2023-04-21 13:25:09 +00:00
{
"Event" : {
"analysis" : "2" ,
"date" : "2019-03-03" ,
"extends_uuid" : "" ,
"info" : "OSINT - The Supreme Backdoor Factory" ,
"publish_timestamp" : "1551631449" ,
"published" : true ,
"threat_level_id" : "3" ,
"timestamp" : "1551631434" ,
"uuid" : "5c7c0198-81b0-41d8-9839-4c4d02de0b81" ,
"Orgc" : {
"name" : "CIRCL" ,
"uuid" : "55f6ea5e-2c60-40e5-964f-47a8950d210f"
} ,
"Tag" : [
{
"colour" : "#004646" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "type:OSINT" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
} ,
{
"colour" : "#0071c3" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "osint:lifetime=\"perpetual\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
} ,
{
"colour" : "#0087e8" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "osint:certainty=\"50\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
} ,
{
"colour" : "#ffffff" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "tlp:white" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
} ,
{
"colour" : "#00b3b3" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "ecsirt:intrusions=\"backdoor\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
} ,
{
"colour" : "#0088cc" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:mitre-attack-pattern=\"Supply Chain Compromise - T1195\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
] ,
"Attribute" : [
{
"category" : "External analysis" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630762" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "5c7c01aa-a188-45f1-8764-43ed02de0b81" ,
"value" : "Recently I was playing with VirusTotal Intelligence and while testing some dynamic behavior queries I stumbled upon this strange PE binary (MD5: 7fce12d2cc785f7066f86314836c95ec). The file claimed to be an installer for the JXplorer 3.3.1.2, a Java-based \u00e2\u20ac\u0153cross platform LDAP browser and editor\u00e2\u20ac\u009d as indicated on its official web page. Why was it strange? Mostly because I did not expect an installer for a quite popular LDAP browser to create a scheduled task in order to download and execute PowerShell code from a subdomain hosted by free dynamic DNS provide"
} ,
{
"category" : "External analysis" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630776" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "5c7c01b8-76bc-4d2f-89e9-4def02de0b81" ,
"value" : "https://dfir.it/blog/2019/02/26/the-supreme-backdoor-factory/"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-ad6c-4faa-9f04-44fb02de0b81" ,
"value" : "beataschumska"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-b408-498a-b6f5-4a7c02de0b81" ,
"value" : "henrichjahoda"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-369c-414d-9b4d-4e2302de0b81" ,
"value" : "adorehollenberger"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-dac8-49e9-97f7-424802de0b81" ,
"value" : "marceltutailo"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-9ca4-4f78-b65c-450802de0b81" ,
"value" : "peggyverduin"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-7780-4372-8ad0-4e9c02de0b81" ,
"value" : "burhanick"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-331c-406b-8682-495502de0b81" ,
"value" : "alicialohitka"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-f304-4db3-a440-48cd02de0b81" ,
"value" : "carolewilmot"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-b5a8-4d99-9dc6-46b202de0b81" ,
"value" : "darinkaleo"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-64c4-4c4a-af4a-4c1d02de0b81" ,
"value" : "ladislavask"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-0ecc-48d6-8dc2-458102de0b81" ,
"value" : "malinov97"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-b104-4883-b418-4f7a02de0b81" ,
"value" : "liannepitter"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-5594-4a1d-82d1-4a3e02de0b81" ,
"value" : "vaclaw281"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-1518-473f-bc5e-446d02de0b81" ,
"value" : "serkovs"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-ca10-455e-b36a-409302de0b81" ,
"value" : "viviyanzuraski"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-8034-4137-a4ec-42ac02de0b81" ,
"value" : "kathlinrichardi"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-29d8-4bfb-9c0f-48f702de0b81" ,
"value" : "harliearrighi"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-c0bc-4b8f-80eb-4e0b02de0b81" ,
"value" : "georgenadowers"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-5fd4-41ed-818c-4e4d02de0b81" ,
"value" : "bucka23"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-fc30-4bee-ac7b-4f7802de0b81" ,
"value" : "adamkulecky"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-aa20-4e25-8353-4feb02de0b81" ,
"value" : "dretressel"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-4fdc-4eb8-a833-41ee02de0b81" ,
"value" : "martieklarmann"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-f6c4-4d71-bd00-4baf02de0b81" ,
"value" : "simonmirolok"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-976c-4594-8f75-4abe02de0b81" ,
"value" : "vladekmikor"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-3d28-4347-8099-423d02de0b81" ,
"value" : "jelamarucka"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-d920-412f-8566-4bf002de0b81" ,
"value" : "catheewardenburg"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-7b58-4f3e-a4a3-499b02de0b81" ,
"value" : "booohumir"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-2880-4b7e-ae9f-41d302de0b81" ,
"value" : "ballory"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-cf68-4dcf-b6fb-435502de0b81" ,
"value" : "alicaangelaaa"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-82d0-438a-98c3-43a202de0b81" ,
