misp-circl-feed/feeds/circl/stix-2.1/a9f67dbb-ba26-4635-be1d-0780bc140897.json

4572 lines
506 KiB
JSON
Raw Permalink Normal View History

2024-08-07 08:13:15 +00:00
{
"type": "bundle",
"id": "bundle--a9f67dbb-ba26-4635-be1d-0780bc140897",
"objects": [
{
"type": "identity",
"spec_version": "2.1",
"id": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:41:32.000Z",
"modified": "2024-07-19T13:41:32.000Z",
"name": "CIRCL",
"identity_class": "organization"
},
{
"type": "report",
"spec_version": "2.1",
"id": "report--a9f67dbb-ba26-4635-be1d-0780bc140897",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:41:32.000Z",
"modified": "2024-07-19T13:41:32.000Z",
"name": "CISA - AA24-131A #StopRansomware: Black Basta",
"published": "2024-07-19T13:41:38Z",
"object_refs": [
"x-misp-attribute--0b874dcc-1e90-48c2-ac4b-50c3f38be26f",
"indicator--78431014-7b60-41aa-8a9e-a592d6d3f063",
"indicator--85064016-63e7-4b99-adc3-4841d070d1a8",
"indicator--6346e1ea-e470-4157-b607-9744c28f2c26",
"indicator--81b3fe0d-7e65-46a4-afa9-41c48f78a544",
"indicator--f6e82e61-245f-40bb-9856-bd4c1603c85d",
"indicator--e96a436c-b10b-4084-b0f4-02d2930d4756",
"indicator--5ed45418-d92e-402a-ac7f-c65644ac9df6",
"indicator--ae833f36-9f09-4038-b346-3017d47775a7",
"indicator--d4103783-4961-4c7d-9264-baeaf9be8f9a",
"indicator--e117e4c9-e67d-4960-b486-5fdf9414aff4",
"indicator--e76d122c-dd56-437d-b9d3-fada434fab44",
"indicator--297c2687-4b72-4df6-a5d8-6808c0f81606",
"indicator--ecf841c9-57f2-49bb-9cc9-38b28e120686",
"indicator--3a96c826-19b2-4431-91f3-a25654ff851f",
"indicator--660e6430-9ac0-46d4-8965-5d927bfe7439",
"indicator--035ff42d-f704-47a4-b314-954632cafff4",
"indicator--00bba8b3-44c1-4046-bdf9-62916a702486",
"indicator--b8bd2a48-e99a-4f19-b15c-ee1cf6643a1e",
"indicator--05f1b695-72bc-4d99-a2b6-d9293e62f68e",
"indicator--1d963eb3-777d-49b9-9126-18ff614b06b2",
"indicator--65c9006e-5ba0-4cb1-a20a-a8e94fd4db8b",
"indicator--b9941157-7571-4044-848f-759099580ef7",
"indicator--14469a88-83da-49b2-b4e6-bd94eae04a6c",
"indicator--5f29ad3f-a17d-4126-ad74-1ea067793775",
"indicator--88d40950-c531-4e71-9599-7efa18b53c64",
"indicator--0f9f93ac-68e8-44e0-bb70-fbc98b5a979e",
"indicator--bbe12017-8fe8-4f3d-9dee-a9f24c6750a8",
"indicator--bc89c167-edc4-4e21-b610-729647fe1c95",
"indicator--dede4d67-850e-4e52-a302-7eac06e84244",
"indicator--b7e0f9ad-4152-41cb-b1d4-fbc2875316a2",
"indicator--65ec104e-26c3-4649-bba5-f8c06984594b",
"indicator--1fe7785f-f98d-4666-9c3f-283d1e38aead",
"indicator--f5bc3ca7-1bf8-4993-aa3c-fa93bae9abbc",
"indicator--a5db2386-75b7-4478-99a9-4b6ca138ad49",
"indicator--5444a345-3135-4e92-99e0-c722ca1faf64",
"indicator--1ccf1bd4-1abf-4509-83f8-6a3108cf9b37",
"indicator--63698edc-0793-452b-a33c-a81f2fa4b6e8",
"indicator--4fb7ceff-39c7-44c8-aab3-31e6daa4675e",
"indicator--35838389-8134-48b9-8a24-55cafea61489",
"indicator--19cbb059-3036-4a45-962a-ca14817d2430",
"indicator--9f7a83be-7c9b-41d0-8ce3-7e35f4b170bb",
"indicator--9053fe61-400d-4b32-8f05-532cea6cb3bf",
"indicator--aef7f996-e54b-4a59-ae62-15dfee022638",
"indicator--3b9c03e0-18eb-48ff-9e29-ece81357d864",
"indicator--40b034b5-60e1-4e71-8ad6-c6363b8ba7ee",
"indicator--f7e7ed02-caff-4dba-bb83-a87c672742c6",
"indicator--5c6b799b-8bc0-43ed-9749-043d8fd33fb0",
"indicator--83d665a6-2142-4e1e-a2a7-b19d79c539b4",
"indicator--d423e91d-fd0a-42eb-887d-ec8cc6d3e487",
"indicator--f46621f6-1b6c-4b1e-a2f8-63abf80613c9",
"indicator--5e9ae8fb-70a8-42d1-aeef-752a3c7eeeb0",
"indicator--45f115a4-0978-41fb-bc1b-e85146c844ee",
"indicator--5fd26ff1-8c26-455c-8094-c9b8ef6f69f0",
"indicator--6186573a-8738-4a8a-b39c-6b2643b62820",
"indicator--6a0fb013-028e-4342-9fb0-1d85942f31a2",
"indicator--1af8d0a8-1a66-475c-9cae-8e7d25c25ac7",
"indicator--dcbbcbe3-2743-47f8-9705-c036554328b2",
"indicator--04a05438-20bf-45d3-9629-62d6a7150920",
"indicator--89249329-2aba-44c9-853a-63c7c0abb26b",
"indicator--bcfae15a-b2c1-45fd-8bd1-eeaff1ca9afc",
"indicator--f393e706-e07e-4288-be37-9bb138510b3d",
"indicator--be945d4c-d024-4c95-b6b8-9bcbb6d403c0",
"indicator--652270b1-3186-41ea-8175-220c2e616394",
"indicator--5c99b0ff-e9bf-47ae-91be-d112f5dea07c",
"indicator--75c4ade3-8aad-4dfc-8173-bd131a361860",
"indicator--251fdaa8-181a-411a-a9a6-40f5f72d61fe",
"indicator--5b76b5ee-7943-404d-a411-27f703ff9132",
