2023-04-21 13:25:09 +00:00
{
"Event" : {
"analysis" : "2" ,
"date" : "2022-01-30" ,
"extends_uuid" : "" ,
"info" : "OSINT - Cytrox Spyware Indicators of Compromise" ,
"publish_timestamp" : "1643539217" ,
"published" : true ,
"threat_level_id" : "3" ,
"timestamp" : "1643539206" ,
"uuid" : "4b475a5f-ea47-4f2f-aea3-d8ba9bd1b6b6" ,
"Orgc" : {
"name" : "CIRCL" ,
"uuid" : "55f6ea5e-2c60-40e5-964f-47a8950d210f"
} ,
"Tag" : [
{
"colour" : "#004646" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "type:OSINT" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
} ,
{
"colour" : "#0071c3" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "osint:lifetime=\"perpetual\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
} ,
{
"colour" : "#0087e8" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "osint:certainty=\"50\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
} ,
{
"colour" : "#ffffff" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "tlp:white" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
} ,
{
"colour" : "#0088cc" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:surveillance-vendor=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
] ,
"Attribute" : [
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "81efca44-80f3-4af5-8fb7-2adac09bc441" ,
"value" : "koenigseggg.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2e2f04a2-f118-4173-9c8e-0239bf1a2275" ,
"value" : "bitlly.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e96995ba-21b6-421c-ab76-2f9033027ba6" ,
"value" : "newslive2.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "46501d2a-e0d5-433a-97a1-5c7a51e253fd" ,
"value" : "uberegypt.cn.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "5a285db2-47e1-460b-a29b-578eaef98360" ,
"value" : "yuom7.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "6e3a2a11-8388-4df3-a8e7-0d0e3d738087" ,
"value" : "connectivitycheck.online" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "5446169c-6ecf-4170-84d5-693592ee3658" ,
"value" : "webaffise.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "8107c1fb-fd2f-41a3-977b-8960a5d4c378" ,
"value" : "ffoxnewz.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "96a6b121-bac8-4cf1-8787-059df157d254" ,
"value" : "miniiosapps.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "09963b62-44aa-4818-9d98-c558f0273a15" ,
"value" : "audit-pvv.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "debc2347-209b-4537-ba70-7901c3dc7283" ,
"value" : "orangegypt.co" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "90a131af-f06b-463b-9e56-42d51a89deaa" ,
"value" : "youarefired.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "7b706010-9ef4-45a5-a913-1e4162735294" ,
"value" : "aramexegypt.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "255be985-8b0b-49a5-ad29-3d37fd0f3c63" ,
"value" : "mozillaupdate.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2fa975f4-7a1a-47b2-aa2a-e3f703b09ab2" ,
"value" : "safelyredirecting.digital" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "b61d5c8c-8964-4e34-adb9-36e8245576cb" ,
"value" : "mycoffeeshop.shop" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "49021dea-5371-4d79-b093-4948ba0c3ff1" ,
"value" : "bookjob.club" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "13f42f7b-c0d5-4281-8d83-561ec441c930" ,
"value" : "youtubewatch.co" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "24243169-8697-48a1-bb99-17bb1e37d4dd" ,
"value" : "download4you.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "94220acf-d481-4f83-9aa0-3b6bb7c0177d" ,
"value" : "cyber.country" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "dadba41c-dc50-42a3-ad92-b3ad524c2fa8" ,
"value" : "itcgr.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "5c4c8469-56e2-46c6-8ed7-13f54f662102" ,
"value" : "getsignalapps.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1e534a66-1732-40d8-bff7-6e760a9a2b85" ,
"value" : "clockupdate.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1a2d9b3a-810e-4de0-8453-906287ff2997" ,
"value" : "updateservice.center" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "993af816-13f6-4177-8df8-11a949b868d8" ,
"value" : "crashonline.site" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "087f187b-3a41-4169-86aa-b1f76271dbec" ,
"value" : "speedymax.shop" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "27d902d4-87d1-45c5-ae92-4db9d491ce22" ,
"value" : "safelyredirecting.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a9c4eaf8-9ea8-4c5a-af40-adcce69b9359" ,
"value" : "lylink.online" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d74372f1-bc95-426a-82f7-beb97d269dea" ,
"value" : "ferrari.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "901470be-ea4b-4080-99b8-6ffec8f5a5a6" ,
"value" : "telecomegy-ads.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d6696519-191e-4396-bc80-4095a4fca6b0" ,
"value" : "tw.itter.me" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "09d36209-d326-4235-b3bf-40443c98c511" ,
"value" : "instagam.click" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538168" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "34ed38e3-7c6d-4c57-a839-620c1669b09c" ,
"value" : "distedc.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "8aebd50d-ef2a-4402-a221-f50bef8e3480" ,
"value" : "alraeesnews.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "efa49e47-f6f0-45df-9d4d-af12c97249de" ,
"value" : "bitlinkin.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "003a463c-b29b-4364-81e4-74cde40801ae" ,
"value" : "ewish.cards" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "9b18b86d-745f-42f8-a7a2-c267c3797041" ,
"value" : "sniper.pet" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "485be54c-5794-4446-a0a3-67bfa4e50942" ,
"value" : "wtc1111.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "28127113-c787-407c-adcc-c1a1cbd03f3c" ,
"value" : "newsbeast.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ebe02e6b-db9e-4bf0-a643-713bbd162773" ,