"value" : "wynnwhooley"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-2bac-4fd0-bd42-4a9402de0b81" ,
"value" : "darylprivitt"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-e108-4b86-934d-48a002de0b81" ,
"value" : "mansiiqkal"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-b928-4b36-9748-4c1002de0b81" ,
"value" : "philippinefalotico"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-9210-470c-b1b4-437c02de0b81" ,
"value" : "colettabauguss"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-5324-4576-893a-4c8802de0b81" ,
"value" : "mstarenna"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-4958-4ecd-8dc7-473602de0b81" ,
"value" : "sibyllabalkam"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-54a4-4716-8c17-49e902de0b81" ,
"value" : "stangard09"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-4c68-49c1-868e-4cfe02de0b81" ,
"value" : "apalicka"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-33c4-4a37-a93c-412f02de0b81" ,
"value" : "johnaallanson"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-0928-4d71-ad77-48da02de0b81" ,
"value" : "gczunka"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-f2dc-4157-bbe3-460902de0b81" ,
"value" : "gabrieolo"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-cdb8-48ce-90a4-4f9402de0b81" ,
"value" : "mabostracky"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-9958-4b51-8dee-4cfc02de0b81" ,
"value" : "alexiejmarckut"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-68e0-4f18-9500-4f1e02de0b81" ,
"value" : "eugeniamcqueary"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-3a5c-41be-b676-408302de0b81" ,
"value" : "lorielagala"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-0534-4e57-9133-4bab02de0b81" ,
"value" : "syedlopez"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-c454-46b3-a8bd-4e3e02de0b81" ,
"value" : "jamiekaylor"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-636c-4469-baa0-4ec902de0b81" ,
"value" : "myriamdavine"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-0fcc-4894-9740-4c0902de0b81" ,
"value" : "ariellaglading"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-af48-4800-b436-4e9e02de0b81" ,
"value" : "zdenkohenkotss"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-4564-4e1c-a712-488002de0b81" ,
"value" : "peska817"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-e9f4-42ca-b98e-45ab02de0b81" ,
"value" : "nickideanna"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-813c-49dc-a9c9-486502de0b81" ,
"value" : "milosbukietov"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-08e4-40a4-9954-462d02de0b81" ,
"value" : "nikkihorvatin"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-84d4-44fd-be42-4c9402de0b81" ,
"value" : "navsty091"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-fd40-4531-b691-422a02de0b81" ,
"value" : "adamrybak9"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-7de0-4909-b91b-413d02de0b81" ,
"value" : "zuzkaya34"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-0b00-4ad3-8e67-4d8c02de0b81" ,
"value" : "chandramorando"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-9500-49a6-bf0c-43b402de0b81" ,
"value" : "barbeebernbaum"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-2158-47d1-abe5-4ba902de0b81" ,
"value" : "sonajukubska"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-b0d0-45fc-af6f-4a7f02de0b81" ,
"value" : "lenabrekken"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-3eb8-4ede-8fab-46f002de0b81" ,
"value" : "binnykimmerling"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-d3a8-4ec0-9069-4f5602de0b81" ,
"value" : "ailynmittleman"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-7ce8-4ae1-b7bf-4d5502de0b81" ,
"value" : "sharityfedorova"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-2f88-46ba-844b-4c6502de0b81" ,
"value" : "marjorystubstad"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-eea8-4f82-b213-41ff02de0b81" ,
"value" : "karibanker"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-99dc-4682-bf80-430f02de0b81" ,
"value" : "glorybatelli"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-4128-4894-a1b1-4c8902de0b81" ,
"value" : "jeanelletobler"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-eb30-42e8-b5ef-4da102de0b81" ,
"value" : "stacischierbeek"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-8bd8-4c38-9fd7-438302de0b81" ,
"value" : "danaochdana"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-3a2c-4d19-b12a-443802de0b81" ,
"value" : "jurajkabackov"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-e5c4-46be-b216-423f02de0b81" ,
"value" : "luboslucia"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-9b20-4464-88d5-43e502de0b81" ,
"value" : "adalineciochon"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-51a8-48dd-bdcb-40b902de0b81" ,
"value" : "markodelka"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-063c-43ad-b910-4d6402de0b81" ,
"value" : "ivetakovac"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-aacc-4bb3-af32-493e02de0b81" ,
"value" : "emilemilan290"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-5a4c-49f8-a29c-4b5d02de0b81" ,
"value" : "rochettecoahran"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-09cc-44a5-90a8-441202de0b81" ,
"value" : "danielstrnad"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-ac04-4112-bc66-42a802de0b81" ,
"value" : "aurelrybar"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-5224-4c17-ab7a-418302de0b81" ,
"value" : "ivonka271"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-f650-4594-b95b-402b02de0b81" ,