"indicator--0472684d-f26e-4261-b39b-be04554ddc6d",
"indicator--d17a5357-b7a4-4964-9e63-e6cd08326dbf",
"indicator--15a8f0fa-2dcc-483a-b2f2-8e7829acd499",
"indicator--0d6ecd3d-070c-4634-8110-ed5b951828de",
"indicator--90293069-c8ab-4228-9635-9151ae04f430",
"indicator--87aaa50b-4e26-4723-97a5-63e59999d180",
"indicator--384c1da0-1a29-4912-b5ad-73aa6e124a60",
"indicator--f698e979-b1d8-4976-8a35-e6355b65bdd7",
"indicator--8f5bcc3c-3dbb-4def-a072-79fe589dc49b",
"indicator--848d8cd7-0e3d-49e3-b429-7fbdcc1a0e14",
"indicator--a3668c6d-ce9b-45bd-b071-63baf29a8325",
"indicator--3e3c6e53-9b6c-4736-8b0d-c2e425fe211e",
"indicator--13d5971f-c72a-4425-a4d6-2fced0a38d02",
"indicator--0191c644-f2aa-4ae6-9df3-17823fd3729c",
"indicator--ee93e661-dc17-4bde-ba1a-35c32cad744e",
"indicator--1e5f27c8-7604-49d8-af35-d9e08fca7820",
"indicator--73d3915c-6520-4fc5-9375-64ede0aa7bcd",
"indicator--7beec808-0f1e-4187-a88a-522a8e490a70",
"indicator--a1f4e8d3-4d07-4b5d-9651-770d95d1de41",
"indicator--46ba1b23-4da8-45ae-ba29-b3fc8cfcf8e0",
"indicator--710a4f88-305a-4119-bbca-7550bbfa588b",
"indicator--5c229e73-8eba-49b5-a19b-da6609696271",
"indicator--eb7333fe-e049-401a-b77a-07dde9de8061",
"indicator--c7d1042c-cf61-44fe-8f84-f47794936aab",
"indicator--bdabcba1-d9b9-4394-abca-434f5166988e",
"indicator--4a083c98-ebc4-4e3c-b206-68612ded9e30",
"indicator--bb2a78af-bbb1-44ad-9036-7f89a1f635f8",
"indicator--cb54824f-1f99-4afe-9fd4-49d29508028b",
"indicator--11cedacf-b82f-4126-9430-cbfaae530be0",
"indicator--5d7c406a-a8ae-469d-9699-3e935a761b81",
"indicator--fd6d901c-0aac-428c-8f9d-365f2fda7dd1",
"indicator--c30e4f30-f9ae-4c76-9b87-2997e1965562",
"indicator--1b63b1c8-ff2c-4c9b-b231-8234b5b95d0c",
"indicator--dc7d39e1-b6af-4e01-af9c-4c4e59f8d6ff",
"indicator--1c48e2b0-e1df-485f-a131-a6a61e0f6f69",
"indicator--7ac21efd-3d4f-47ce-b168-8f3da77a1703",
"indicator--7fb6486e-e526-4dc2-a3db-bf8820947555",
"indicator--a7e303fd-75b0-483c-ae8f-78619bfa2902",
"indicator--6c7055e7-a559-4d5e-95e2-80b81434d8b8",
"indicator--64e60e6a-1765-4e29-a9f8-96fdc654648e",
"indicator--0bf2a721-f4c1-436e-b2cb-f89aab9ad5d7",
"indicator--f4493533-756f-4401-93de-2f06b15f186a",
"indicator--fd04e0c6-b8eb-4ae8-abbe-2b78d011709d",
"indicator--315837ff-4f8e-4668-ba75-8fe48acdc1a0",
"indicator--9802448a-2bd8-44b5-a081-558994873032",
"indicator--9518b799-45d3-419c-b6fe-2e9150b16aa0",
"indicator--26468f9a-466d-4e40-99e0-16d9a29096e8",
"indicator--cadc997f-b556-436d-b2f4-57b04ca62ef8",
"indicator--148fa263-b2b3-4f6b-8e4b-86b2acb20a9f",
"indicator--34e641dd-0698-4e20-ac39-73ad3f4a21ee",
"indicator--9a7d2394-531a-4e16-bdc0-285579249fd9",
"indicator--2f1a56ec-ef77-44ba-b50f-544e7a6e8515",
"indicator--153e88ce-98e2-4a4d-94d8-874c44a3dd9b",
"indicator--0ee1d3e0-4344-449f-aeea-fb9a5d025673",
"indicator--a000b0e9-324a-463e-ad8f-6b1a82cb6b96",
"indicator--c003bb06-b2f5-40f7-b1e1-35e9ea177f19",
"indicator--805f43fb-61af-4c40-9372-bedcd4b94a54",
"indicator--c712f4c1-edd9-416f-aa28-c6b4bc607431",
"indicator--b58e3639-9322-4eef-b008-a5477f0b42a1",
"indicator--04ef2dbb-6776-43ec-b5c9-49c786444f4c",
"indicator--d2ef037a-31fc-4396-848d-1cee6e661ae8",
"indicator--d339c3b1-0c1e-44ce-b072-9452c67c76c0",
"indicator--0262f110-e4e1-4cf6-ba34-0f6d7999cd52",
"indicator--6794a38b-7a96-4a60-91e5-c18bc767c010",
"indicator--d557c14c-07c8-4c90-9916-6ed7265609c3",
"indicator--d61b7277-2472-4c3d-be88-fddb84c47788",
"indicator--87f2b1ff-5388-4a34-9d2b-d66998d5dfd0",
"indicator--da9afdb4-2eac-48e6-bc7c-a54d1eb13b11",
"indicator--07485ce4-8368-45e2-8dc1-9d58aeec0023",
"indicator--e7bf65c5-77d5-47cb-a622-a86665f7896c",
"indicator--1afc0abc-1084-4730-96c4-fee551f38d15",
"indicator--c1e9a7cb-25f2-4024-ae07-bf83137af0d2",
"indicator--5b7764ac-aa7a-4488-a39d-b22c943f03ab",
"indicator--7a38c16d-45ba-4f17-b88c-93c2cea165ba",
"indicator--6391d88b-62e9-470f-a3c5-dd40a6df6477",
"indicator--1f9e0c1b-87ab-4650-931b-929842d2a647",
"indicator--47068e2d-513c-4c84-a8fa-a9c18b79a43a",
"indicator--6d013ac5-4aeb-45cf-88dc-540639f4ea46",
"indicator--25dd9b0e-7e28-4486-865d-9408b8014af8",
"indicator--9a3bcfb5-35d8-47bc-8ab3-d822400e7dab",
"indicator--7275a6a3-a6eb-4c55-a026-2bb4595ac80e",
"indicator--d65bf398-f4a8-460c-991e-fea51126eb4c",
"indicator--0aceb1b4-5495-4b0e-817f-0875b62b287f",
