misp-circl-feed/feeds/circl/misp/5cd499b7-5584-4d95-864b-d56f950d210f.json

1 line
13 KiB
JSON
Raw Normal View History

2023-12-14 14:30:15 +00:00
{"Event": {"info": "OSINT - Attacks Exploiting Sharepoint CVE-2019-0604", "Tag": [{"colour": "#004646", "exportable": true, "name": "type:OSINT"}, {"colour": "#0071c3", "exportable": true, "name": "osint:lifetime=\"perpetual\""}, {"colour": "#0087e8", "exportable": true, "name": "osint:certainty=\"50\""}, {"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#0088cc", "exportable": true, "name": "misp-galaxy:mitre-malware=\"China Chopper\""}, {"colour": "#0088cc", "exportable": true, "name": "misp-galaxy:mitre-attack-pattern=\"Exploit Public-Facing Application - T1190\""}], "publish_timestamp": "1557437226", "timestamp": "1558514319", "Object": [{"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "2e08e347-2a12-4a0f-b4f0-5fd161d71eb0", "sharing_group_id": "0", "timestamp": "1557436955", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "2e08e347-2a12-4a0f-b4f0-5fd161d71eb0", "uuid": "5cd49a1d-9300-408f-8be1-4566950d210f", "timestamp": "1557436957", "referenced_uuid": "2ee4ba30-9841-4fbf-acd0-286bac9c6b35", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "f40e3024-1555-4e1e-89f7-7efba0d533e3", "timestamp": "1557436911", "to_ids": true, "value": "b814532d73c7e5ffd1a2533adc6cfcf8", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "c3d2d5db-6e7f-4766-819a-0790901e2bce", "timestamp": "1557436911", "to_ids": true, "value": "dc8e7b7de41cac9ded920c41b272c885e1aec279", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "4cef7132-6e79-4d91-859b-fd2f51b44a87", "timestamp": "1557436911", "to_ids": true, "value": "05108ac3c3d708977f2d679bfa6d2eaf63b371e66428018a68efce4b6a45b4b4", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "2ee4ba30-9841-4fbf-acd0-286bac9c6b35", "sharing_group_id": "0", "timestamp": "1557436955", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "c2763120-8f7b-49cb-b159-6787c01b99bb", "timestamp": "1557436911", "to_ids": false, "value": "2019-05-09 20:57:27", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "939cef4e-14e2-4e83-8544-63aa27e6deef", "timestamp": "1557436911", "to_ids": false, "value": "https://www.virustotal.com/file/05108ac3c3d708977f2d679bfa6d2eaf63b371e66428018a68efce4b6a45b4b4/analysis/1557435447/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "c84c63bd-e491-45e8-aa8c-7340da2e7cde", "timestamp": "1557436911", "to_ids": false, "value": "5/59", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "23a2b779-9b25-4053-8780-5dc66bead631", "sharing_group_id": "0", "timestamp": "1557436956", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "23a2b779-9b25-4053-8780-5dc66bead631", "uuid": "5cd49a1d-a068-4f0a-ad36-45ab950d210f", "timestamp": "1557436957", "referenced_uuid": "f804ed11-1310-477c-ba77-83745ec66f57", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "f4c8d1d5-1f7d-4257-889f-084c8204e4a2", "timestamp": "1557436911", "to_ids": true, "value": "198ee041e8f3eb12a19bc321f86ccb88", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "categ