"value" : "in-politics.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f601391e-ebec-409d-a7ba-7abe6706692a" ,
"value" : "wtc2222.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ac07bced-2620-4c9a-9825-d33c71129563" ,
"value" : "icloudflair.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "4cf86a85-fd40-4310-bcb4-766f86104fe3" ,
"value" : "omanreal.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "7e6e9143-9521-4368-b75f-946791fa8c88" ,
"value" : "lexpress.me" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "4ca0f5bd-f5b0-4358-95fd-6ac37ed422fe" ,
"value" : "chatwithme.store" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "bd289319-bfd2-4457-8da3-7c86e4eb5432" ,
"value" : "link-m.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f0242937-a663-49d9-91a6-d9bef37d184e" ,
"value" : "efsyn.online" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "70f73d47-44ff-495c-bb7c-f674701d149c" ,
"value" : "mitube1.link" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "066398c3-48ee-49b7-ad63-963b5ee1026b" ,
"value" : "updete.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "cf85f4b1-cef7-499b-b1b4-82dc31b54a9d" ,
"value" : "weathersite.online" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "3a86a1be-a0a7-4b5b-b1ad-1d77b971dcff" ,
"value" : "llinkedin.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d14c16d2-076f-4f02-8936-18626086f961" ,
"value" : "api-telecommunication.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "dad4879f-778b-4349-8d6b-13ff83e39150" ,
"value" : "2y4nothing.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "4ccdcdef-e94d-4f7c-98c4-067061db73f1" ,
"value" : "updates4you.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "5ae720ed-4497-4a02-a5b7-d2f0ec505129" ,
"value" : "fastuploads.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "8d7c8719-1658-42a1-aeb2-94951be93893" ,
"value" : "kormoran.bid" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "bb1174df-0262-42b5-8993-dfbca988fe2a" ,
"value" : "jquery-updater.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "95277b90-4b66-4b18-8523-ec395c7207fe" ,
"value" : "synctimestamp.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "948b8dea-36f0-4709-8fa6-8073a3aebb3a" ,
"value" : "bmw.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a059e603-2cc4-4d03-b537-24f7e9a2eacb" ,
"value" : "insider.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "8c4831ff-88e5-4bfd-8b9f-40c734af3144" ,
"value" : "smsuns.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ddcb07c2-00c8-4762-9cc2-6177b57a47c8" ,
"value" : "uservicescheck.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "9010dfd7-e4e8-4e00-9266-c7b594ee3098" ,
"value" : "connectivitycheck.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "3edfc428-bee7-404e-a38a-03ffca7d8825" ,
"value" : "newzeto.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "cac2c444-a625-4574-b924-d3ebefc923d3" ,
"value" : "hellasjournal.website" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "20a63ad7-9927-4644-9ebe-14e43d3598dc" ,
"value" : "danas.bid" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "744a4091-f302-4928-a3d9-e8babddd9529" ,
"value" : "enikos.news" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2da02320-e77b-4bfb-929f-9b322f284249" ,
"value" : "nabd.site" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1a411d21-2364-4298-ad20-a7212732dff6" ,
"value" : "quickupdates.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f04f6fb9-2e63-4b50-911d-ce521e7af9c0" ,
"value" : "trecv.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ff5a4722-b6d8-4019-9af0-3a6c591dfd3e" ,
"value" : "we-site.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "9b58b24d-4f1a-4079-a036-ff11ef863252" ,
"value" : "getsignalapps.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ce6e0ba9-89ba-4806-9869-0cc8aaa590ea" ,
"value" : "bi.tly.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "21f6f6a8-cf16-4a91-b142-2a5a3bf40904" ,
"value" : "kinder.engine.ninja" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "49bc9b6b-c1a3-4ad0-9a7d-a9eb2cf4c5bc" ,
"value" : "nemshi-news.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "8b89b16a-6e38-4b7a-99a1-a8f5792db563" ,
"value" : "yo.utube.to" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "bbc93630-e44f-4a0d-ae60-922ffe9e0b93" ,
"value" : "instagam.in" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "c70788c3-eca7-40d4-b662-cbab7a49a6b1" ,
"value" : "svetovid.bid" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "6000ef97-f5da-40de-a188-024799603502" ,
"value" : "vodafoneegypt.tech" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "104689c1-9d29-4577-9d9e-9fb6f14da5e8" ,
"value" : "cellconn.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e045fa9f-fc3a-4123-9cd4-3448061b97d3" ,
"value" : "solargroup.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "fe6b466f-62fa-48ac-ab2c-a92be207a833" ,
"value" : "youtubesyncapi.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "b67703a6-5f6b-4d73-a27f-199821f73ed6" ,
"value" : "ancienthistory.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "bf5d25ea-75de-472a-8310-15f5e0b4932e" ,
"value" : "goldenscint.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2f367350-f35f-4ec8-adf0-d475a6eb7302" ,
"value" : "speedygonzales.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "81cae761-b61d-499c-ad2b-ae98c67f5bc3" ,
"value" : "liponals.store" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e1a8674a-8801-4373-b2bd-d5b591c02d9f" ,
"value" : "altsantiri.news" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "23a09185-6628-4af7-a388-ce657638553a" ,
"value" : "viva.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f7dd2207-35c2-47ae-89b5-2a8bd2c042cc" ,
"value" : "sinai-new.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "dc8879b3-2fdd-45d8-88e7-b8482788a5b2" ,
"value" : "eagerfox.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "db0c7980-ec7f-48d4-8f52-79b773832083" ,
"value" : "weathear.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "8cbe0466-9c7b-49fb-989c-d2b3f4855a96" ,