"value" : "violetstanziola"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-b2b4-456a-b640-4f4902de0b81" ,
"value" : "lonniewarmerdam"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-5104-4dc6-9130-411102de0b81" ,
"value" : "gregzima"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-03a4-4ec6-8adb-43b002de0b81" ,
"value" : "adrianzigich"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-c198-4172-8ce9-4d6b02de0b81" ,
"value" : "romolaoesterreicher"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-baec-47a1-b4d2-44c302de0b81" ,
"value" : "danitagotwald"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-b9b8-4295-955a-439f02de0b81" ,
"value" : "brandaisdimilia"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-b49c-4583-a094-42df02de0b81" ,
"value" : "adunkins"
} ,
{
"category" : "Social network" ,
"comment" : "Malicious github account" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630881" ,
"to_ids" : true ,
"type" : "github-username" ,
"uuid" : "5c7c0221-9748-4c72-9213-44f802de0b81" ,
"value" : "snacknroll11"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-13c0-4e96-9e84-47a202de0b81" ,
"value" : "https://github.com/beataschumska/json-lib"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-6818-47b1-8dfa-4b7402de0b81" ,
"value" : "https://github.com/gregzima/robocode"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-9308-4fc2-af8f-448902de0b81" ,
"value" : "https://github.com/bucka23/jpwsafe"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-974c-4f32-bca6-4fde02de0b81" ,
"value" : "https://github.com/burhanick/minecraft"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-ab30-4bc1-b098-48c002de0b81" ,
"value" : "https://github.com/ivonka271/newgenlib"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-cacc-460d-83aa-4e9502de0b81" ,
"value" : "https://github.com/markodelka/upnp-portmapper"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-f620-4700-8070-48c402de0b81" ,
"value" : "https://github.com/milosbukietov/tuatra"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-43d4-4b30-96e1-42f502de0b81" ,
"value" : "https://github.com/mabostracky/tn5250j"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-9890-442f-a2c8-4a7702de0b81" ,
"value" : "https://github.com/gczunka/ta-lib"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-c0c4-494c-abdd-44c702de0b81" ,
"value" : "https://github.com/ladislavask/super-mario-bros-java"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-0900-4bb0-894d-4a1502de0b81" ,
"value" : "https://github.com/vladekmikor/soniccandle"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-3fa8-47aa-9b11-4c8602de0b81" ,
"value" : "https://github.com/marceltutailo/snpeff"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-8eec-4986-afc5-458002de0b81" ,
"value" : "https://github.com/syedlopez/proguard"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-bef0-4611-971d-49da02de0b81" ,
"value" : "https://github.com/simonmirolok/plantuml"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-10f0-4524-8bfb-42da02de0b81" ,
"value" : "https://github.com/jelamarucka/pdfjumbler"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-62f0-4798-a3e2-4e1c02de0b81" ,
"value" : "https://github.com/navsty091/opencsv"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-792c-4fde-9a32-490d02de0b81" ,
"value" : "https://github.com/darinkaleo/neuroph"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-9f08-410d-b9c0-407b02de0b81" ,
"value" : "https://github.com/peska817/mondrian"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-c2f0-42df-b6ad-429502de0b81" ,
"value" : "https://github.com/serkovs/jxplorer"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-f164-4356-9dc5-40ca02de0b81" ,
"value" : "https://github.com/vaclaw281/junit"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-0098-4b7c-b379-4ee302de0b81" ,
"value" : "https://github.com/jurajkabackov/jtreeview"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-160c-4846-a2c8-444102de0b81" ,
"value" : "https://github.com/stangard09/jt400"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-22e8-4b30-b5e5-4cbd02de0b81" ,
"value" : "https://github.com/emilemilan290/jnative"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-3d0c-4e20-898e-4f7102de0b81" ,
"value" : "https://github.com/sonajukubska/jmxterm"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-79f4-45db-872f-4a7a02de0b81" ,
"value" : "https://github.com/ivetakovac/jmusic"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-b3bc-4e05-a247-491302de0b81" ,
"value" : "https://github.com/adamkulecky/jmt"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-cd18-4c90-816c-4b9002de0b81" ,
"value" : "https://github.com/alicialohitka/jdatepicker"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-d79c-4bea-bc37-4a2102de0b81" ,
"value" : "https://github.com/danielstrnad/jalmus"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-d53c-43eb-b947-42c202de0b81" ,
"value" : "https://github.com/zuzkaya34/jackcess"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-e27c-4385-b258-4e8e02de0b81" ,
"value" : "https://github.com/mstarenna/hermesjms"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-f4d0-4068-8cd1-49a002de0b81" ,
"value" : "https://github.com/booohumir/geotools"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-36cc-43aa-8d2d-47e202de0b81" ,
"value" : "https://github.com/alicaangelaaa/gcviewer"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-1720-420c-87d1-4eac02de0b81" ,
"value" : "https://github.com/zdenkohenkotss/ermaster"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-eedc-4646-a871-4b8702de0b81" ,