"indicator--eb233eb9-6fb9-4746-96f9-ec965f3cbd25",
"indicator--54de71ae-65e5-4b93-b387-d888f1727e94",
"indicator--4cf436a8-36fa-4c13-b4b6-543ddda02e57",
"indicator--de83d187-64bb-48a6-93a8-0fb5fcd8ef74",
"indicator--f0d867d0-073e-4416-9ca2-87b26706d075",
"indicator--f08eaf23-2e38-446f-984f-d98d33bf040e",
"indicator--ec260542-c032-4fa4-84b3-6151842e9023",
"indicator--b5d1eff7-7e78-4f8e-898d-deb09973b985",
"indicator--6a5fc3a9-4b59-49a1-af3a-e118f16a3e92",
"indicator--eb2beda7-b386-4478-b578-357034da6e48",
"indicator--378f9abb-7c86-4c2e-ac71-dafc00c10b38",
"indicator--a265b3d0-d617-463f-ae3f-f5cd948becdd",
"indicator--69e829fd-9052-4354-bbd0-d693813e70b4",
"indicator--5b26002a-4961-4f4a-83ee-20ce1ad1ea0d",
"indicator--c16d00ce-cc23-4034-bb5f-62fe7c7fc200",
"indicator--a13cde1f-47ff-4701-bf94-f4503533d507",
"indicator--78ac4876-a0ff-4fc3-93c3-ba06a588d2b5",
"indicator--459f362f-b8e9-4e49-8b69-10f426f4a6d7",
"indicator--de2ea741-6b7c-4047-b59b-c63bd7eb219c",
"indicator--977a28aa-984f-4899-a153-1f2848bf3311",
"indicator--e799ab01-f9cf-4f5c-bd37-66415f0ed1fc",
"indicator--11974cb1-b140-4731-9d22-66ed6d06a50e",
"indicator--4e6ae7d5-aae3-4e78-8c11-f8cff9774922",
"indicator--41276daf-173b-4100-91ef-c269c2c98d5e",
"indicator--5fef83cd-1b45-428c-ae5f-dfa651afd10b",
"indicator--30f353eb-acd3-4057-b8e1-fa38a04fea6b",
"indicator--d55055d6-f99b-4955-85ee-1e7cba26c04d",
"indicator--673c78f1-3c51-43dc-9b1f-b62ac7a0216e",
"indicator--49495f87-755d-4b9c-9972-bcd006714520",
"indicator--43de53a3-d240-4471-90f0-a195c343bfe2",
"indicator--5c26e16c-2b05-4f61-b91d-e420230ef018",
"indicator--244713b7-e68f-4476-81eb-edc3a1fe0eb6",
"indicator--89344eba-6207-4dfb-a458-c46aa762ff01",
"indicator--99b687e0-107f-451d-94e0-bb6d1c1e0f09",
"indicator--b9726997-250b-49f6-9552-8eb9f45fec1c",
"indicator--2d2e95b3-1a87-4a00-b4d9-10bea68e7678",
"x-misp-object--b187abff-58e1-4ed0-970b-3b4e6e941d4d"
],
"labels": [
"Threat-Report",
"misp:tool=\"MISP-STIX-Converter\"",
"misp-galaxy:misp-attack-pattern=\"Initial Access - Phishing [T1566]\"",
"misp-galaxy:misp-attack-pattern=\"Defense Evasion - Impair Defenses: Disable or Modify Tools [T1562.001]\"",
"misp-galaxy:stix-2.1-attack-pattern=\"3cbb3d7b-4cae-4c7e-a682-e8b70e3f1ee4\"",
"misp-galaxy:stix-2.1-attack-pattern=\"2c373316-6ce5-4f43-9daf-02c94cb0c0a5\"",
"misp-galaxy:misp-attack-pattern=\"Impact - Inhibit System Recovery [T1490]\"",
"misp-galaxy:stix-2.1-attack-pattern=\"f0a904f4-b3f5-4e42-b565-418dc6932d44\"",
"misp-galaxy:stix-2.1-attack-pattern=\"fc5b8a15-c3de-4c93-803a-ce92b76e54e7\"",
"misp-galaxy:misp-attack-pattern=\"Initial Access - Valid Accounts [T1078]\"",
"misp-galaxy:stix-2.1-attack-pattern=\"69d1635c-cd2b-4331-8a2c-8b66e98f45d8\"",
"misp-galaxy:misp-attack-pattern=\"Impact - Data Encrypted for Impact [T1486]\"",
"type:OSINT",
"osint:lifetime=\"perpetual\"",
"osint:certainty=\"50\"",
"tlp:clear"
],
"object_marking_refs": [
"marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"
]
},
{
"type": "x-misp-attribute",
"spec_version": "2.1",
"id": "x-misp-attribute--0b874dcc-1e90-48c2-ac4b-50c3f38be26f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"labels": [
"misp:type=\"comment\"",
"misp:category=\"Other\""
],
"x_misp_category": "Other",
"x_misp_comment": "Imported from STIX header description",
"x_misp_type": "comment",
"x_misp_value": "The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), Department of Health and Human Services (HHS), and Multi-State Information Sharing and Analysis Center (MS-ISAC) (hereafter referred to as the authoring organizations) are releasing this joint CSA to provide information on Black Basta, a ransomware variant whose actors have encrypted and stolen data from 12 out of 16 critical infrastructure sectors, including the Healthcare and Public Health (HPH) Sector.\n\nThis joint CSA provides TTPs and IOCs obtained from FBI investigations and third-party reporting. Black Basta is considered a ransomware-as-a-service (RaaS) variant and was first identified in April 2022. Some Black Basta affiliates have impacted a wide range of businesses and critical infrastructure in North America, Europe, and Australia. As of May 2024, Black Basta affiliates have impacted over 500 organizations globally."