"value" : "adibjan.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a1e0afc3-3cfa-4b2e-8dda-95c717b0da9d" ,
"value" : "alpineai.uk" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f0cadc91-b2be-4df1-8a68-581d21b6dcff" ,
"value" : "livingwithbadkidny.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "61f0ef41-183d-49d5-ae07-a2694af55919" ,
"value" : "espressonews.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "30da6c62-4d17-4aae-b16a-3f675297d52c" ,
"value" : "olexegy.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "99309856-9569-45e7-9d5d-4910c12af72f" ,
"value" : "blacktrail.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "90c4c296-a888-458a-a651-2d3aea700a45" ,
"value" : "yout.ube.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "09ec9968-d4d5-4d8e-a833-e63b7151db86" ,
"value" : "leanwithme.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "935bcab5-38e0-41ac-911d-2b9501398643" ,
"value" : "apps-ios.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "748caba0-792e-4d50-98aa-bb9973de74bc" ,
"value" : "bi.tly.link" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1c00ba31-22af-4a47-81d3-133ee183085b" ,
"value" : "fbc8213450838f7ae251d4519c195138.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2506b0da-f468-4cdc-a82e-a9dab7ffb204" ,
"value" : "fisherman.engine.ninja" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "0b3993ca-f7cc-450a-ba56-9472951c2ef7" ,
"value" : "politique-koaci.info" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "549abe91-8cb0-4b7a-ba5f-0046df003803" ,
"value" : "adultpcz.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "73a0329a-7b63-400a-97cd-e26dfa12929c" ,
"value" : "youtube.gr.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "0871e302-e849-4c77-a2d3-53c67dcf2719" ,
"value" : "yallakora-egy.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2e33ab1d-f4ec-42bb-9991-e6fdd621ca82" ,
"value" : "android-apps.tech" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2f29f944-733c-4b93-bbe7-9e98b72bb187" ,
"value" : "instagam.photos" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a91b2b7d-e0ad-427e-b79b-ca420a12a048" ,
"value" : "flexipagez.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2d9765d7-e61d-487d-825d-a41699a9741f" ,
"value" : "ereportaz.news" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e229cdc0-aa20-46d1-afc3-8d6178a4fe37" ,
"value" : "kohaicorp.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1152787e-ed89-4860-bd4c-eac820d3fd57" ,
"value" : "md-news-direct.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "eaa84fae-1045-4efc-9f34-645782acd116" ,
"value" : "worldnws.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ee4de759-0ad6-48fe-a698-71987e9a2086" ,
"value" : "landingpge.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1feca209-54ad-4250-980b-c1213595059f" ,
"value" : "etisalatgreen.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ca625364-45a8-4fb4-a919-365004a9d24a" ,
"value" : "lamborghini-s.shop" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "db2ba484-cfdc-4c5b-991f-14906020b97b" ,
"value" : "nemshi-news.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a8ed5319-8b87-46f3-bce3-a228b2ba3d81" ,
"value" : "teslal.shop" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f811b4e9-128a-4ce4-b211-05bf34896abf" ,
"value" : "hellasjournal.company" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "3e1d9744-4318-453d-983b-db773ed4e003" ,
"value" : "bbcsworld.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e9e59dde-a35f-4170-87e6-030ee72d6845" ,
"value" : "fireup.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1337cc14-1b9c-4d37-a25d-bd736508041d" ,
"value" : "goldenscent.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "7ea3ac59-ee17-4530-8b81-c53d66fdccb3" ,
"value" : "youtu-be.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "99433f06-e227-474d-9045-8e8af7be1f52" ,
"value" : "trkc.online" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538169" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "437fa889-e76f-44ac-9b17-83ef6d8f11e2" ,
"value" : "niceonesa.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "4777a5d1-e638-42b0-95a3-7f88d99be990" ,
"value" : "api-apple-buy.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ded354aa-0ced-4165-9154-b1b1848e5d58" ,
"value" : "mifcbook.link" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "3d73627d-b4ca-484e-9983-936fe2509ddf" ,
"value" : "symoty.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "01b6f708-1a03-45d3-8b1d-4cae8036359f" ,
"value" : "cut.red" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "07450a98-9bc3-4fb6-adbf-cf710bac5846" ,
"value" : "dragonair.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ac57b5b8-68d4-4e43-bf71-3c345b6c8547" ,
"value" : "updatetime.zone" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "3d385ce8-bc5c-4a52-9ab3-958b67fadb33" ,
"value" : "shortenurls.me" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1de007be-18ec-4987-b71b-785a9ff63254" ,
"value" : "qwxzyl.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "73e43a97-2e2f-4a7f-87da-b379c17f13fa" ,
"value" : "invoker.icu" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "dbb91060-cfc7-47d7-96de-c88e70c62a2b" ,
"value" : "nassosblog.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "13a740d1-d5e2-414e-9673-837d5fa433de" ,
"value" : "youtube.voto" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "75861ba5-a4ac-4daf-8987-9303658ec41c" ,
"value" : "hopnope.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "4d48f243-9a16-4a88-a79e-13d53445c9d2" ,
"value" : "myutbe.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "b516d270-21e1-4f29-a1a0-764911e8c8cf" ,
"value" : "shortmee.one" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "deb22c9f-cb56-4197-9424-e08f9ba1ae32" ,
"value" : "almasryelyuom.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "10da3fbb-8412-4577-b26a-8858ab9f7b71" ,
