misp-circl-feed/feeds/circl/misp/ff6b1c02-8c44-4646-9d3f-9a831b5ba006.json

437 lines
630 KiB
JSON
Raw Normal View History

2023-04-21 13:25:09 +00:00
{
2023-06-14 17:31:25 +00:00
"type": "bundle",
"id": "bundle--ff6b1c02-8c44-4646-9d3f-9a831b5ba006",
"objects": [
{
"type": "identity",
"spec_version": "2.1",
"id": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-13T11:34:22.000Z",
"modified": "2022-05-13T11:34:22.000Z",
"name": "CIRCL",
"identity_class": "organization"
},
{
"type": "report",
"spec_version": "2.1",
"id": "report--ff6b1c02-8c44-4646-9d3f-9a831b5ba006",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-13T11:34:22.000Z",
"modified": "2022-05-13T11:34:22.000Z",
"name": "Phishing La Banque Postale - Lookyloo Capture (http://one.doesntexist.com/p/b2ba4)",
"published": "2022-05-13T11:34:44Z",
"object_refs": [
"observed-data--70dddd06-dead-43c6-bdf2-6da2fa0538af",
"url--70dddd06-dead-43c6-bdf2-6da2fa0538af",
"observed-data--f84d9326-0fc4-4010-b604-e0d13e6667d1",
"file--f84d9326-0fc4-4010-b604-e0d13e6667d1",
"artifact--f84d9326-0fc4-4010-b604-e0d13e6667d1",
"observed-data--a2de8830-f5b6-4083-96f7-d3e346c2633a",
"url--a2de8830-f5b6-4083-96f7-d3e346c2633a",
"indicator--98f7b0f5-84aa-47cf-a092-6ded5bd596c6",
"indicator--28bcffa1-e25b-43e9-9acd-d732c6456e93",
"indicator--dae82c40-86ac-4eb7-be71-594e6355f171",
"indicator--f506dd8d-6577-41a2-aee6-4dbd731ac45a",
"x-misp-object--b939f553-12b7-43f9-ba4d-40944a3be7db",
"x-misp-object--a530c278-985f-4406-8446-a586d13a5247",
"x-misp-object--96251147-2609-46da-9a12-8e59b27a5d03",
2023-12-14 13:47:04 +00:00
"relationship--1c71f789-a9d6-4c3c-88bf-311d662d69b8",
"relationship--ef5c4fb2-cb63-47a3-ab8e-a5984f61b445",
"relationship--8b89844e-5299-4733-9933-a22c5016cac5",
"relationship--c996d772-97d2-4f50-9dcd-97789277bfab",
"relationship--aa0a779a-5f7c-440b-907b-9a7ec63e52a0",
"relationship--ac9ddb5a-23f2-4173-a512-ed08ae104c89",
"relationship--3e1e9261-844d-4762-b8b8-5dfb3d73e011",
"relationship--8a859f05-d66a-494e-86e6-f9f644f4abcf"
2023-06-14 17:31:25 +00:00
],
"labels": [
"Threat-Report",
"misp:tool=\"MISP-STIX-Converter\"",
"circl:incident-classification=\"phishing\"",
"type:OSINT",
"osint:lifetime=\"perpetual\""
],
"object_marking_refs": [
"marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"
]
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--70dddd06-dead-43c6-bdf2-6da2fa0538af",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-11T15:02:55.000Z",
"modified": "2022-05-11T15:02:55.000Z",
"first_observed": "2022-05-11T15:02:55Z",
"last_observed": "2022-05-11T15:02:55Z",
"number_observed": 1,
"object_refs": [
"url--70dddd06-dead-43c6-bdf2-6da2fa0538af"
],
"labels": [
"misp:type=\"link\"",
"misp:category=\"External analysis\""
]
},
{
"type": "url",
"spec_version": "2.1",
"id": "url--70dddd06-dead-43c6-bdf2-6da2fa0538af",
"value": "https://lookyloo.circl.lu/tree/184f1ad3-27b1-4402-834b-fc0b579313cb"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--f84d9326-0fc4-4010-b604-e0d13e6667d1",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-11T15:02:55.000Z",
"modified": "2022-05-11T15:02:55.000Z",
"first_observed": "2022-05-11T15:02:55Z",
"last_observed": "2022-05-11T15:02:55Z",
"number_observed": 1,
"object_refs": [
"file--f84d9326-0fc4-4010-b604-e0d13e6667d1",