"value" : "https://github.com/aurelrybar/editbox"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-d05c-4e83-b419-4bc402de0b81" ,
"value" : "https://github.com/mansiiqkal/easymodbustcp-udp-java"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-d310-42a3-9040-44e702de0b81" ,
"value" : "https://github.com/malinov97/csvjdbc"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-beb8-41a2-98cf-4c2302de0b81" ,
"value" : "https://github.com/danaochdana/checkstyle"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-b67c-4dac-9b65-4d5c02de0b81" ,
"value" : "https://github.com/luboslucia/cglib"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-b868-4529-89a8-425f02de0b81" ,
"value" : "https://github.com/alexiejmarckut/blazegraph"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0249-be3c-41f6-8add-44dc02de0b81" ,
"value" : "https://github.com/henrichjahoda/ardublock"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630921" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-f9b8-4717-9a28-438602de0b81" ,
"value" : "https://github.com/adamrybak9/aopalliance"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-0c70-426b-a1f2-492002de0b81" ,
"value" : "https://github.com/adorehollenberger/rlgamekit"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-23d8-4999-8c74-44cd02de0b81" ,
"value" : "https://github.com/liannepitter/java-chess-2d"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-48ec-4243-952a-499b02de0b81" ,
"value" : "https://github.com/dretressel/teachingbox"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-5d98-4501-8d96-433f02de0b81" ,
"value" : "https://github.com/barbeebernbaum/sudokuki"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-80b8-4f00-82d0-475b02de0b81" ,
"value" : "https://github.com/johnaallanson/strong-java-chess"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-2074-4671-ae37-466902de0b81" ,
"value" : "https://github.com/eugeniamcqueary/spaceaction3000"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-d1c4-4155-9998-499202de0b81" ,
"value" : "https://github.com/lonniewarmerdam/scopadiluigiusai"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-a4ac-4db8-936d-4bff02de0b81" ,
"value" : "https://github.com/sibyllabalkam/quorum"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-7668-42f4-91f6-41a702de0b81" ,
"value" : "https://github.com/sharityfedorova/pedroso-game-work"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-9988-4367-8082-41ac02de0b81" ,
"value" : "https://github.com/ailynmittleman/openpatrician"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-8b70-4356-942a-413602de0b81" ,
"value" : "https://github.com/darylprivitt/jskat"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-907c-4aac-a483-4fb302de0b81" ,
"value" : "https://github.com/lenabrekken/jsettlers2"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-ae88-484d-9561-498402de0b81" ,
"value" : "https://github.com/harliearrighi/jmatrixgame"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-f854-49f4-9d99-48c802de0b81" ,
"value" : "https://github.com/glorybatelli/java-marvel-character-creator"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-2790-4287-bb8b-4d2802de0b81" ,
"value" : "https://github.com/jeanelletobler/gumbo"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-602c-4683-bc6f-4a8702de0b81" ,
"value" : "https://github.com/rochettecoahran/game-of-life-bison"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-a930-4e25-be10-489b02de0b81" ,
"value" : "https://github.com/karibanker/eug"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-e294-42bc-b687-411602de0b81" ,
"value" : "https://github.com/brandaisdimilia/space-faring"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-ed7c-469a-900b-46d702de0b81" ,
"value" : "https://github.com/gabrieolo/bounceball"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-01c4-4c74-a09a-414502de0b81" ,
"value" : "https://github.com/ballory/ffmpeg"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-192c-4d60-8137-4f8702de0b81" ,
"value" : "https://github.com/apalicka/javachess"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-2ea0-4dc3-b311-411902de0b81" ,
"value" : "https://github.com/philippinefalotico/cardriving"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-3e38-44fd-9919-473002de0b81" ,
"value" : "https://github.com/snacknroll11/streettalk_priv_bot"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-5d70-4cbe-bd5a-489702de0b81" ,
"value" : "https://github.com/adunkins/gcc-linaro-7.2.1-armv8l-linux-gnu"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-640c-484a-a110-492902de0b81" ,
"value" : "https://github.com/adunkins/gcc-linaro-7.2.1-arm-linux-gnu"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-7f5c-4d0e-8450-47cd02de0b81" ,
"value" : "https://github.com/adunkins/gcc-linaro-7.2.1-aarch64-linux-gnu"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-707c-4258-9e18-49b502de0b81" ,
"value" : "https://github.com/adunkins/mingw64_o3"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-c600-4022-8d16-481302de0b81" ,
"value" : "https://github.com/adunkins/mingw32_o3"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-fab4-4cc2-96ef-4d6602de0b81" ,
"value" : "https://github.com/adunkins/openwrt_toolchain"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-0efc-47f4-9e5c-430102de0b81" ,
"value" : "https://github.com/adunkins/sagemfast-crosscompiler"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-0d64-410f-a383-482a02de0b81" ,
"value" : "https://github.com/adunkins/ios_toolchain"
} ,
{
"category" : "Payload delivery" ,
"comment" : "Malicious github repository" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551630922" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c024a-cfa4-4079-ad2f-4f6302de0b81" ,