"value" : "youtub.app" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a09f38b9-2f25-4837-b3b4-cf9dbc34ea77" ,
"value" : "elpais.me" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e10f7108-0b61-4122-ad2a-ac5fcc097f72" ,
"value" : "actumali.org" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d653dd3b-50e0-4168-855b-14ac89a31695" ,
"value" : "bit-li.ws" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e663cf20-129e-428c-b3e3-ddaa86176059" ,
"value" : "fimes.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "0a3f5bbd-8180-43cf-9c39-8413e2188fb5" ,
"value" : "ps2link.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "dac7d9c5-1724-48a9-91e0-63e8fdd9e994" ,
"value" : "tribune-mg.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "fa8b1e27-b650-48f6-9eed-df46fb4acf6f" ,
"value" : "bumabara.bid" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "febf276c-3a9e-4fd6-ab4d-04bc5822af78" ,
"value" : "simetricode.uk" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "77a5a2fe-80a1-4030-a1ba-a6df896bd41a" ,
"value" : "ps1link.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "77641e2c-87d6-4462-a3ec-79ef3f39e0bc" ,
"value" : "hellottec.art" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "038ea7ab-9500-4e0e-97d1-857234a7d2ec" ,
"value" : "stonisi.news" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f27e61ab-f594-4c80-aeec-cdc975e507ca" ,
"value" : "xf.actor" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2fe5b0a1-ac80-42c6-9e35-dd86c9198897" ,
"value" : "ikea-egypt.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "171a043d-c5bb-4483-83ee-12976193d80d" ,
"value" : "bit-ly.link" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1eaaf3b8-9112-4b90-9215-68e0e71126e6" ,
"value" : "tly.link" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2f0d8b48-2ccf-4b12-bb10-1efc7e309911" ,
"value" : "nikjol.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "eb45c367-fea6-40b7-9ab3-8d4f2eb8dfe3" ,
"value" : "egyqaz.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f6f1db9a-4053-4e23-96eb-6eea6fe592b7" ,
"value" : "ios-apps.store" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ecd35815-a4a2-4c62-82b8-647c68533168" ,
"value" : "serviceupdaterequest.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "8af2791b-1ea1-4a82-b8c9-4d8d50f8cd17" ,
"value" : "tovima.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "cf6b3708-8f55-42a6-a613-4b9a7f8b4e59" ,
"value" : "wha.tsapp.me" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "980ad684-f736-417b-a656-c06228756e6f" ,
"value" : "businesnews.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "97ba1829-a091-44c1-9455-61c31d07a4e3" ,
"value" : "tiol.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1db30066-a2ef-4ac0-8b1d-df030f595d9d" ,
"value" : "mobnetlink1.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "18345894-209f-4f7d-beb3-708bfe43a1c2" ,
"value" : "shortxyz.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "257362fd-2770-4707-8599-fa65f8ad7d0a" ,
"value" : "ube.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "daf7ca58-8b52-4f62-9c5f-035e8bf0529a" ,
"value" : "teslali.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "b602a4e2-5ca8-4e85-ad09-57855044607f" ,
"value" : "iibt.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "7b5c8565-cfb5-43d7-97d2-180a2589d413" ,
"value" : "kranos.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "4a7422c4-4688-4d64-839b-ddf90c946a1b" ,
"value" : "solargoup.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "4de4af8f-3ece-42bc-b40a-becd9523374a" ,
"value" : "carrefourmisr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "c1bcd463-8ba8-4602-983e-b07c8c50849a" ,
"value" : "5m5.io" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "5a45ac49-4b17-4cbb-a960-bc2af1a7dba7" ,
"value" : "pronews.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "b7a889c1-d2ae-480a-afab-590fa8a2a5ee" ,
"value" : "shortwidgets.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "89dc5738-d457-4823-a60a-94f21f72673f" ,
"value" : "pocopoc.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "6f8bcbd9-b94f-4f82-915a-b0d39c7ee3c4" ,
"value" : "charmander.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1df46c75-7921-4308-9d75-e91430724ca2" ,
"value" : "enigmase.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "4fdeb5cc-a7de-4fe6-bdf3-0b9af4b880fb" ,
"value" : "xnxx-hub.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "b8ccb07d-2109-4d0b-83e0-7ef9ac907d0f" ,
"value" : "proupload.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "b3ca055c-e81c-4844-8c70-85ef9b1cf463" ,
"value" : "cloudstatistics.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "40bbaea3-00ff-468f-8add-d902e3b5c1b0" ,
"value" : "burgerprince.us" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "9a9c8608-9838-4dfb-854e-96975cf8b939" ,
"value" : "infosms-a.site" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "3dcfbcca-074f-4981-a2df-ba5c828d984a" ,
"value" : "heiiasjournai.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "baf8af4c-4a16-49fe-a2ca-39dd4d217986" ,
"value" : "citroen.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "dfdc12cd-78c0-436f-9d9f-13d15b24e616" ,
"value" : "ebill.cosmote.center" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "8e9283c5-2053-470f-ac0e-1f1867e9e11a" ,
"value" : "ckforward.one" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "973187cb-f794-480c-ab45-7870236cf63f" ,
"value" : "syncupdate.site" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "5d0c0e15-a56d-4fb9-b6d4-c8b74feed731" ,
"value" : "shortely.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "259a7697-5957-4302-b237-7bcfafea0d94" ,
"value" : "canyouc.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "21d1bbcf-6b29-45bb-8984-2838acbcada9" ,
"value" : "suzuki.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "0fa4f763-1376-4214-ba31-b6e98819f416" ,
"value" : "makeitshort.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "121c8d12-90ce-4578-b89a-856fa1df547a" ,