"artifact--f84d9326-0fc4-4010-b604-e0d13e6667d1"
],
"labels": [
"misp:type=\"attachment\"",
"misp:category=\"External analysis\""
]
},
{
"type": "file",
"spec_version": "2.1",
"id": "file--f84d9326-0fc4-4010-b604-e0d13e6667d1",
"name": "screenshot_landing_page.png",
"content_ref": "artifact--f84d9326-0fc4-4010-b604-e0d13e6667d1"
},
{
"type": "artifact",
"spec_version": "2.1",
"id": "artifact--f84d9326-0fc4-4010-b604-e0d13e6667d1",
"payload_bin": "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
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--a2de8830-f5b6-4083-96f7-d3e346c2633a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-11T15:02:55.000Z",
"modified": "2022-05-11T15:02:55.000Z",
"first_observed": "2022-05-11T15:02:55Z",
"last_observed": "2022-05-11T15:02:55Z",
"number_observed": 1,
"object_refs": [
"url--a2de8830-f5b6-4083-96f7-d3e346c2633a"
],
"labels": [
"misp:type=\"link\"",
"misp:category=\"External analysis\""
]
},
{
"type": "url",
"spec_version": "2.1",
"id": "url--a2de8830-f5b6-4083-96f7-d3e346c2633a",
"value": "https://urlscan.io/result/ddce0ad0-1e2a-4c7d-ba74-12c0a33a72c8/"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--98f7b0f5-84aa-47cf-a092-6ded5bd596c6",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-11T15:02:55.000Z",
"modified": "2022-05-11T15:02:55.000Z",
"description": "Submitted URL",
"pattern": "[url:value = 'http://one.doesntexist.com/p/b2ba4' AND url:x_misp_host = 'one.doesntexist.com' AND url:x_misp_domain = 'one.doesntexist.com' AND url:x_misp_ip = '23.94.183.62']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2022-05-11T15:02:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"url\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--28bcffa1-e25b-43e9-9acd-d732c6456e93",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-11T15:03:45.000Z",
"modified": "2022-05-11T15:03:45.000Z",
"description": "Redirect 0",
"pattern": "[url:value = 'https://one.doesntexist.com/p/b2ba4' AND url:x_misp_host = 'one.doesntexist.com' AND url:x_misp_domain = 'one.doesntexist.com' AND url:x_misp_ip = '23.94.183.62']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2022-05-11T15:03:45Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"url\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--dae82c40-86ac-4eb7-be71-594e6355f171",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-11T15:02:55.000Z",
"modified": "2022-05-11T15:02:55.000Z",
"description": "Last redirect (1)",
"pattern": "[url:value = 'https://one.doesntexist.com/p/b2ba4/' AND url:x_misp_host = 'one.doesntexist.com' AND url:x_misp_domain = 'one.doesntexist.com' AND url:x_misp_ip = '23.94.183.62']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2022-05-11T15:02:55Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"url\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f506dd8d-6577-41a2-aee6-4dbd731ac45a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
"description": "Content received for the final redirect (before rendering)",