"value" : "https://github.com/adunkins/toolchain-ppc-tuxbox-old_s"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-f800-458c-b6cd-4c5002de0b81" ,
"value" : "7fce12d2cc785f7066f86314836c95ec"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-d068-41a8-8394-447302de0b81" ,
"value" : "6ee28018e7d31aef0b4fd6940dff1d0a"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c02dc-00a8-4bf9-9605-445802de0b81" ,
"value" : "https://github.com/snacknroll11/streettalk_priv_bot"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-0c94-4639-bd5d-4d1102de0b81" ,
"value" : "9d4aeb737179995a397d675f41e5f97f"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-cca8-4b3c-aa8c-4c5702de0b81" ,
"value" : "533ac97f44b4aea1a35481d963cc9106"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-4c64-4faf-8bb9-4bbf02de0b81" ,
"value" : "d7c4a1d4f75045a2a1e324ae5114ea17"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-e5b8-4cb7-826e-45f402de0b81" ,
"value" : "65579b8ed47ca163fae2b3dffd8b4d5a"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c02dc-a064-45a8-b596-40e802de0b81" ,
"value" : "http://ecc.freeddns.org/data.txt"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-0390-4f12-bd14-472802de0b81" ,
"value" : "c78ccfc45bfba703cce0fc0c75c0f6af"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c02dc-90c8-4b11-ac9c-452a02de0b81" ,
"value" : "https://github.com/ballory/ffmpeg"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-5e4c-46b3-a23d-459202de0b81" ,
"value" : "0489493aeb26b6772bf3653aedf75d2a"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c02dc-3644-4d56-a037-4caf02de0b81" ,
"value" : "https://github.com/serkovs/jxplorer"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-f21c-4d42-8d57-46cb02de0b81" ,
"value" : "4d18388a9b351907be4a9f91785c9997"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c02dc-2a90-45b2-8eab-439802de0b81" ,
"value" : "https://github.com/mansiiqkal/easymodbustcp-udp-java"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-9054-44a2-9762-46aa02de0b81" ,
"value" : "815db0de2c6a610797c6735511eaaaf9"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "5c7c02dc-466c-406b-a889-4d1002de0b81" ,
"value" : "dd3a38ee6b5b6340acd3bb8099f928a8"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-1fa0-4c09-8509-44d402de0b81" ,
"value" : "http://svf.duckdns.org"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-9cfc-4b05-957a-42fc02de0b81" ,
"value" : "http://coppingfun.ml/blazebot"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-089c-4f9f-9419-4e3902de0b81" ,
"value" : "http://allesare.sourceforge.net/en-us/bver"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-9428-4c9d-9eed-422f02de0b81" ,
"value" : "http://allesare.sourceforge.net/en-us/m"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-0a70-4b5f-814a-40d602de0b81" ,
"value" : "http://san.strangled.net/stat"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-c174-4914-b716-47e202de0b81" ,
"value" : "http://jessicacheshire.users.sourceforge.net"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "hostname" ,
"uuid" : "5c7c0329-9e80-4abd-886e-48c702de0b81" ,
"value" : "limons.duckdns.org"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "hostname" ,
"uuid" : "5c7c0329-ea18-4697-97a6-408f02de0b81" ,
"value" : "polarbear.freeddns.org"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-d7f0-458a-aa3a-4d6502de0b81" ,
"value" : "http://ecc.freeddns.org/a2s.txt"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-4fb0-436e-b5d0-454702de0b81" ,
"value" : "http://utelemetrics.atwebpages.com/update.php?tag="
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-5a84-4289-9e39-4f8f02de0b81" ,
"value" : "http://yzyaio.onlinewebshop.net/act/stat.php?info=SLADE"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-0e28-4ded-97ca-4bfd02de0b81" ,
"value" : "http://eln.duckdns.org/se"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-ee30-40fe-8876-4e8202de0b81" ,
"value" : "http://enl.duckdns.org"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "hostname" ,
"uuid" : "5c7c0329-b764-4509-a423-483402de0b81" ,
"value" : "sanemarine.duckdns.org"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "hostname" ,
"uuid" : "5c7c0329-3c0c-41c9-ba81-425602de0b81" ,
"value" : "lemonade.freeddns.org"
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631145" ,
"to_ids" : true ,
"type" : "url" ,
"uuid" : "5c7c0329-b1cc-480a-96a0-47d302de0b81" ,
"value" : "http://allesare.sourceforge.net/test/msg"
} ,
{
"category" : "Network activity" ,
"comment" : "Attribute #1861861 enriched by dns." ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631162" ,
"to_ids" : false ,
"type" : "ip-src" ,
"uuid" : "5c7c033a-0d88-4b5a-923e-43e2e387cbd9" ,
"value" : "83.31.61.38"
} ,
{
"category" : "Network activity" ,
"comment" : "Attribute #1861868 enriched by dns." ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631163" ,
"to_ids" : false ,
"type" : "ip-src" ,
"uuid" : "5c7c033b-e648-41e1-92cc-4a06e387cbd9" ,
"value" : "83.7.177.233"
} ,
{
"category" : "Artifacts dropped" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631376" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "5c7c0410-8f20-4cbd-bbc4-4b3e02de0b81" ,
"value" : "$HOME/.local/share/bbauto"
} ,
{
"category" : "Artifacts dropped" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631376" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "5c7c0410-b880-44e3-b03e-422102de0b81" ,
"value" : "$HOME/.config/autostart/none.desktop"
} ,
{
"category" : "Artifacts dropped" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631376" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "5c7c0410-9230-4359-8594-436902de0b81" ,