"value" : "amazing.lab" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "388aaffe-3152-4fab-8428-36f2110c1888" ,
"value" : "protothema.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "6863db87-c31f-4040-9d6b-4410dbb725f4" ,
"value" : "tinyurl.cloud" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d89f16cc-cb4d-4991-b224-f23214917175" ,
"value" : "conlnk.one" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "c8fba428-3a34-4565-937b-f2494adbaf91" ,
"value" : "timeupdate.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d3d207be-fa7f-4748-8082-fe32084d1b19" ,
"value" : "localegem.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ecd8eaf2-dc91-43c4-825e-b6e5853d56e5" ,
"value" : "tesla-s.shop" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f3b34772-179d-4bcc-87d7-b2c70900b955" ,
"value" : "bityl.me" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "8fee3f0d-dcca-47fc-9097-40dbfc848c0b" ,
"value" : "xyvok.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "5315e7f4-aa10-4641-bbbe-6b1c7eb241df" ,
"value" : "wtc3333.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "95d39b25-592e-464d-9212-b564af06a4e5" ,
"value" : "itly.link" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "81fa911d-c5af-42fb-b61b-288021e0cf3a" ,
"value" : "heaven.army" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2668dfce-54f5-4fbc-b99b-faa0a21ef1ae" ,
"value" : "pdfviewer.app" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "7e71dd5c-82b5-40b4-855e-6a80cb4acb1d" ,
"value" : "teslal.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2f7a915c-a00f-4bb2-b862-66be4a250c9e" ,
"value" : "nemshi.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e32d5970-af9b-4017-94e0-05fa64820cd4" ,
"value" : "bank-alahly.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "de46ff06-912f-45fa-8e86-2229efe4cbd1" ,
"value" : "syncservices.one" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e6c9173b-44d1-484a-bf42-90b7aa74d1f2" ,
"value" : "sportsnewz.site" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "70ef642d-57a1-41ea-b941-da4b5801c760" ,
"value" : "bit-ly.org" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a5ad04a7-dfd3-4c85-9387-ee322da7a24a" ,
"value" : "newzgroup.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538170" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "eda5157b-dcc3-4609-8002-f50710c04434" ,
"value" : "guardian-tt.me" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "c77d5da9-2488-4b78-a396-56893089b69f" ,
"value" : "zougla.news" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "78c52144-60f1-4c7e-8986-0a0e9a2ae3d2" ,
"value" : "wavekli.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "44e854d4-267a-4c1f-8b4d-dde49985030c" ,
"value" : "fastdownload.me" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d200af18-edbf-4f8b-87c3-52045227e189" ,
"value" : "iosmnbg.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d5fff34d-eb00-4b37-8273-3b51fbb87995" ,
"value" : "oilgy.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "b82a6099-2c5b-4562-a1f8-c385f5cead46" ,
"value" : "linkit.cloud" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "4dfced26-0d23-4c22-ae8d-c1de4519582b" ,
"value" : "url-tiny.app" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "73be604e-31d3-4b41-bcf5-e63690b35055" ,
"value" : "vodafonegypt.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "9dc12793-cb24-4761-bcbf-471ec47f585c" ,
"value" : "cbbc01.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a76a122d-3156-46e2-815d-69b39734bd5d" ,
"value" : "goldescent.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "90c431f9-fcc2-45e8-ab7d-56a3c271b066" ,
"value" : "bitlyrs.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "40abb731-15d2-467a-a435-8ce7de39cc0e" ,
"value" : "niceonase.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "dc850998-3aa8-4103-bee6-b70f4ea53628" ,
"value" : "link-protection.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "fb1eeecb-61fa-4d8f-89d2-60ef8e8136ad" ,
"value" : "connectivitychecker.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "c45e6ed2-2368-428f-a212-abce61b09865" ,
"value" : "url-promo.club" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d16d3fe3-c515-4420-9fb0-d21f0b60565c" ,
"value" : "forwardeshoptt.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "daa7def9-a735-4e8a-b3e6-18d9e78f37b5" ,
"value" : "uservicesforyou.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "482b6622-30bc-4b62-bffe-c7dd3f336d29" ,
"value" : "playestore.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "097992c8-e640-40c2-9031-35f0976531ac" ,
"value" : "advertsservices.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f83be75e-53ff-4b62-8d9f-493651c10c35" ,
"value" : "servers-mobile.info" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "de9abd2f-8c29-4e73-8b6b-934ab2f5514e" ,
"value" : "mobnetlink2.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "72b9c18f-2b54-4aea-8540-33c76119814e" ,
"value" : "guardnew.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e365f17f-3ddd-4b26-b73e-402268373aed" ,
"value" : "sepenet.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "257a5633-f116-4d9b-8775-2bdb83d3f5f0" ,
"value" : "z2adigital.cloud" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e8f7c662-b7f6-4257-ae60-79629bb5a91f" ,
"value" : "instegram.co" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "bcbd25ee-8c06-4713-8d23-f31c98004b3a" ,
"value" : "browsercheck.services" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f35a869f-52e4-49c0-a354-118acb9ccffb" ,
"value" : "static-graph.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "fbf5f170-11e6-40b7-9ae0-65a00ec39314" ,
"value" : "cnn.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "8f2aa532-d874-42f5-b2b6-9f64bd4bcc90" ,
"value" : "shorten.fi" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e68bf835-515a-44bc-ada6-0ba42c331949" ,
"value" : "celebrnewz.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "7664644e-31ad-4f60-9739-34237f6d81df" ,
