-8ce4-4a70950d210b",
"indicator--54932b32-3c18-4b3e-883d-42bd950d210b",
"indicator--54932b32-777c-4881-962e-462b950d210b",
"indicator--54932b32-8978-4ba6-b0c0-49a4950d210b",
"indicator--54932b32-7648-40db-830d-4cc2950d210b",
"indicator--54932b32-1120-4d99-afe4-48a6950d210b",
"indicator--54932b32-d4d8-4c0c-a214-4c63950d210b",
"indicator--54932b32-2e50-4342-8f14-45c1950d210b",
"indicator--54932b32-97cc-4887-b75d-435a950d210b",
"indicator--54932b33-37b8-4746-b0b4-49b6950d210b",
"indicator--54932b33-970c-4adb-b925-4507950d210b",
"indicator--54932b33-6870-4775-a0ba-4add950d210b",
"indicator--54932b33-51a8-4ade-bca0-4dc6950d210b",
"indicator--54932b33-36f8-4e12-b6b3-4307950d210b",
"indicator--54932b33-0fc8-495f-a575-4c73950d210b",
"indicator--54932b33-7174-4b9b-8401-4288950d210b",
"indicator--54932b33-1e84-4517-a853-4349950d210b",
"indicator--54932b33-c5b8-4112-ba52-424c950d210b",
"indicator--54932b33-40c8-4936-9795-4d00950d210b",
"indicator--54932b33-c384-4dd6-bba7-4b4e950d210b",
"indicator--54932b33-9fd8-4030-877b-41ef950d210b",
"indicator--54932b33-c150-49d2-a21a-49ff950d210b",
"indicator--54932b33-5948-4685-b94d-4121950d210b",
"indicator--54932b34-10c8-4392-8b55-4b11950d210b",
"indicator--54932b34-f894-4223-9b90-4444950d210b",
"indicator--54932b34-9d94-4eb1-8061-4ab6950d210b",
"indicator--54932b34-ee10-4614-bd59-4d87950d210b",
"indicator--54932b34-9cc4-463b-bc35-4c61950d210b",
"indicator--54932b34-f728-44de-ad96-49ae950d210b",
"indicator--54932b34-c590-4261-bd8e-40fd950d210b",
"indicator--54932b34-913c-497a-a19f-4e20950d210b",
"observed-data--56755dd7-082c-42fe-abc1-bdc2950d210f",
"file--56755dd7-082c-42fe-abc1-bdc2950d210f",
"artifact--56755dd7-082c-42fe-abc1-bdc2950d210f"
],
"labels": [
"Threat-Report",
"misp:tool=\"MISP-STIX-Converter\"",
"type:OSINT"
],
"object_marking_refs": [
"marking-definition--34098fce-860f-48ae-8e50-ebd3cc5e41da",
"marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932a4c-029c-47a5-9d72-2601950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:26:04.000Z",
"modified": "2014-12-18T19:26:04.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '5.104.106.190']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:26:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932a4c-81e0-4651-9361-2601950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:26:04.000Z",
"modified": "2014-12-18T19:26:04.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '54.68.53.18']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:26:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-attribute",
"spec_version": "2.1",
"id": "x-misp-attribute--54932a67-ac50-4532-9064-4de5950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:26:31.000Z",
"modified": "2014-12-18T19:26:31.000Z",
"labels": [
"misp:type=\"comment\"",
"misp:category=\"Internal reference\""
],
"x_misp_category": "Internal reference",
"x_misp_type": "comment",
"x_misp_value": "Original research by David Andr\u00c3\u00a9 (TM) :)"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932ab4-defc-4e11-8e9c-4e18950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:27:48.000Z",
"modified": "2014-12-18T19:27:48.000Z",
"pattern": "[domain-name:value = 'server.ice-world.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:27:48Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932ab4-bcd0-4d21-81e5-4e98950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:27:48.000Z",
"modified": "2014-12-18T19:27:48.000Z",
"pattern": "[domain-name:value = 'ts.ice-world.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:27:48Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932ab4-4880-4327-a276-4a81950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:27:48.000Z",
"modified": "2014-12-18T19:27:48.000Z",
"pattern": "[domain-name:value = 'updates.dyndn-web.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:27:48Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932ab4-2eec-49a6-8a29-4f94950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:27:48.000Z",
"modified": "2014-12-18T19:27:48.000Z",
"pattern": "[domain-name:value = 'eventuallydown.dyndns.biz']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:27:48Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932ab5-f704-41a4-8680-4cb4950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:27:49.000Z",
"modified": "2014-12-18T19:27:49.000Z",
"pattern": "[domain-name:value = 'sv.ice-world.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:27:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932ab5-0424-4e41-b294-4761950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:27:49.000Z",
"modified": "2014-12-18T19:27:49.000Z",
"pattern": "[domain-name:value = 'fastfoodz.dlinkddns.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:27:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932ab5-3c58-4efe-8a78-4a6b950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:27:49.000Z",
"modified": "2014-12-18T19:27:49.000Z",
"pattern": "[domain-name:value = 'horrayyy.dyndn-web.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:27:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932ab5-ba1c-4c23-a540-4915950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:27:49.000Z",
"modified": "2014-12-18T19:27:49.000Z",
"pattern": "[domain-name:value = 'linux.microsoftwindowsupdate.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:27:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932ab5-0a24-4299-b490-4bc0950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:27:49.000Z",
"modified": "2014-12-18T19:27:49.000Z",
"pattern": "[domain-name:value = 'flippinflops.dyndns.tv']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:27:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932ab5-7200-48b0-bab3-461a950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:27:49.000Z",
"modified": "2014-12-18T19:27:49.000Z",