"value" : "$HOME/Library/LaunchAgents/AutoUpdater.dat"
} ,
{
"category" : "Artifacts dropped" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631376" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "5c7c0410-67f8-423d-baf4-421f02de0b81" ,
"value" : "$HOME/Library/LaunchAgents/AutoUpdater.plist"
} ,
{
"category" : "Artifacts dropped" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1551631376" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "5c7c0410-3140-48a5-9438-42e102de0b81" ,
"value" : "$HOME/Library/LaunchAgents/SoftwareSync.plist"
}
] ,
"Object" : [
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631289" ,
"uuid" : "0c6b7f2f-30ac-4fa2-958f-94fbb50f894e" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "0c6b7f2f-30ac-4fa2-958f-94fbb50f894e" ,
"referenced_uuid" : "c45f991f-5f70-4419-b2b1-1ba1609a10af" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631293" ,
"uuid" : "5c7c03bd-c638-48a8-878b-44c002de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "d908b1ec-c941-43fc-b8fc-c7e816826640" ,
"value" : "65579b8ed47ca163fae2b3dffd8b4d5a"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "c5c11064-3b63-4cad-8208-d231a75a4565" ,
"value" : "a4fe0a43cdb2cba8180c68fa94a42bdd399f52cf"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "027a159e-12d2-4213-b8f6-bef02e6a91a3" ,
"value" : "86a3802ad5f35262d01efe6b678585db356121807bc28105f43019cbbd0f23fb"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631290" ,
"uuid" : "c45f991f-5f70-4419-b2b1-1ba1609a10af" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "6e0f8e7d-3421-453d-9cf2-acdbfc47d9f4" ,
"value" : "2019-02-23T12:46:29"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "c534456e-f48a-4239-9569-473442e6148d" ,
"value" : "https://www.virustotal.com/file/86a3802ad5f35262d01efe6b678585db356121807bc28105f43019cbbd0f23fb/analysis/1550925989/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "195b02ac-c8b2-45cd-bdb6-fd70f655f2c5" ,
"value" : "0/57"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631290" ,
"uuid" : "f1f73447-1b14-4ae1-a8c4-4a094ae66416" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "f1f73447-1b14-4ae1-a8c4-4a094ae66416" ,
"referenced_uuid" : "af3e2650-e6dd-453a-ab71-e3a22cc735c8" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631293" ,
"uuid" : "5c7c03bd-dc98-48f7-b7c8-40bd02de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "1250c435-06ea-4ef4-b59a-b9778ed705f8" ,
"value" : "6ee28018e7d31aef0b4fd6940dff1d0a"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "e38d6f81-e49f-4d5a-aa68-2beb9c488ad5" ,
"value" : "02d82f20c1c8ac76c118ec995b00171480b4ebe2"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "39751859-ea9c-4926-9ab5-e126a38c6147" ,
"value" : "c0313523c28288d01ba52289680b2405c1005ee7bbd0143cf116b0263245d8ba"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631290" ,
"uuid" : "af3e2650-e6dd-453a-ab71-e3a22cc735c8" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "9da1b58b-9692-4fcc-bd4d-828d919c3ce9" ,
"value" : "2019-03-01T11:39:18"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "de81b0b7-0ca8-4736-9e31-ca501f8595c4" ,
"value" : "https://www.virustotal.com/file/c0313523c28288d01ba52289680b2405c1005ee7bbd0143cf116b0263245d8ba/analysis/1551440358/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "3604fcb6-82fe-4952-82ee-69b90d4840f2" ,
"value" : "0/70"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631290" ,
"uuid" : "ad497e60-8895-4967-ae45-2a64ccac91d3" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "ad497e60-8895-4967-ae45-2a64ccac91d3" ,
"referenced_uuid" : "d83f4778-c40d-4e7d-9acc-e8bcfd7c925b" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631293" ,
"uuid" : "5c7c03bd-dd5c-41da-b54c-4fe902de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "1d94ee39-5338-4a44-bb75-7344cc454bd3" ,
"value" : "815db0de2c6a610797c6735511eaaaf9"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "47e8b064-cc6a-42b5-8168-e99e0c07af43" ,
"value" : "6a143db1b43ecb2d28016fe41d9c5a7714453a76"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "c7075d26-e615-4c28-87c4-99af8f310672" ,
"value" : "03722893c4990e0233c464e709943fb929b5cc70920c76b84a75f730f052f563"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631290" ,
"uuid" : "d83f4778-c40d-4e7d-9acc-e8bcfd7c925b" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "fbd48270-3f53-4f8c-9490-34d77aec5b76" ,
"value" : "2019-03-01T11:47:10"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "1965f48b-119c-4d5d-9315-995cf680b5cb" ,
"value" : "https://www.virustotal.com/file/03722893c4990e0233c464e709943fb929b5cc70920c76b84a75f730f052f563/analysis/1551440830/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "a39094f5-0df1-45a7-9c11-217fe87324e5" ,
"value" : "0/69"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631290" ,
"uuid" : "6e35a2c3-5a83-4c25-bbea-d304de8bef8a" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "6e35a2c3-5a83-4c25-bbea-d304de8bef8a" ,
"referenced_uuid" : "e1710ee5-770e-49a6-81a0-d534b641805a" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631294" ,
"uuid" : "5c7c03be-3e7c-4433-b4da-4ad802de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "d01c660f-ea42-4469-a1ff-810cac8cfb5b" ,
"value" : "dd3a38ee6b5b6340acd3bb8099f928a8"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "20936dc3-7350-4123-a9b1-75f3870f4c31" ,
"value" : "5cd1c492a1d51689f749f3d9caa6076872f2f3ff"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "5fbe83e0-8417-4123-a5e4-6f3073dcaaac" ,