"value" : "lifestyleshops.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "6ca386b8-0289-488b-81b8-056e5851ce81" ,
"value" : "pastepast.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a2c247a1-6df2-49dd-bb61-68a4f244ddda" ,
"value" : "snapfire.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "43387a03-7765-47aa-b5ed-d7c6bfb0f3b9" ,
"value" : "omeega.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2ff9e891-845e-4db2-a960-14fdf7b5abbe" ,
"value" : "koora-egypt.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "9da56dc0-555b-43c6-849e-d395e513239a" ,
"value" : "etisalategypt.tech" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "c30fbf27-e36b-4dc7-ad5b-274dbe216442" ,
"value" : "yo.utube.digital" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "23eb7677-9c5b-40f3-8db8-0db9d00bfca0" ,
"value" : "sextape225.me" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "0de655ae-07ff-4809-84cc-3cfea8da58ef" ,
"value" : "supportset.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "093937c1-4034-4617-a9dc-e55dcb15a4f6" ,
"value" : "getupdatesnow.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "b77dffc5-435e-4aab-8246-3e0073599068" ,
"value" : "prmopromo.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1be173ac-b016-4979-bfc6-32c1ea7019ce" ,
"value" : "ilnk.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2af63a3a-315c-498d-bb85-dcdecb26bc52" ,
"value" : "tsrt.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "eece0b35-ae03-416b-b183-2bf5a4b0641c" ,
"value" : "affise.app" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "947939ec-59ee-496e-ac18-9cbb5657563f" ,
"value" : "telenorconn.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f398103d-3f84-4c35-9223-71ecbc90f867" ,
"value" : "mobnetlink3.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "6993238b-037a-4768-a706-db895d6cff06" ,
"value" : "zougla.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1fa4b4d3-8601-499d-8fae-e21f7d0c398e" ,
"value" : "myfcbk.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a0b446c7-0ce0-43b7-90b0-a3d277e7b1a9" ,
"value" : "z2a.digital" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "c271cc6a-04c3-4004-a17f-9d28e742d360" ,
"value" : "engine.ninja" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "3c6feb64-187d-4a26-acc0-9b2c877ef5e0" ,
"value" : "gosokm.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "25b51862-e0ee-4eba-b346-2abae972932b" ,
"value" : "z2digital.cloud" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1c6bb5e8-1a88-440d-b50d-2958b2961d96" ,
"value" : "utube.digital" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a644a71a-7a07-4a23-92fa-648f30d8b225" ,
"value" : "mlinks.ws" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "32a10c7f-3c82-4c8b-8766-3e44d6ac7870" ,
"value" : "redeitt.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "6997e2e3-b181-48d0-9da5-bf629b5de9b4" ,
"value" : "updatingnews.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "bf0e8173-9770-4307-8329-f41719027704" ,
"value" : "limk.one" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "59547364-db43-4c9a-afc6-b7e39e9be2fd" ,
"value" : "nissan.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "5ccba526-fa0d-404f-8aba-19914f1edf9e" ,
"value" : "sports-mdg.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a6f786e9-8a29-49a3-850b-642f0d4563a9" ,
"value" : "politika.bid" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "408a82c7-6834-4ca8-9a8e-2ebcb1b15308" ,
"value" : "sephoragroup.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "abd16fd0-19e2-4b9b-b14c-8d3081057dd7" ,
"value" : "msas.ws" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e0af7147-9b8b-43e4-bfb7-a42f2fce452c" ,
"value" : "orchomenos.news" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "7cf9ff37-8293-4987-89da-b4eb81bb5c4d" ,
"value" : "mywebsitevpstest.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "19673405-e01f-4696-8069-ee6ee69bdc05" ,
"value" : "novosti.bid" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f6b9694d-6190-486e-8eae-63e5556c8c3d" ,
"value" : "twtter.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ca3b431d-8853-4867-9eab-827685c24b77" ,
"value" : "nabde.app" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "c36623b5-b5a9-4983-8159-bda79298a059" ,
"value" : "addons.news" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "9c46cf47-d808-4076-8850-0cc8a1b381be" ,
"value" : "lexpress-mg.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "446b7036-23d2-4d3e-af71-a5305024f691" ,
"value" : "redirecting.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "061792c8-d321-4605-8ea0-39b3204a6c90" ,
"value" : "mytrips.quest" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "7fd8ff56-990a-419a-a260-8ac6f49676ec" ,
"value" : "bitt.fi" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a9b7cebc-98bc-419d-836d-ee33ef2cfc1f" ,
"value" : "landingpg.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "1a288c93-01a0-4fa7-a15a-2fe3f77d32ff" ,
"value" : "lnkedin.org" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "63f4adae-01b0-459c-a5c1-cbb6de37179c" ,
"value" : "linktothisa.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "52982af2-5d85-4c84-a05d-b9d86a7c13f2" ,
"value" : "adservices.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "42e67512-d527-469d-8d9e-37f89162404a" ,
"value" : "timestampsync.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "57cc5253-a9ca-4d2a-b701-0a95f3974ad0" ,
"value" : "olxeg.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d613d620-f216-452c-8d3d-6fd321704f36" ,
"value" : "bit-li.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a5f4b662-a4ec-45c2-8929-0bb3791077ca" ,
"value" : "weathernewz.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "517e7065-9b0e-415b-8fbc-e3e0e80c132b" ,
"value" : "linkit.digital" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "3d60bde8-5506-45d8-866c-8262c499ed43" ,