"pattern": "[domain-name:value = 'q190.quarz.fastwebserver.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:27:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-attribute",
"spec_version": "2.1",
"id": "x-misp-attribute--54932b20-70a4-4d6f-8dbe-2601950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:36.000Z",
"modified": "2014-12-18T19:29:36.000Z",
"labels": [
"misp:type=\"comment\"",
"misp:category=\"Internal reference\""
],
"x_misp_category": "Internal reference",
"x_misp_type": "comment",
"x_misp_value": "Analysis done by doing pDNS IP to domains and then domains to IP using FarSight pDNS DB.\r\nMore results from other pDNS databases welcome!"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2d-1a44-4ed3-bb6d-4883950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:49.000Z",
"modified": "2014-12-18T19:29:49.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '109.186.23.206']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2d-7d98-4490-92d4-436f950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:49.000Z",
"modified": "2014-12-18T19:29:49.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.173.59.160']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2d-7234-43a0-bd15-42af950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:49.000Z",
"modified": "2014-12-18T19:29:49.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '109.186.14.65']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2d-8a10-451b-912a-4664950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:49.000Z",
"modified": "2014-12-18T19:29:49.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '200.69.115.174']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2d-caf4-431d-8a71-4af5950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:49.000Z",
"modified": "2014-12-18T19:29:49.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.33.74']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2d-114c-42fc-b9d1-45a2950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:49.000Z",
"modified": "2014-12-18T19:29:49.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.173.34.78']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2d-7f18-4367-849f-459a950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:49.000Z",
"modified": "2014-12-18T19:29:49.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '89.139.158.11']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2d-c49c-467e-b0d3-42de950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:49.000Z",
"modified": "2014-12-18T19:29:49.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.182.131.47']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2d-fc84-4119-a256-4605950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:49.000Z",
"modified": "2014-12-18T19:29:49.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.250.68.251']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-c8bc-49a0-ba48-479e950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.173.49']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-e260-4cc7-ad47-4e3a950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '113.31.81.67']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-15e8-4a7a-957a-4da2950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.214.45.208']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-2e3c-42c2-8355-4dc4950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.134.129']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-75b4-4b26-9872-4b92950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '184.22.81.68']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-1c1c-4084-acd2-42b3950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.183.97']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-8d6c-4852-986b-453a950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '5.45.179.159']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-9e28-4a9b-b493-4e40950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.173.249.213']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-7b10-4a6e-99b0-4b1c950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.173.28.36']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-ca1c-4fe1-a14f-443c950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.178.70']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-edf0-46a5-ab47-438b950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.182.155.59']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-c2f0-423b-be6e-468e950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.173.9.49']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2e-d84c-48e3-89e0-4d6f950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:50.000Z",
"modified": "2014-12-18T19:29:50.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '23.92.23.71']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-9fec-4cf2-9076-4e8c950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '89.139.57.232']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-0744-49da-95cc-4bb9950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '185.10.57.147']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-62a0-403a-984e-4399950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '104.37.189.80']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-0bd8-472a-b863-44bc950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.38.243.189']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-8f50-496b-86e3-40ac950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '173.214.174.98']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-bab4-4c2d-a295-428f950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.173.175.64']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-6cd4-4006-83c7-4080950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.36.129']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-b864-4cdf-856d-4336950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '37.142.168.74']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-93d8-4374-8e0d-47ab950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '89.139.10.189']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-c408-46b0-8858-463b950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.183.85']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-17e8-42a8-a6b0-4fc6950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.116.94.74']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b2f-6424-4921-89ae-49d1950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:51.000Z",