"value" : "b935aaa10a5b53184f33dfbc7f0314fd0ee11fb740711ce93b5a1c51d8fa1153"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631290" ,
"uuid" : "e1710ee5-770e-49a6-81a0-d534b641805a" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "09af03a7-06ac-4d02-81c2-946bea40d36e" ,
"value" : "2019-03-01T11:42:16"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "7581aee5-44bb-40cc-90e6-25cdce71fdbc" ,
"value" : "https://www.virustotal.com/file/b935aaa10a5b53184f33dfbc7f0314fd0ee11fb740711ce93b5a1c51d8fa1153/analysis/1551440536/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "75f36b0a-3da3-4f93-9c86-12c4eb0dc53d" ,
"value" : "0/69"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631291" ,
"uuid" : "167cb709-e3ee-4fe9-bda9-e333b99cce0a" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "167cb709-e3ee-4fe9-bda9-e333b99cce0a" ,
"referenced_uuid" : "b55a75d9-352b-4fd0-a6d8-7897395461b1" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631294" ,
"uuid" : "5c7c03be-ea38-402d-a281-4dd302de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "36e18ab0-6869-44ce-8181-c0107d475af1" ,
"value" : "7fce12d2cc785f7066f86314836c95ec"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "1b4073ed-14fd-4e8a-957c-edc982666708" ,
"value" : "84afdf87894eb0389dfdbdde6278f36e9348457a"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "6f4dd405-6e12-469a-be63-d1b002830c5a" ,
"value" : "5e3bba9a94ff757400ce5a0f2a2a43076c515bc0e3728964b4f58f503ed9917c"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631291" ,
"uuid" : "b55a75d9-352b-4fd0-a6d8-7897395461b1" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "ea2523de-13a2-49c2-b4b8-0d847c61ac22" ,
"value" : "2019-03-01T11:40:25"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "e9e2f282-02e9-4318-bcd7-8cfd093466ba" ,
"value" : "https://www.virustotal.com/file/5e3bba9a94ff757400ce5a0f2a2a43076c515bc0e3728964b4f58f503ed9917c/analysis/1551440425/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "523d80f0-1249-41d5-b0bf-6ab61cc8dafc" ,
"value" : "7/68"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631291" ,
"uuid" : "ce897d99-d116-43d0-959b-fbe57566ea72" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "ce897d99-d116-43d0-959b-fbe57566ea72" ,
"referenced_uuid" : "46b426bf-55cc-44a4-a0b3-de40270414fe" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631294" ,
"uuid" : "5c7c03be-1ac0-4701-8353-4fb502de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "b153c6ec-8276-4278-9d70-8fb59a52c2b8" ,
"value" : "0489493aeb26b6772bf3653aedf75d2a"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "62e93416-e21d-4069-8c5f-912670e9c82b" ,
"value" : "058c864831b0631ba18a9b02700a0a38529f7ff8"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "e091a5f3-a5fe-46c0-b2b6-091310c39e79" ,
"value" : "21a5f6b003886b26c769132a8ffa06d607260980895a1e7484744fe3107ee099"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631291" ,
"uuid" : "46b426bf-55cc-44a4-a0b3-de40270414fe" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "98d110c3-6eea-4879-8e0a-da42b6c150de" ,
"value" : "2018-06-04T10:29:50"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "7cfa447e-e135-43e3-895e-7a7b0cd56ffd" ,
"value" : "https://www.virustotal.com/file/21a5f6b003886b26c769132a8ffa06d607260980895a1e7484744fe3107ee099/analysis/1528108190/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "0e970b39-6c21-4245-8ac4-a97b6d5ea57c" ,
"value" : "0/59"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631291" ,
"uuid" : "61b1cb3e-62ee-4b70-a561-646f511bb520" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "61b1cb3e-62ee-4b70-a561-646f511bb520" ,
"referenced_uuid" : "ad03d449-4454-44a2-a75e-3465ec582992" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631294" ,
"uuid" : "5c7c03be-c898-49c0-a649-41a502de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "ef755f25-8b62-4b18-8846-d698f9908566" ,
"value" : "9d4aeb737179995a397d675f41e5f97f"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "abaa12b4-c9e6-4c28-86c1-76367eed8e53" ,
"value" : "cebe3862bd477e78bdbb020b3a53da91a1fa747d"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "dc585804-a8b8-4d9c-a094-de40fa7009ee" ,
"value" : "955904c82e953113183aad6a60fef962847549d02f531a62bf00d724c3c482c3"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631291" ,
"uuid" : "ad03d449-4454-44a2-a75e-3465ec582992" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "affd0d1c-1e8c-4306-ac72-810706f25cad" ,
"value" : "2019-01-27T01:31:19"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "8be5d5ab-a541-4a9e-a0a7-8c1a7f45e568" ,
"value" : "https://www.virustotal.com/file/955904c82e953113183aad6a60fef962847549d02f531a62bf00d724c3c482c3/analysis/1548552679/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "b2032ab7-4f4b-446a-a65a-2c965e695340" ,
"value" : "0/57"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631291" ,
"uuid" : "8268456e-e83d-4737-a7a8-06ea323d880c" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "8268456e-e83d-4737-a7a8-06ea323d880c" ,
"referenced_uuid" : "41dfaa85-2917-4a95-9674-f8091308d9e2" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631294" ,
"uuid" : "5c7c03be-0348-4c8d-8cf4-4be402de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "7dbc39a4-262e-4298-9102-b274565bf55c" ,
"value" : "4d18388a9b351907be4a9f91785c9997"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "6590d6c7-d174-454c-83f0-c4591a575c8d" ,
"value" : "ee2b18a7413579bd18acc19d33fa307e8a6662c4"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "5d58c4d7-50d3-4b9d-8e68-31d1e632c7cd" ,
"value" : "d1b19801e477f6297e41bfa040f5fb09e5f34b1e24b2bd90c960dd09a2be85f9"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631291" ,