"value" : "onlineservices.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "523a26a1-c08c-4b6b-a47b-71255fd3ef91" ,
"value" : "guardnews.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d4651539-5d99-466b-b0d8-a186b6c86017" ,
"value" : "trecvf.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ef26bd65-1e7c-4ba5-881b-70fb93d10722" ,
"value" : "speedy.sbs" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "96749e37-6f8c-44e1-9096-e43595ea733e" ,
"value" : "advfb.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2b41641d-7d9d-4a50-b655-7c589dffb607" ,
"value" : "qwert.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "d1602855-1ee1-4ae4-8729-f1abb18f6802" ,
"value" : "alraeeenews.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "01abdc3a-1ec8-467e-a813-5d3ffcb99d21" ,
"value" : "sitepref.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "212bea34-adb6-4534-b911-e79c0b3b66e7" ,
"value" : "covid19masks.shop" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538171" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "5de6ace5-5cd8-4411-ae30-68e6e823fa71" ,
"value" : "tly.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e2a87abf-b466-4ca0-a52c-6515a84c5b8d" ,
"value" : "cloudtimesync.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "be337a4c-ff98-41f3-8f36-7a134803813e" ,
"value" : "tinylinks.live" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "bd70bd72-7db3-44a0-9863-eb2202552c02" ,
"value" : "itter.me" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "ac9bc3a3-5ab9-4351-a17e-b91a243eaf5b" ,
"value" : "bity.ws" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "38afc77b-fd77-4109-ba61-b3870c2b56c5" ,
"value" : "tgrthgsrgwrthwrtgwr.xyz" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "b5bc59d0-2bc0-453e-a5c3-9a30b7e393a3" ,
"value" : "icloudeu.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "16eb733c-d4f1-4c16-b30f-cd3f2bc527a6" ,
"value" : "otaupdatesios.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "930907c5-f6e1-4ee9-9835-932a5d90a059" ,
"value" : "applepps.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e51e8d5c-2512-44e4-89f8-0bf316a88a54" ,
"value" : "paok-24.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "10f5c0be-70be-4d07-b006-31251e4bb69c" ,
"value" : "inservices.digital" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "af08b906-d57a-439e-a289-a8abf9fa7ec8" ,
"value" : "tinyulrs.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "85a840e6-cdb0-4d3c-bf69-605a19c15f19" ,
"value" : "tiny.gr.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "fcadfe21-9397-44cf-8ab5-05333d7e4cb1" ,
"value" : "networkenterprise.net" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "20c71cd0-bf51-4619-a3b5-d595079fbe3b" ,
"value" : "timeupdateservice.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "2e5a81d5-ccaf-458a-bb44-14aeb2646ca5" ,
"value" : "kathimerini.news" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "e476e602-3f9a-4d4e-9170-20d055a6cde8" ,
"value" : "atheere.com" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "a57eba23-64f8-4272-a0cf-e2f56a957d0f" ,
"value" : "hempower.shop" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Network activity" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "domain" ,
"uuid" : "f267c753-54ee-4e39-9b34-8420fd4a8a10" ,
"value" : "eg-gov.org" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "90d70bef-8ba5-4746-85d1-3c97f922c2a1" ,
"value" : "/data/local/tmp/wd/" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "a5f27704-92a7-4a29-95ab-ec87dd629508" ,
"value" : "/data/local/tmp/wd/fs.db" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "7ba97760-750d-4820-997e-3117785d9257" ,
"value" : "/private/var/tmp/hooker" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "98189417-0dae-48b9-bff6-949af6e01b28" ,
"value" : "/private/var/tmp/takePhoto" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "cb20da93-7103-4c07-b1c6-ff738c1ecb76" ,
"value" : "/private/var/tmp/UserEventAgent" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
} ,
{
"category" : "Payload delivery" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "filename" ,
"uuid" : "ed3e1a53-9e7c-4fd6-8d6e-27029f8bee1f" ,
"value" : "/private/var/tmp/com.apple.WebKit.Networking" ,
"Tag" : [
{
"colour" : "#9ca1bd" ,
2023-05-19 09:05:37 +00:00
"local" : "0" ,
"name" : "misp-galaxy:malware=\"Cytrox\"" ,
"relationship_type" : ""
2023-04-21 13:25:09 +00:00
}
]
}
] ,
"Object" : [
{
"comment" : "" ,
"deleted" : false ,
"description" : "An object describing a STIX pattern. The object can be linked via a relationship to other attributes or objects to describe how it can be represented as a STIX pattern." ,
"meta-category" : "misc" ,
"name" : "stix2-pattern" ,
"template_uuid" : "0c5bd072-7c3e-4d45-86f7-a8104d9143b9" ,
"template_version" : "3" ,
"timestamp" : "1639651665" ,
"uuid" : "08efc3c1-86a3-4276-a1ef-f3a2c5db7469" ,
"Attribute" : [
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "version" ,
"timestamp" : "1643538172" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "1b365d0e-c6ce-41c7-a801-53a7ebcd4bc8" ,
"value" : "STIX 2.1"
} ,
{
"category" : "Payload installation" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "stix2-pattern" ,
"timestamp" : "1643538172" ,
"to_ids" : true ,
"type" : "stix2-pattern" ,
"uuid" : "6a35d1f2-6f77-43ea-93c9-16a90d20f4ff" ,
"value" : "[configuration-profile:id='76DAB334-7E17-475D-A5D6-0794EB5818A5']"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "Object describing the original file used to import data in MISP." ,
"meta-category" : "file" ,
"name" : "original-imported-file" ,
"template_uuid" : "4cd560e9-2cfe-40a1-9964-7b2e797ecac5" ,
"template_version" : "2" ,
"timestamp" : "1643538172" ,
"uuid" : "b9e6b927-ce2d-4094-80de-9507c3700c38" ,
"Attribute" : [
{
"category" : "External analysis" ,
"comment" : "" ,