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--78431014-7b60-41aa-8a9e-a592d6d3f063",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[url:value = 'fy9.36c44903529fa273afff3c9b7ef323432e223d22ae1d625c4a3957d57.015c16eff32356bf566c4fd3590c6ff9b2f6e8c587444ecbfc4bcae7.f71995aff9e6f22f8daffe9d2ad9050abc928b8f93bb0d42682fd3c3.445de2118.588027fa.dns.realbumblebee.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--85064016-63e7-4b99-adc3-4841d070d1a8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[domain-name:value = 'literoved.ru']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6346e1ea-e470-4157-b607-9744c28f2c26",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[domain-name:value = 'winklen.ch']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--81b3fe0d-7e65-46a4-afa9-41c48f78a544",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[domain-name:value = 'xkpal.1a4a64b6.dns.blocktoday.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f6e82e61-245f-40bb-9856-bd4c1603c85d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[domain-name:value = 'nuher.1d67bbcf4.456d87aa6.2d84dfba.dns.specialdrills.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--e96a436c-b10b-4084-b0f4-02d2930d4756",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[url:value = 'nuher.3577125d2a75f6a277fc5714ff536c5c6af5283d928a66daad6825b9a.7aaf8bba88534e88ec89251c57b01b322c7f52c7f1a5338930ae2a50.cbb47411f60fe58f76cf79d300c03bdecfb9e83379f59d80b8494951.e10c20f77.7fcc0eb6.dns.blocktoday.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5ed45418-d92e-402a-ac7f-c65644ac9df6",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[domain-name:value = 'blocktoday.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--ae833f36-9f09-4038-b346-3017d47775a7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[domain-name:value = 'xkpal.d6597fa.dns.blocktoday.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d4103783-4961-4c7d-9264-baeaf9be8f9a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[url:value = 'fy9.39d9030e5d3a8e2352daae2f4cd3c417b36f64c6644a783b9629147a1.afd8b8a4615358e0313bad8c544a1af0d8efcec0e8056c2c8eee96c7.b06d1825c0247387e38851b06be0272b0bd619b7c9636bc17b09aa70.a46890f27.588027fa.dns.realbumblebee.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--e117e4c9-e67d-4960-b486-5fdf9414aff4",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[domain-name:value = 'my.2a91c002002.588027fa.dns.realbumblebee.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--e76d122c-dd56-437d-b9d3-fada434fab44",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[domain-name:value = 'dns.artspathgroupe.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--297c2687-4b72-4df6-a5d8-6808c0f81606",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[domain-name:value = 'dns.trailshop.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--ecf841c9-57f2-49bb-9cc9-38b28e120686",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[domain-name:value = '0gpw.588027fa.dns.realbumblebee.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--3a96c826-19b2-4431-91f3-a25654ff851f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.MD5 = 'b3fe23dd4701ed00d79c03043b0b952e']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"md5\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--660e6430-9ac0-46d4-8965-5d927bfe7439",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.MD5 = '2642ec377c0cee3235571832cb472870']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"md5\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--035ff42d-f704-47a4-b314-954632cafff4",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.MD5 = '4c897334e6391e7a2fa3cbcbf773d5a4']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"md5\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--00bba8b3-44c1-4046-bdf9-62916a702486",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.SHA256 = 'b32daf27aa392d26bdf5faafbaae6b21cd6c918d461ff59f548a73d447a96dd9']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--b8bd2a48-e99a-4f19-b15c-ee1cf6643a1e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.SHA256 = '3337a7a9ccdd06acdd6e3cf4af40d871172d0a0e96fc48787b574ac93689622a']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--05f1b695-72bc-4d99-a2b6-d9293e62f68e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.SHA256 = '69192821f8ce4561cf9c9cb494a133584179116cb2e7409bea3e18901a1ca944']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1d963eb3-777d-49b9-9126-18ff614b06b2",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.SHA256 = '0a8297b274aeab986d6336b395b39b3af1bb00464cf5735d1ecdb506fef9098e']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--65c9006e-5ba0-4cb1-a20a-a8e94fd4db8b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.SHA256 = '42f05f5d4a2617b7ae0bc601dd6c053bf974f9a337a8fcc51f9338b108811b78']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--b9941157-7571-4044-848f-759099580ef7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.SHA256 = '17879ed48c2a2e324d4f5175112f51b75f4a8ab100b8833c82e6ddb7cd817f20']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--14469a88-83da-49b2-b4e6-bd94eae04a6c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.SHA256 = '3090a37e591554d7406107df87b3dc21bda059df0bc66244e8abef6a5678af35']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5f29ad3f-a17d-4126-ad74-1ea067793775",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.SHA256 = '37a5cd265f7f555f2fe320a68d70553b7aa9601981212921d1ac2c114e662004']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--88d40950-c531-4e71-9599-7efa18b53c64",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.SHA256 = '3c50f6369f0938f42d47db29a1f398e754acb2a8d96fd4b366246ac2ccbe250a']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--0f9f93ac-68e8-44e0-bb70-fbc98b5a979e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:03.000Z",
"modified": "2024-07-19T13:37:03.000Z",
"pattern": "[file:hashes.SHA256 = '462bbb8fd7be98129aa73efa91e2d88fa9cafc7b47431b8227d1957f5d0c8ba7']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--bbe12017-8fe8-4f3d-9dee-a9f24c6750a8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'f039eaaced72618eaba699d2985f9e10d252ac5fe85d609c217b45bc8c3614f4']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--bc89c167-edc4-4e21-b610-729647fe1c95",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'd73f6e240766ddd6c3c16eff8db50794ab8ab95c6a616d4ab2bc96780f13464d']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--dede4d67-850e-4e52-a302-7eac06e84244",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'acb60f0dd19a9a26aaaefd3326db8c28f546b6b0182ed2dcc23170bcb0af6d8f']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--b7e0f9ad-4152-41cb-b1d4-fbc2875316a2",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'fafaff3d665b26b5c057e64b4238980589deb0dff0501497ac50be1bc91b3e08']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--65ec104e-26c3-4649-bba5-f8c06984594b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '90ba27750a04d1308115fa6a90f36503398a8f528c974c5adc07ae8a6cd630e7']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1fe7785f-f98d-4666-9c3f-283d1e38aead",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '7ad4324ea241782ea859af12094f89f9a182236542627e95b6416c8fb9757c59']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f5bc3ca7-1bf8-4993-aa3c-fa93bae9abbc",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '62e63388953bb30669b403867a3ac2c8130332cf78133f7fd4a7f23cdc939087']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--a5db2386-75b7-4478-99a9-4b6ca138ad49",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '0554eb2ffa3582b000d558b6950ec60e876f1259c41acff2eac47ab78a53e94a']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5444a345-3135-4e92-99e0-c722ca1faf64",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '360c9c8f0a62010d455f35588ef27817ad35c715a5f291e43449ce6cb1986b98']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1ccf1bd4-1abf-4509-83f8-6a3108cf9b37",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '1c1b2d7f790750d60a14bd661dae5c5565f00c6ca7d03d062adcecda807e1779']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--63698edc-0793-452b-a33c-a81f2fa4b6e8