"modified": "2014-12-18T19:29:51.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '94.23.49.91']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-65e0-42ba-a12d-4f96950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.139.231']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-9eec-45bf-951e-4efe950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '94.199.241.84']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-2280-4e7b-b7f2-494e950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '184.169.144.229']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-eaac-491f-821f-48f8950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.173.159.67']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-209c-4f9d-b60e-4c7a950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '109.186.29.148']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-c078-4d28-9cc2-403c950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '95.211.222.53']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-7f48-46a3-afc0-4326950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '189.2.158.210']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-e544-42a4-8f5a-46c5950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.4.88']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-2790-4b14-9ef6-465e950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.8.192']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-3798-42f7-a2af-4cf1950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.118.233']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-9098-4998-ab47-4dc2950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '95.154.227.98']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b30-8998-4554-b2c6-40c7950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:52.000Z",
"modified": "2014-12-18T19:29:52.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.116.86.52']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-17f4-419e-a87a-426e950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.250.41.169']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-c140-455d-a950-4bf1950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.171.96']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-6190-4709-9918-4acc950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.250.36.74']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-f68c-4a41-9d1b-4c19950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.221.115']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-2638-4f0b-94af-438b950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.124.186']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-218c-40eb-9fa8-4cb9950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '88.191.144.209']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-cfec-493a-aa35-4849950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '61.34.216.219']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-6de4-4b85-8fc5-4367950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.250.24.250']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-d964-4cb5-b6df-42ae950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.173.152.80']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-e2ec-41a7-99c0-4792950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '62.113.238.87']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-d6d4-4fc8-b397-4486950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '185.10.58.210']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b31-dc50-4fa0-9242-4e54950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:53.000Z",
"modified": "2014-12-18T19:29:53.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '95.211.222.33']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-cf30-40d0-b0b4-415a950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '109.186.122.27']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-e1f4-4376-93ad-4018950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.116.80.39']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-ba84-4f71-8f57-4bd1950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '41.226.27.230']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-95d0-4947-acce-4a89950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '109.186.0.201']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-256c-4140-8ce4-4a70950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.116.73.223']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-3c18-4b3e-883d-42bd950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.15.242']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-777c-4881-962e-462b950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.10.228']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-8978-4ba6-b0c0-49a4950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.116.169.117']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-7648-40db-830d-4cc2950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.17.58.88']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-1120-4d99-afe4-48a6950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '109.186.96.81']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-d4d8-4c0c-a214-4c63950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '89.139.59.189']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-2e50-4342-8f14-45c1950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.250.125.99']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b32-97cc-4887-b75d-435a950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.116.175.168']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-37b8-4746-b0b4-49b6950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:54.000Z",