"pattern": "[file:hashes.MD5 = '98a92abab85921a86fa8f357f5c2c4e1' AND file:hashes.SHA1 = '90bdc8691282c1ea1cdb75ef6c108e0e35ae8900' AND file:hashes.SHA256 = '77f737ba3a583162386ef0dfb658552728c313fb03f6459778513e2b8a08ef02' AND file:hashes.SHA512 = '2897386ef7fc4f647b79f2248092112dbfff2df33975a7cce442e3510fe0fb26c274717aae31878cb467eac39244f043c73d4ec4e907c5e6e11c9926eca8e2cb' AND file:hashes.SSDEEP = '192:KezBXJCdzkNfNjzrL9t4SfjxOZxJZDI4Sm85SHZpBuk45X4NY47LYMgygKnKsj:Ke9JCONlj7PjrYZ/ZUj/54Z//uBqLZvz' AND file:name = 'b2ba4' AND file:size = '9290' AND (file:content_ref.payload_bin = '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
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2022-05-11T15:02:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "file"
}
],
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--b939f553-12b7-43f9-ba4d-40944a3be7db",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_attributes": [
{
"type": "datetime",
"object_relation": "first-submission",
"value": "2022-05-09T19:30:18+00:00",
"category": "Other",
"uuid": "8ecf709d-20b1-445e-9920-2660248dbf9a"
},
{
"type": "datetime",
"object_relation": "last-submission",
"value": "2022-05-10T19:29:58+00:00",
"category": "Other",
"uuid": "b05965d3-7d8f-488c-9c55-634a7b3d227d"
},
{
"type": "link",
"object_relation": "permalink",
"value": "https://www.virustotal.com/gui/url/47f13043816a6cfbb2ab068795b6878b2ba8d68b2aa5957111b3d0e621fe9c87/detection",
"category": "External analysis",
"uuid": "0ec536b6-8c4e-419b-8918-0ab1dbc718a0"
}
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--a530c278-985f-4406-8446-a586d13a5247",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_attributes": [
{
"type": "datetime",
"object_relation": "first-submission",
"value": "2022-05-09T19:35:33+00:00",
"category": "Other",
"uuid": "516beefa-4029-4d75-b0bc-4ecd90e7a273"
},
{
"type": "datetime",
"object_relation": "last-submission",
"value": "2022-05-10T05:47:56+00:00",
"category": "Other",
"uuid": "70442475-94b6-44dd-b314-00e7f07418f7"
},
{
"type": "link",
"object_relation": "permalink",
"value": "https://www.virustotal.com/gui/url/e59d879dcb5d59424d6926ddd0039a7951eb2d9ff86abcfe8c476e237f67bdfc/detection",
"category": "External analysis",
"uuid": "7e467f5c-7379-41da-867e-6a4c9d534e41"
}
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--96251147-2609-46da-9a12-8e59b27a5d03",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_attributes": [
{
"type": "datetime",
"object_relation": "first-submission",
"value": "2022-05-10T05:34:49+00:00",
"category": "Other",
"uuid": "d939826f-ed39-40b0-8572-9e23a24c85b1"
},
{
"type": "datetime",
"object_relation": "last-submission",
"value": "2022-05-10T05:34:49+00:00",
"category": "Other",
"uuid": "b304e6d4-85a6-4f22-94ee-aec5604fe63e"
},
{
"type": "link",
"object_relation": "permalink",
"value": "https://www.virustotal.com/gui/url/93fec846863a31fa02a8ffc799a292675774cf33d43b897adc7615b4bbadb210/detection",
"category": "External analysis",
"uuid": "db7c52db-36cb-4aa3-948a-5161312222b1"
}
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "relationship",
"spec_version": "2.1",
2023-12-14 13:47:04 +00:00
"id": "relationship--1c71f789-a9d6-4c3c-88bf-311d662d69b8",
2023-06-14 17:31:25 +00:00
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
2023-04-21 13:25:09 +00:00
"relationship_type": "redirects-to",
2023-06-14 17:31:25 +00:00
"source_ref": "indicator--98f7b0f5-84aa-47cf-a092-6ded5bd596c6",
"target_ref": "indicator--28bcffa1-e25b-43e9-9acd-d732c6456e93"