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '86a4dd6be867846b251460d2a0874e6413589878d27f2c4482b54cec134cc737']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--4fb7ceff-39c7-44c8-aab3-31e6daa4675e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'a7b36482ba5bca7a143a795074c432ed627d6afa5bc64de97fa660faa852f1a6']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--35838389-8134-48b9-8a24-55cafea61489",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '05ebae760340fe44362ab7c8f70b2d89d6c9ba9b9ee8a9f747b2f19d326c3431']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--19cbb059-3036-4a45-962a-ca14817d2430",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '5942143614d8ed34567ea472c2b819777edd25c00b3e1b13b1ae98d7f9e28d43']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--9f7a83be-7c9b-41d0-8ce3-7e35f4b170bb",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'd15bfbc181aac8ce9faa05c2063ef4695c09b718596f43edc81ca02ef03110d1']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--9053fe61-400d-4b32-8f05-532cea6cb3bf",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '5b2178c7a0fd69ab00cef041f446e04098bbb397946eda3f6755f9d94d53c221']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--aef7f996-e54b-4a59-ae62-15dfee022638",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '39939eacfbc20a2607064994497e3e886c90cd97b25926478434f46c95bd8ead']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--3b9c03e0-18eb-48ff-9e29-ece81357d864",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '58ddbea084ce18cfb3439219ebcf2fc5c1605d2f6271610b1c7af77b8d0484bd']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--40b034b5-60e1-4e71-8ad6-c6363b8ba7ee",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '88c8b472108e0d79d16a1634499c1b45048a10a38ee799054414613cc9dccccc']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f7e7ed02-caff-4dba-bb83-a87c672742c6",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'b6a4f4097367d9c124f51154d8750ea036a812d5badde0baf9c5f183bb53dd24']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5c6b799b-8bc0-43ed-9749-043d8fd33fb0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'f21240e0bf9f0a391d514e34d4fa24ecb997d939379d2260ebce7c693e55f061']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--83d665a6-2142-4e1e-a2a7-b19d79c539b4",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '8501e14ee6ee142122746333b936c9ab0fc541328f37b5612b6804e6cdc2c2c6']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d423e91d-fd0a-42eb-887d-ec8cc6d3e487",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '034b5fe047920b2ae9493451623633b14a85176f5eea0c7aadc110ea1730ee79']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f46621f6-1b6c-4b1e-a2f8-63abf80613c9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'd503090431fdd99c9df3451d9b73c5737c79eda6eb80c148b8dc71e84623401f']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5e9ae8fb-70a8-42d1-aeef-752a3c7eeeb0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'c26a5cb62a78c467cc6b6867c7093fbb7b1a96d92121d4d6c3f0557ef9c881e0']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--45f115a4-0978-41fb-bc1b-e85146c844ee",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '819cb9bcf62be7666db5666a693524070b0df589c58309b067191b30480b0c3a']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5fd26ff1-8c26-455c-8094-c9b8ef6f69f0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '4ac69411ed124da06ad66ee8bfbcea2f593b5b199a2c38496e1ee24f9d04f34a']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6186573a-8738-4a8a-b39c-6b2643b62820",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '3a8fc07cadc08eeb8be342452636a754158403c3d4ebff379a4ae66f8298d9a6']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6a0fb013-028e-4342-9fb0-1d85942f31a2",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '808c96cb90b7de7792a827c6946ff48123802959635a23bf9d98478ae6a259f9']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1af8d0a8-1a66-475c-9cae-8e7d25c25ac7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = '3c65da7f7bfdaf9acc6445abbedd9c4e927d37bb9e3629f34afc338058680407']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--dcbbcbe3-2743-47f8-9705-c036554328b2",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[file:hashes.SHA256 = 'd3683beca3a40574e5fd68d30451137e4a8bbaca8c428ebb781d565d6a70385e']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--04a05438-20bf-45d3-9629-62d6a7150920",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[domain-name:value = 'artspathgroupe.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--89249329-2aba-44c9-853a-63c7c0abb26b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[domain-name:value = 'thetrailbig.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--bcfae15a-b2c1-45fd-8bd1-eeaff1ca9afc",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[domain-name:value = 'rasapool.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f393e706-e07e-4288-be37-9bb138510b3d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[domain-name:value = 'specialdrills.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--be945d4c-d024-4c95-b6b8-9bcbb6d403c0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[domain-name:value = 'thesmartcloudusa.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--652270b1-3186-41ea-8175-220c2e616394",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[domain-name:value = 'tomlawcenter.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5c99b0ff-e9bf-47ae-91be-d112f5dea07c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[domain-name:value = 'limitedtoday.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--75c4ade3-8aad-4dfc-8173-bd131a361860",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[domain-name:value = 'realbumblebee.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--251fdaa8-181a-411a-a9a6-40f5f72d61fe",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:04.000Z",
"modified": "2024-07-19T13:37:04.000Z",
"pattern": "[domain-name:value = 'kekeoamigo.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b76b5ee-7943-404d-a411-27f703ff9132",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'recentbee.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--0472684d-f26e-4261-b39b-be04554ddc6d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'myfinancialexperts.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d17a5357-b7a4-4964-9e63-e6cd08326dbf",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'childrensdolls.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--15a8f0fa-2dcc-483a-b2f2-8e7829acd499",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'buyblocknow.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--0d6ecd3d-070c-4634-8110-ed5b951828de",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'artspathgroup.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--90293069-c8ab-4228-9635-9151ae04f430",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'trailshop.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--87aaa50b-4e26-4723-97a5-63e59999d180",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'webnubee.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--384c1da0-1a29-4912-b5ad-73aa6e124a60",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'investrealtydom.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f698e979-b1d8-4976-8a35-e6355b65bdd7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'magentoengineers.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--8f5bcc3c-3dbb-4def-a072-79fe589dc49b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'nebraska-lawyers.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--848d8cd7-0e3d-49e3-b429-7fbdcc1a0e14",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'adslsdfdsfmo.world']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--a3668c6d-ce9b-45bd-b071-63baf29a8325",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'consulheartinc.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--3e3c6e53-9b6c-4736-8b0d-c2e425fe211e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'businessprofessionalllc.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--13d5971f-c72a-4425-a4d6-2fced0a38d02",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'otxcosmeticscare.