"uuid" : "41dfaa85-2917-4a95-9674-f8091308d9e2" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "22bc8561-c209-42ff-897f-3a7e53daa22e" ,
"value" : "2019-02-23T18:15:33"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "26e862b3-d8ca-41e5-a50d-e369a9c4fac2" ,
"value" : "https://www.virustotal.com/file/d1b19801e477f6297e41bfa040f5fb09e5f34b1e24b2bd90c960dd09a2be85f9/analysis/1550945733/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "5364dc79-050f-48b7-9571-6fd1894f79d6" ,
"value" : "0/58"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631292" ,
"uuid" : "3b469718-143a-4a84-b8ae-ec7aff951925" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "3b469718-143a-4a84-b8ae-ec7aff951925" ,
"referenced_uuid" : "6a1a234d-b827-4ea9-af35-988c5eb536dc" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631294" ,
"uuid" : "5c7c03be-55b0-4ce4-a861-432302de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "1160c050-8ad6-401b-b0da-3946f2b83358" ,
"value" : "c78ccfc45bfba703cce0fc0c75c0f6af"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "6f71b5d7-1677-40bd-bde7-cdd1ab009e8d" ,
"value" : "17c0bec9c6f16d9af7ba0a7146749f9f3d17e0a8"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "82daafe0-a4e4-4ed7-84ee-5032a1864a49" ,
"value" : "2859b86854018bb4db2226e1ff14a4de4aa0187cd563c705d4ae1dbda0c07086"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631292" ,
"uuid" : "6a1a234d-b827-4ea9-af35-988c5eb536dc" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "f2e2989e-1afd-49fd-b4eb-b00eda539cf1" ,
"value" : "2019-02-23T16:45:33"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "5dfbab74-02f0-445a-933a-7173485f0392" ,
"value" : "https://www.virustotal.com/file/2859b86854018bb4db2226e1ff14a4de4aa0187cd563c705d4ae1dbda0c07086/analysis/1550940333/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "cf67baac-6bb7-4743-8a91-eedce127bd5c" ,
"value" : "0/58"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631292" ,
"uuid" : "74ae1e56-ff5a-4f74-a56d-dc6157c32158" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "74ae1e56-ff5a-4f74-a56d-dc6157c32158" ,
"referenced_uuid" : "24461164-3e40-49b2-94c0-0e997c7544f8" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631294" ,
"uuid" : "5c7c03be-bb38-451a-b7fa-4a9d02de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "f5ce3b57-8c06-4b7c-8d36-81d12cf480fc" ,
"value" : "533ac97f44b4aea1a35481d963cc9106"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "a13933ae-dd15-4ef0-8e65-61b69a8ad676" ,
"value" : "63489869fa9c5b1ed627bf9140b6824cb68efef6"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "8458022f-3985-4f60-851e-c5a519eb90d0" ,
"value" : "536eb0c00f1d4a39ddf9a2eca508897eb2064b4e28e25a3327626b53bad0319d"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631292" ,
"uuid" : "24461164-3e40-49b2-94c0-0e997c7544f8" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "82f7c9a1-2a75-45a9-8a1f-8ac0a31a0777" ,
"value" : "2018-11-15T07:25:52"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "f89c2dc4-7b36-48ea-a560-aefacd3e229b" ,
"value" : "https://www.virustotal.com/file/536eb0c00f1d4a39ddf9a2eca508897eb2064b4e28e25a3327626b53bad0319d/analysis/1542266752/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "071f1efb-072c-4361-82e8-773a30e28acf" ,
"value" : "0/51"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "File object describing a file with meta-information" ,
"meta-category" : "file" ,
"name" : "file" ,
"template_uuid" : "688c46fb-5edb-40a3-8273-1af7923e2215" ,
"template_version" : "15" ,
"timestamp" : "1551631292" ,
"uuid" : "e3c014ed-fd41-4d0c-84aa-98ca3bd4c9dd" ,
"ObjectReference" : [
{
"comment" : "" ,
"object_uuid" : "e3c014ed-fd41-4d0c-84aa-98ca3bd4c9dd" ,
"referenced_uuid" : "dbb117e4-aa8b-4b11-8ef6-c52b2ce4e72a" ,
"relationship_type" : "analysed-with" ,
"timestamp" : "1551631294" ,
"uuid" : "5c7c03be-a18c-4d0b-b2c6-4b8d02de0b81"
}
] ,
"Attribute" : [
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "md5" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "md5" ,
"uuid" : "fe57bf54-540e-4ac9-b9d0-dc24f530a20c" ,
"value" : "d7c4a1d4f75045a2a1e324ae5114ea17"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha1" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha1" ,
"uuid" : "990d69de-ccdc-432c-bb41-bb1a09c4a6d0" ,
"value" : "7db7ff3b685c3fa5d7dd5ac394a7ccb3e8b42d76"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "sha256" ,
"timestamp" : "1551631068" ,
"to_ids" : true ,
"type" : "sha256" ,
"uuid" : "8a56b3d7-1b06-455e-8868-e0e82b78a85d" ,
"value" : "210d12b9fcead69094ca2046c55333c121451f7eec782dd42e220ff11fe7d349"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "VirusTotal report" ,
"meta-category" : "misc" ,
"name" : "virustotal-report" ,
"template_uuid" : "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4" ,
"template_version" : "2" ,
"timestamp" : "1551631293" ,
"uuid" : "dbb117e4-aa8b-4b11-8ef6-c52b2ce4e72a" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "last-submission" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "datetime" ,
"uuid" : "e97ebac1-5f62-456e-93eb-93cced4149ff" ,
"value" : "2019-03-01T11:38:53"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "permalink" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "90fd9f63-25e4-42ec-8df6-2b2d0c3f40a7" ,
"value" : "https://www.virustotal.com/file/210d12b9fcead69094ca2046c55333c121451f7eec782dd42e220ff11fe7d349/analysis/1551440333/"
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "detection-ratio" ,
"timestamp" : "1551631068" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "ae6f8a84-4c7c-4d87-ba02-6833aaf1db82" ,
"value" : "0/58"
}
]
}
]
}
}