},
{
"type": "relationship",
"spec_version": "2.1",
2023-12-14 13:47:04 +00:00
"id": "relationship--ef5c4fb2-cb63-47a3-ab8e-a5984f61b445",
2023-06-14 17:31:25 +00:00
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
2023-04-21 13:25:09 +00:00
"relationship_type": "captured-by",
2023-06-14 17:31:25 +00:00
"source_ref": "indicator--98f7b0f5-84aa-47cf-a092-6ded5bd596c6",
"target_ref": "observed-data--70dddd06-dead-43c6-bdf2-6da2fa0538af"
},
{
"type": "relationship",
"spec_version": "2.1",
2023-12-14 13:47:04 +00:00
"id": "relationship--8b89844e-5299-4733-9933-a22c5016cac5",
2023-06-14 17:31:25 +00:00
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
2023-06-14 17:31:25 +00:00
"source_ref": "indicator--98f7b0f5-84aa-47cf-a092-6ded5bd596c6",
"target_ref": "x-misp-object--b939f553-12b7-43f9-ba4d-40944a3be7db"
},
{
"type": "relationship",
"spec_version": "2.1",
2023-12-14 13:47:04 +00:00
"id": "relationship--c996d772-97d2-4f50-9dcd-97789277bfab",
2023-06-14 17:31:25 +00:00
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
2023-04-21 13:25:09 +00:00
"relationship_type": "redirects-to",
2023-06-14 17:31:25 +00:00
"source_ref": "indicator--28bcffa1-e25b-43e9-9acd-d732c6456e93",
"target_ref": "indicator--dae82c40-86ac-4eb7-be71-594e6355f171"
},
{
"type": "relationship",
"spec_version": "2.1",
2023-12-14 13:47:04 +00:00
"id": "relationship--aa0a779a-5f7c-440b-907b-9a7ec63e52a0",
2023-06-14 17:31:25 +00:00
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
2023-06-14 17:31:25 +00:00
"source_ref": "indicator--28bcffa1-e25b-43e9-9acd-d732c6456e93",
"target_ref": "x-misp-object--a530c278-985f-4406-8446-a586d13a5247"
},
{
"type": "relationship",
"spec_version": "2.1",
2023-12-14 13:47:04 +00:00
"id": "relationship--ac9ddb5a-23f2-4173-a512-ed08ae104c89",
2023-06-14 17:31:25 +00:00
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
2023-04-21 13:25:09 +00:00
"relationship_type": "analysed-with",
2023-06-14 17:31:25 +00:00
"source_ref": "indicator--dae82c40-86ac-4eb7-be71-594e6355f171",
"target_ref": "x-misp-object--96251147-2609-46da-9a12-8e59b27a5d03"
},
{
"type": "relationship",
"spec_version": "2.1",
2023-12-14 13:47:04 +00:00
"id": "relationship--3e1e9261-844d-4762-b8b8-5dfb3d73e011",
2023-06-14 17:31:25 +00:00
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
2023-04-21 13:25:09 +00:00
"relationship_type": "loaded-by",
2023-06-14 17:31:25 +00:00
"source_ref": "indicator--f506dd8d-6577-41a2-aee6-4dbd731ac45a",
"target_ref": "indicator--dae82c40-86ac-4eb7-be71-594e6355f171"
},
{
"type": "relationship",
"spec_version": "2.1",
2023-12-14 13:47:04 +00:00
"id": "relationship--8a859f05-d66a-494e-86e6-f9f644f4abcf",
2023-06-14 17:31:25 +00:00
"created": "2022-05-11T15:02:56.000Z",
"modified": "2022-05-11T15:02:56.000Z",
2023-04-21 13:25:09 +00:00
"relationship_type": "rendered-as",
2023-06-14 17:31:25 +00:00
"source_ref": "indicator--f506dd8d-6577-41a2-aee6-4dbd731ac45a",
"target_ref": "observed-data--f84d9326-0fc4-4010-b604-e0d13e6667d1"
},
{
"type": "marking-definition",
"spec_version": "2.1",
"id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",
"created": "2017-01-20T00:00:00.000Z",
"definition_type": "tlp",
"name": "TLP:WHITE",
"definition": {
"tlp": "white"
}
}
2023-04-21 13:25:09 +00:00
]
}