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--0191c644-f2aa-4ae6-9df3-17823fd3729c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'otxcarecosmetics.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--ee93e661-dc17-4bde-ba1a-35c32cad744e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'artstrailman.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1e5f27c8-7604-49d8-af35-d9e08fca7820",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'ontexcare.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--73d3915c-6520-4fc5-9375-64ede0aa7bcd",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'securecloudmanage.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--7beec808-0f1e-4187-a88a-522a8e490a70",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'startupbuss.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--a1f4e8d3-4d07-4b5d-9651-770d95d1de41",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'oneblackwood.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--46ba1b23-4da8-45ae-ba29-b3fc8cfcf8e0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'recentbeelive.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--710a4f88-305a-4119-bbca-7550bbfa588b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'trailcosolutions.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5c229e73-8eba-49b5-a19b-da6609696271",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'onedogsclub.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--eb7333fe-e049-401a-b77a-07dde9de8061",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'trailcocompany.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--c7d1042c-cf61-44fe-8f84-f47794936aab",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'artstrailreviews.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--bdabcba1-d9b9-4394-abca-434f5166988e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'wipresolutions.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--4a083c98-ebc4-4e3c-b206-68612ded9e30",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'trackgroup.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--bb2a78af-bbb1-44ad-9036-7f89a1f635f8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'modernbeem.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--cb54824f-1f99-4afe-9fd4-49d29508028b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'currentbee.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--11cedacf-b82f-4126-9430-cbfaae530be0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'buygreenstudio.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5d7c406a-a8ae-469d-9699-3e935a761b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'topglobaltv.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--fd6d901c-0aac-428c-8f9d-365f2fda7dd1",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'usaglobalnews.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--c30e4f30-f9ae-4c76-9b87-2997e1965562",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'startupmartec.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1b63b1c8-ff2c-4c9b-b231-8234b5b95d0c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'startupbusiness24.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--dc7d39e1-b6af-4e01-af9c-4c4e59f8d6ff",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'jenshol.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1c48e2b0-e1df-485f-a131-a6a61e0f6f69",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'simorten.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--7ac21efd-3d4f-47ce-b168-8f3da77a1703",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'investmentgblog.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--7fb6486e-e526-4dc2-a3db-bf8820947555",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'protectionek.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--a7e303fd-75b0-483c-ae8f-78619bfa2902",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'technologgies.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6c7055e7-a559-4d5e-95e2-80b81434d8b8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:05.000Z",
"modified": "2024-07-19T13:37:05.000Z",
"pattern": "[domain-name:value = 'unougn.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--64e60e6a-1765-4e29-a9f8-96fdc654648e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'getfnewsolutions.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--0bf2a721-f4c1-436e-b2cb-f89aab9ad5d7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'withclier.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f4493533-756f-4401-93de-2f06b15f186a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'bluenetworking.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--fd04e0c6-b8eb-4ae8-abbe-2b78d011709d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'erihudeg.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--315837ff-4f8e-4668-ba75-8fe48acdc1a0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'seohomee.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--9802448a-2bd8-44b5-a081-558994873032",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'allcompanycenter.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--9518b799-45d3-419c-b6fe-2e9150b16aa0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'taskthebox.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--26468f9a-466d-4e40-99e0-16d9a29096e8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'getfnewssolutions.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--cadc997f-b556-436d-b2f4-57b04ca62ef8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'softradar.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--148fa263-b2b3-4f6b-8e4b-86b2acb20a9f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'businesforhome.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--34e641dd-0698-4e20-ac39-73ad3f4a21ee",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'gartenlofti.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--9a7d2394-531a-4e16-bdc0-285579249fd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'karmafisker.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--2f1a56ec-ef77-44ba-b50f-544e7a6e8515",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'cloudworldst.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--153e88ce-98e2-4a4d-94d8-874c44a3dd9b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'monitor-websystem.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--0ee1d3e0-4344-449f-aeea-fb9a5d025673",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'prettyanimals.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--a000b0e9-324a-463e-ad8f-6b1a82cb6b96",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'startuptechnologyw.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--c003bb06-b2f5-40f7-b1e1-35e9ea177f19",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'trailgroupl.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--805f43fb-61af-4c40-9372-bedcd4b94a54",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'monitorsystem.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--c712f4c1-edd9-416f-aa28-c6b4bc607431",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'ionoslaba.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--b58e3639-9322-4eef-b008-a5477f0b42a1",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'stockinvestlab.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--04ef2dbb-6776-43ec-b5c9-49c786444f4c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'airbusco.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d2ef037a-31fc-4396-848d-1cee6e661ae8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'jessvisser.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d339c3b1-0c1e-44ce-b072-9452c67c76c0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'maluisepaul.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--0262f110-e4e1-4cf6-ba34-0f6d7999cd52",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'mytrailinvest.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6794a38b-7a96-4a60-91e5-c18bc767c010",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'garbagemoval.