"modified": "2014-12-18T19:29:54.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.173.72.66']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-970c-4adb-b925-4507950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '176.28.21.142']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-6870-4775-a0ba-4add950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '184.72.54.44']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-51a8-4ade-bca0-4dc6950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.114.135.40']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-36f8-4e12-b6b3-4307950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '62.113.238.98']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-0fc8-495f-a575-4c73950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.163.27']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-7174-4b9b-8401-4288950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.144.41']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-1e84-4517-a853-4349950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.250.113.242']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-c5b8-4112-ba52-424c950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.250.122.15']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-40c8-4936-9795-4d00950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '209.217.247.47']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-c384-4dd6-bba7-4b4e950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.173.242.198']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-9fd8-4030-877b-41ef950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '109.186.23.102']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-c150-49d2-a21a-49ff950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.28.206.5']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b33-5948-4685-b94d-4121950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:55.000Z",
"modified": "2014-12-18T19:29:55.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.116.4.218']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b34-10c8-4392-8b55-4b11950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:56.000Z",
"modified": "2014-12-18T19:29:56.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.250.84.153']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b34-f894-4223-9b90-4444950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:56.000Z",
"modified": "2014-12-18T19:29:56.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '89.139.95.126']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b34-9d94-4eb1-8061-4ab6950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:56.000Z",
"modified": "2014-12-18T19:29:56.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '109.186.84.166']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b34-ee10-4614-bd59-4d87950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:56.000Z",
"modified": "2014-12-18T19:29:56.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '79.143.177.241']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b34-9cc4-463b-bc35-4c61950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:56.000Z",
"modified": "2014-12-18T19:29:56.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '200.200.200.200']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b34-f728-44de-ad96-49ae950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:56.000Z",
"modified": "2014-12-18T19:29:56.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '41.215.22.162']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b34-c590-4261-bd8e-40fd950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:56.000Z",
"modified": "2014-12-18T19:29:56.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '93.172.190.23']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54932b34-913c-497a-a19f-4e20950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2014-12-18T19:29:56.000Z",
"modified": "2014-12-18T19:29:56.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.116.1.161']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2014-12-18T19:29:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--56755dd7-082c-42fe-abc1-bdc2950d210f",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-12-19T13:38:31.000Z",
"modified": "2015-12-19T13:38:31.000Z",
"first_observed": "2015-12-19T13:38:31Z",
"last_observed": "2015-12-19T13:38:31Z",
"number_observed": 1,
"object_refs": [
"file--56755dd7-082c-42fe-abc1-bdc2950d210f",
"artifact--56755dd7-082c-42fe-abc1-bdc2950d210f"
],
"labels": [
"misp:type=\"attachment\"",
"misp:category=\"External analysis\""
]
},
{
"type": "file",
"spec_version": "2.1",
"id": "file--56755dd7-082c-42fe-abc1-bdc2950d210f",
"name": "hacklu2014-DetectingBleedingEdgeMalware.pdf",
"content_ref": "artifact--56755dd7-082c-42fe-abc1-bdc2950d210f"
},
{
"type": "artifact",
"spec_version": "2.1",
"id": "artifact--56755dd7-082c-42fe-abc1-bdc2950d210f",
"payload_bin": "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
},
{
"type": "marking-definition",
"spec_version": "2.1",
"id": "marking-definition--34098fce-860f-48ae-8e50-ebd3cc5e41da",
"created": "2017-01-20T00:00:00.000Z",
"definition_type": "tlp",
"name": "TLP:GREEN",
"definition": {
"tlp": "green"
}
},
{
"type": "marking-definition",
"spec_version": "2.1",
"id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",
"created": "2017-01-20T00:00:00.000Z",
"definition_type": "tlp",
"name": "TLP:WHITE",
"definition": {
"tlp": "white"
}
}
]
}
Reference in a new issue Copy permalink