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d557c14c-07c8-4c90-9916-6ed7265609c3",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'constrtionfirst.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d61b7277-2472-4c3d-be88-fddb84c47788",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'wardeli.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--87f2b1ff-5388-4a34-9d2b-d66998d5dfd0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'caspercan.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--da9afdb4-2eac-48e6-bc7c-a54d1eb13b11",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'masterunix.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--07485ce4-8368-45e2-8dc1-9d58aeec0023",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'brendonline.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--e7bf65c5-77d5-47cb-a622-a86665f7896c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'septcntr.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1afc0abc-1084-4730-96c4-fee551f38d15",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'unitedfrom.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--c1e9a7cb-25f2-4024-ae07-bf83137af0d2",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'kolinileas.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b7764ac-aa7a-4488-a39d-b22c943f03ab",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'animalsfast.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--7a38c16d-45ba-4f17-b88c-93c2cea165ba",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'auuditoe.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6391d88b-62e9-470f-a3c5-dd40a6df6477",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'investmentrealtyhp.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1f9e0c1b-87ab-4650-931b-929842d2a647",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'clearsystemwo.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--47068e2d-513c-4c84-a8fa-a9c18b79a43a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'audsystemecll.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6d013ac5-4aeb-45cf-88dc-540639f4ea46",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'welausystem.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--25dd9b0e-7e28-4486-865d-9408b8014af8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'treeauwin.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--9a3bcfb5-35d8-47bc-8ab3-d822400e7dab",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'reelsysmoona.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--7275a6a3-a6eb-4c55-a026-2bb4595ac80e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'investmendvisor.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d65bf398-f4a8-460c-991e-fea51126eb4c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:06.000Z",
"modified": "2024-07-19T13:37:06.000Z",
"pattern": "[domain-name:value = 'wellsystemte.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--0aceb1b4-5495-4b0e-817f-0875b62b287f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[domain-name:value = 'steamteamdev.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--eb233eb9-6fb9-4746-96f9-ec965f3cbd25",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[domain-name:value = 'startupbizaud.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54de71ae-65e5-4b93-b387-d888f1727e94",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[domain-name:value = 'xserver.jp']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--4cf436a8-36fa-4c13-b4b6-543ddda02e57",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '83.243.40.10']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--de83d187-64bb-48a6-93a8-0fb5fcd8ef74",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '88.198.198.90']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f0d867d0-073e-4416-9ca2-87b26706d075",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '183.181.86.147']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f08eaf23-2e38-446f-984f-d98d33bf040e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '80.239.207.200']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--ec260542-c032-4fa4-84b3-6151842e9023",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '155.138.246.122']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--b5d1eff7-7e78-4f8e-898d-deb09973b985",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.8.10.134']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6a5fc3a9-4b59-49a1-af3a-e118f16a3e92",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '188.130.137.181']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--eb2beda7-b386-4478-b578-357034da6e48",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '188.130.218.39']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--378f9abb-7c86-4c2e-ac71-dafc00c10b38",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '5.183.130.92']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--a265b3d0-d617-463f-ae3f-f5cd948becdd",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '107.189.30.69']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--69e829fd-9052-4354-bbd0-d693813e70b4",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '185.7.214.79']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b26002a-4961-4f4a-83ee-20ce1ad1ea0d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.8.16.77']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--c16d00ce-cc23-4034-bb5f-62fe7c7fc200",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '5.78.115.67']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--a13cde1f-47ff-4701-bf94-f4503533d507",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '185.219.221.136']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--78ac4876-a0ff-4fc3-93c3-ba06a588d2b5",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '95.181.173.227']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--459f362f-b8e9-4e49-8b69-10f426f4a6d7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '64.176.219.106']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--de2ea741-6b7c-4047-b59b-c63bd7eb219c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '116.203.186.178']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--977a28aa-984f-4899-a153-1f2848bf3311",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.161.27.151']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--e799ab01-f9cf-4f5c-bd37-66415f0ed1fc",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '185.220.101.149']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--11974cb1-b140-4731-9d22-66ed6d06a50e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '185.220.100.240']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--4e6ae7d5-aae3-4e78-8c11-f8cff9774922",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[file:hashes.MD5 = '1bf171b1f388691c3985df6fb6c3f0d1' AND file:hashes.SHA1 = 'fdb92fac37232790839163a3cae5f37372db7235' AND file:hashes.SHA256 = '0112e3b20872760dda5f658f6b546c85f126e803e27f0577b294f335ffa5a298' AND file:hashes.SSDEEP = '196608:puRTOvaeQyt37NKNGZH5c4Eo8qqBNoNdRn+ILwIjKek529:p4TheZaGZZc4Eoko0IcIRkA9']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--41276daf-173b-4100-91ef-c269c2c98d5e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[file:hashes.MD5 = '6441d7260944bcedc5958c5c8a05d16d' AND file:hashes.SHA1 = '46257982840493eca90e051ff1749e7040895584' AND file:hashes.SHA256 = '723d1cf3d74fb3ce95a77ed9dff257a78c8af8e67a82963230dd073781074224' AND file:hashes.SSDEEP = '24576:1p2gwjk6ikYhJ9lvGnYZvy48/V33ck7LnBAyldFu8hod/Qodly:1AgxkmvGnYWccjBAwFadRd' AND file:name = '723d1cf3d74fb3ce95a77ed9dff257a78c8af8e67a82963230dd073781074224']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5fef83cd-1b45-428c-ae5f-dfa651afd10b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:07.000Z",
"modified": "2024-07-19T13:37:07.000Z",
"pattern": "[file:hashes.MD5 = 'b365faebaf416681b5f376c8aa4f4470' AND file:hashes.SHA1 = '591d363928f0d5f4629196d60fd899469267da09' AND file:hashes.SHA256 = 'fff35c2da67eef6f1a10c585b427ac32e7f06f4e4460542207abcd62264e435f' AND file:hashes.SSDEEP = '24576:wjlZDq1Een/s9NUuKF+gEn7gKheviz6GYtVb9BXpV7wldFu8hod/Qodly:wjlreiUuKFS70A059/V7GFadRd' AND file:name = 'minipath.exe' AND file:size = '1499648']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--30f353eb-acd3-4057-b8e1-fa38a04fea6b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:08.000Z",
"modified": "2024-07-19T13:37:08.000Z",
"pattern": "[file:hashes.MD5 = 'a292fee8d8db83711e72c06d6f82562d' AND file:hashes.SHA1 = '82f88c1af036181ee4e92a2f9338c152d1ff0c58' AND file:hashes.SHA256 = 'df5b004be71717362e6b1ad22072f9ee4113b95b5d78c496a90857977a9fb415' AND file:hashes.SSDEEP = '12288:RcOlvT7Zom3rITxaVDrd5vUa69Ghj91nlQocyW7/P6E4kKjqnes9PBVW/g:RDJJDbcJ90jtH0bP6ELVne2' AND file:name = 'UpdateReminder.exe']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:08Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d55055d6-f99b-4955-85ee-1e7cba26c04d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:08.000Z",
"modified": "2024-07-19T13:37:08.000Z",
"pattern": "[file:hashes.MD5 = 'bc95f228b11fa3b4e91c30d98f9f3bff' AND file:hashes.SHA1 = '25ce6c74a6f39289717522cad5eacdf5b9f4bae8' AND file:hashes.SHA256 = '882019d1024778e13841db975d5e60aaae1482fcf86ba669e819a68ce980d7d3' AND file:hashes.SSDEEP = '24576:llm7yYs6kQ2WxeisU09E3b6E/IwU5jjpBAPy:B6YWxG9E3b6Nz5jjpBGy']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:08Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--673c78f1-3c51-43dc-9b1f-b62ac7a0216e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:08.000Z",
"modified": "2024-07-19T13:37:08.000Z",
"pattern": "[file:hashes.MD5 = 'e83d6092439a90af2b4b1db2ad3a9c5a' AND file:hashes.SHA1 = '4da6fef533b37a12ed1e357df66802de29c1ab5c' AND file:hashes.SHA256 = '51eb749d6cbd08baf9d43c2f83abd9d4d86eb5206f62ba43b768251a98ce9d3e' AND file:hashes.SSDEEP = '24576:zvA0H/qL9fu4c8JZHSE6biXLemW34Mi+4LKH:UHL9fu4hSLbiXLer4MD4WH' AND file:name = '51eb749d6cbd08baf9d43c2f83abd9d4d86eb5206f62ba43b768251a98ce9d3e']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:08Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--49495f87-755d-4b9c-9972-bcd006714520",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:08.000Z",
"modified": "2024-07-19T13:37:08.000Z",
"pattern": "[file:hashes.MD5 = '0bf7bc20496143a9f028e77ab47b4698' AND file:hashes.SHA1 = 'aa54013aeb502b4a936331deb76a6411f1f1ade7' AND file:hashes.SHA256 = '350ba7fca67721c74385faff083914ecdd66ef107a765dfb7ac08b38d5c9c0bd' AND file:hashes.SSDEEP = '12288:bO+sm75a7DI9Mv53VI/XfaUs442JbV24chSS1i2wZbDFMMWzVFq:rh75a7M9S3VYa4npY4cFM2MWhY' AND file:name = '350ba7fca67721c74385faff083914ecdd66ef107a765dfb7ac08b38d5c9c0bd']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:08Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--43de53a3-d240-4471-90f0-a195c343bfe2",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:08.000Z",
"modified": "2024-07-19T13:37:08.000Z",
"pattern": "[file:hashes.MD5 = 'afa27795c0c86b6afeb138d0fb09506b' AND file:hashes.SHA1 = 'd32e44f7e04a8c84e7159ed020dcf26b6e51416e' AND file:hashes.SHA256 = '07117c02a09410f47a326b52c7f17407e63ba5e6ff97277446efc75b862d2799' AND file:hashes.SSDEEP = '24576:pyAo7FAIP03acBtXWKe25ep59MxQU08wHG3MJAQof1hB:Lo7ARBtmKe28MSU08wHaM6Qo1hB' AND file:name = '07117c02a09410f47a326b52c7f17407e63ba5e6ff97277446efc75b862d2799']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:08Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5c26e16c-2b05-4f61-b91d-e420230ef018",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:08.000Z",
"modified": "2024-07-19T13:37:08.000Z",
"pattern": "[file:hashes.MD5 = '59db7bd22d4ec503b768ece646205c27' AND file:hashes.SHA1 = 'ff57cda4829978d8b6f7f1f31356f291b37acaa6' AND file:hashes.SHA256 = 'e28188e516db1bda9015c30de59a2e91996b67c2e2b44989a6b0f562577fd757' AND file:hashes.SSDEEP = '12288:lMJYSP5VV3VG7rYyPT+p/VYXMJ8oD536bGIqs7GBvw0QygfmHp:lMVj3IXYETQV1XD5VIZ7GOg1J' AND file:name = 'e28188e516db1bda9015c30de59a2e91996b67c2e2b44989a6b0f562577fd757']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:08Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--244713b7-e68f-4476-81eb-edc3a1fe0eb6",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:08.000Z",
"modified": "2024-07-19T13:37:08.000Z",
"pattern": "[file:hashes.MD5 = 'c115bbbdb1a61f8c553d74802bfd78fb' AND file:hashes.SHA1 = '1f439569e3c1c14ea9f02235f8f45c49e2764160' AND file:hashes.SHA256 = '9a55f55886285eef7ffabdd55c0232d1458175b1d868c03d3e304ce7d98980bc' AND file:hashes.SSDEEP = '12288:trkm8R9qXgmj3d7khtgfpedbKbiTuDZWhswtik5j2w+f:2Ujt7+twpedbKb1dWhse9K' AND file:name = '9a55f55886285eef7ffabdd55c0232d1458175b1d868c03d3e304ce7d98980bc']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:08Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--89344eba-6207-4dfb-a458-c46aa762ff01",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:09.000Z",
"modified": "2024-07-19T13:37:09.000Z",
"pattern": "[file:hashes.MD5 = '7688c1b7a1124c1cd9413f4b535b2f44' AND file:hashes.SHA1 = '8ccac360e2ca37b2fa9f5fa81b22114fb8936120' AND file:hashes.SHA256 = '96339a7e87ffce6ced247feb9b4cb7c05b83ca315976a9522155bad726b8e5be' AND file:hashes.SSDEEP = '6144:OUjqtclKpiqKLICZM5cUq29shXs6u7ulx97Z52Gd:fqt4KoVkCm9oV' AND file:name = 'c:windowssystem32mrpy2bfa7.dll; 96339a7e87ffce6ced247feb9b4cb7c05b83ca315976a9522155bad726b8e5be' AND file:size = '209170']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:09Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--99b687e0-107f-451d-94e0-bb6d1c1e0f09",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:09.000Z",
"modified": "2024-07-19T13:37:09.000Z",
"pattern": "[file:hashes.MD5 = '53fdeb923b1890d29b8f29da77995938' AND file:hashes.SHA1 = 'a996ccd0d58125bf299e89f4c03ff37afdab33fc' AND file:hashes.SHA256 = 'ae7c868713e1d02b4db60128c651eb1e3f6a33c02544cc4cb57c3aa6c6581b6e' AND file:hashes.SSDEEP = '12288:M1DTMHixr1moQqUiXINDl/m1s6BQio67VlAU:AzmoQqUiXw2s6yiVxR' AND file:name = 'ae7c868713e1d02b4db60128c651eb1e3f6a33c02544cc4cb57c3aa6c6581b6e; ae7c868713e1d02b4db60128c651eb1e3f6a33c02544cc4cb57c3aa6c6581b6e.bin' AND file:size = '556576']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:09Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--b9726997-250b-49f6-9552-8eb9f45fec1c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:09.000Z",
"modified": "2024-07-19T13:37:09.000Z",
"pattern": "[file:hashes.MD5 = '3f400f30415941348af21d515a2fc6a3' AND file:hashes.SHA1 = 'bd0bf9c987288ca434221d7d81c54a47e913600a' AND file:hashes.SHA256 = '5d2204f3a20e163120f52a2e3595db19890050b2faa96c6cba6b094b0a52b0aa' AND file:hashes.SSDEEP = '12288:TFx0B/O7JxPzW9JPlHKtxYRkG7zLfpXE6SbJ:Rx7zW9JPlGskG1v' AND file:name = '3f400f30415941348af21d515a2fc6a3; 5d2204f3a20e163120f52a2e3595db19890050b2faa96c6cba6b094b0a52b0aa' AND file:size = '576512']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:09Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--2d2e95b3-1a87-4a00-b4d9-10bea68e7678",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:09.000Z",
"modified": "2024-07-19T13:37:09.000Z",
"pattern": "[file:hashes.MD5 = '267d5c3137d313ce1a86c2f255a835e6' AND file:hashes.SHA1 = 'c7a37c0edeffd23777cca44f9b49076be1bd43e6' AND file:hashes.SHA256 = '17205c43189c22dfcb278f5cc45c2562f622b0b6280dcd43cc1d3c274095eb90' AND file:hashes.SSDEEP = '12288:aEky5bwpy02iRaeXCP2CIcdoKAXMr+Mr+kJZ4:j02iRaeHPcdo18rTrf6' AND file:name = '17205c43189c22dfcb278f5cc45c2562f622b0b6280dcd43cc1d3c274095eb90.bin']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-07-19T13:37:09Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--b187abff-58e1-4ed0-970b-3b4e6e941d4d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-19T13:37:09.000Z",
"modified": "2024-07-19T13:37:09.000Z",
"labels": [
"misp:name=\"original-imported-file\"",
"misp:meta-category=\"file\""
],
"x_misp_attributes": [
{
"type": "attachment",
"object_relation": "imported-sample",
"value": "AA24-131A.stix_.xml",
"category": "External analysis",
"uuid": "767aeb5b-401e-4e8b-946a-9e269f955f50",
"data": "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
},
{
"type": "text",
"object_relation": "format",
"value": "STIX 1.1",
"category": "Other",
"uuid": "6aed8ec2-267f-48b2-8086-98e2c544aa6c"
}
],
"x_misp_meta_category": "file",
"x_misp_name": "original-imported-file"
},
{
"type": "marking-definition",
"spec_version": "2.1",
"id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",
"created": "2017-01-20T00:00:00.000Z",
"definition_type": "tlp",
"name": "TLP:WHITE",
"definition": {
"tlp": "white"
}
}
]
}