"data" : " e w o g I C A g I n R 5 c G U i O i A i Y n V u Z G x l I i w K I C A g I C J p Z C I 6 I C J i d W 5 k b G U t L T R i N D c 1 Y T V m L W V h N D c t N G Y y Z i 1 h Z W E z L W Q 4 Y m E 5 Y m Q x Y j Z i N i I s C i A g I C A i b 2 J q Z W N 0 c y I 6 I F s K I C A g I C A g I C B 7 C i A g I C A g I C A g I C A g I C J 0 e X B l I j o g I m 1 h b H d h c m U i L A o g I C A g I C A g I C A g I C A i c 3 B l Y 192 Z X J z a W 9 u I j o g I j I u M S I s C i A g I C A g I C A g I C A g I C J p Z C I 6 I C J t Y W x 3 Y X J l L S 1 h Y j Y y O D Y 0 Z S 1 l M j Q 1 L T Q 4 O D U t O D c 4 N i 1 h N j U 2 N j J i Y j Z k N m M i L A o g I C A g I C A g I C A g I C A i Y 3 J l Y X R l Z C I 6 I C I y M D I x L T E y L T E 2 V D E w O j Q 3 O j Q 1 L j I 4 N j g x M l o i L A o g I C A g I C A g I C A g I C A i b W 9 k a W Z p Z W Q i O i A i M j A y M S 0 x M i 0 x N l Q x M D o 0 N z o 0 N S 4 y O D Y 4 M T J a I i w K I C A g I C A g I C A g I C A g I m 5 h b W U i O i A i Q 3 l 0 c m 94 I i w K I C A g I C A g I C A g I C A g I m R l c 2 N y a X B 0 a W 9 u I j o g I k l P Q 3 M g Z m 9 y I E N 5 d H J v e C I s C i A g I C A g I C A g I C A g I C J p c 19 m Y W 1 p b H k i O i B m Y W x z Z Q o g I C A g I C A g I H 0 s C i A g I C A g I C A g e w o g I C A g I C A g I C A g I C A i d H l w Z S I 6 I C J p b m R p Y 2 F 0 b 3 I i L A o g I C A g I C A g I C A g I C A i c 3 B l Y 192 Z X J z a W 9 u I j o g I j I u M S I s C i A g I C A g I C A g I C A g I C J p Z C I 6 I C J p b m R p Y 2 F 0 b 3 I t L T g x Z W Z j Y T Q 0 L T g w Z j M t N G F m N S 0 4 Z m I 3 L T J h Z G F j M D l i Y z Q 0 M S I s C i A g I C A g I C A g I C A g I C J j c m V h d G V k I j o g I j I w M j E t M T I t M T Z U M T A 6 N D c 6 N D U u M j g 3 M D J a I i w K I C A g I C A g I C A g I C A g I m 1 v Z G l m a W V k I j o g I j I w M j E t M T I t M T Z U M T A 6 N D c 6 N D U u M j g 3 M D J a I i w K I C A g I C A g I C A g I C A g I m l u Z G l j Y X R v c l 90 e X B l c y I 6 I F s K I C A g I C A g I C A g I C A g I C A g I C J t Y W x p Y 2 l v d X M t Y W N 0 a X Z p d H k i C i A g I C A g I C A g I C A g I F 0 s C i A g I C A g I C A g I C A g I C J w Y X R 0 Z X J u I j o g I l t k b 21 h a W 4 t b m F t Z T p 2 Y W x 1 Z T 0 n a 29 l b m l n c 2 V n Z 2 c u Y 29 t J 10 i L A o g I C A g I C A g I C A g I C A i c G F 0 d G V y b l 90 e X B l I j o g I n N 0 a X g i L A o g I C A g I C A g I C A g I C A i c G F 0 d G V y b l 92 Z X J z a W 9 u I j o g I j I u M S I s C i A g I C A g I C A g I C A g I C J 2 Y W x p Z F 9 m c m 9 t I j o g I j I w M j E t M T I t M T Z U M T A 6 N D c 6 N D U u M j g 3 M D J a I g o g I C A g I C A g I H 0 s C i A g I C A g I C A g e w o g I C A g I C A g I C A g I C A i d H l w Z S I 6 I C J y Z W x h d G l v b n N o a X A i L A o g I C A g I C A g I C A g I C A i c 3 B l Y 192 Z X J z a W 9 u I j o g I j I u M S I s C i A g I C A g I C A g I C A g I C J p Z C I 6 I C J y Z W x h d G l v b n N o a X A t L W E 0 Z T B k Z D M y L T R k M W U t N G U 4 N i 1 h N D U 0 L T A w Z W M 5 Z j Q 1 N T M 4 M y I s C i A g I C A g I C A g I C A g I C J j c m V h d G V k I j o g I j I w M j E t M T I t M T Z U M T A 6 N D c 6 N D U u M j g 3 O T Q 1 W i I s C i A g I C A g I C A g I C A g I C J t b 2 R p Z m l l Z C I 6 I C I y M D I x L T E y L T E 2 V D E w O j Q 3 O j Q 1 L j I 4 N z k 0 N V o i L A o g I C A g I C A g I C A g I C A i c m V s Y X R p b 25 z a G l w X 3 R 5 c G U i O i A i a W 5 k a W N h d G V z I i w K I C A g I C A g I C A g I C A g I n N v d X J j Z V 9 y Z W Y i O i A i a W 5 k a W N h d G 9 y L S 0 4 M W V m Y 2E0 N C 0 4 M G Y z L T R h Z j U t O G Z i N y 0 y Y W R h Y z A 5 Y m M 0 N D E i L A o g I C A g I C A g I C A g I C A i d G F y Z 2 V 0 X 3 J l Z i I 6 I C J t Y W x 3 Y X J l L S 1 h Y j Y y O D Y 0 Z S 1 l M j Q 1 L T Q 4 O D U t O D c 4 N i 1 h N j U 2 N j J i Y j Z k N m M i C i A g I C A g I C A g f S w K I C A g I C A g I C B 7 C i A g I C A g I C A g I C A g I C J 0 e X B l I j o g I m l u Z G l j Y X R v c i I s C i A g I C A g I C A g I C A g I C J z c G V j X 3 Z l c n N p b 24 i O i A i M i 4 x I i w K I C A g I C A g I C A g I C A g I m l k I j o g I m l u Z G l j Y X R v c i 0 t M m U y Z j A 0 Y T I t Z j E x O C 0 0 M T c z L T l j O G U t M D I z O W J m M W E y M j c 1 I i w K I C A g I C A g I C A g I C A g I m N y Z W F 0 Z W Q i O i A i M j A y M S 0 x M i 0 x N l Q x M D o 0 N z o 0 N S 4 y O D g w O T R a I i w K I C A g I C A g I C A g I C A g I m 1 v Z G l m a W V k I j o g I j I w M j E t M T I t M T Z U M T A 6 N D c 6 N D U u M j g 4 M D k 0 W i I s C i A g I C A g I C A g I C A g I C J p b m R p Y 2 F 0 b 3 J f d H l w Z X M i O i B b C i A g I C A g I C A g I C A g I C A g I C A i b W F s a W N p b 3 V z L W F j d G l 2 a X R 5 I g o g I C A g I C A g I C A g I C B d L A o g I C A g I C A g I C A g I C A i c G F 0 d G V y b i I 6 I C J b Z G 9 t Y W l u L W 5 h b W U 6 d m F s d W U 9 J 2 J p d G x s e S 5 s a X Z l J 10 i L A o g I C A g I C A g I C A g I C A i c G F 0 d G V y b l 90 e X B l I j o g I n N 0 a X g i L A o g I C A g I C A g I C A g I C A i c G F 0 d G V y b l 92 Z X J z a W 9 u I j o g I j I u M S I s C i A g I C A g I C A g I C A g I C J 2 Y W x p Z F 9 m c m 9 t I j o g I j I w M j E t M T I t M T Z U M T A 6 N D c 6 N D U u M j g 4 M D k 0 W i I K I C A g I C A g I C B 9 L A o g I C A g I C A g I H s K I C A g I C A g I C A g I C A g I n R 5 c G U i O i A i c m V s Y X R p b 25 z a G l w I i w K I C A g I C A g I C A g I C A g I n N w Z W N f d m V y c 2 l v b i I 6 I C I y L j E i L A o g I C A g I C A g I C A g I C A i a W Q i O i A i c m V s Y X R p b 25 z a G l w L S 0 4 Y 2 F m Z j g 4 N i 0 1 O W M 1 L T Q 5 N z Q t O T A y Y S 0 y Y W I z Z T Z j O D g 3 Z G Y i L A o g I C A g I C A g I C A g I C A i Y 3 J l Y X R l Z C I 6 I C I y M D I x L T E y L T E 2 V D E w O j Q 3 O j Q 1 L j I 4 O D c 5 M 1 o i L A o g I C A g I C A g I C A g I C A i b W 9 k a W Z p Z W Q i O i A i M j A y M S 0 x M i 0 x N l Q x M D o 0 N z o 0 N S 4 y O D g 3 O T N a I i w K I C A g I C A g I C A g I C A g I n J l b G F 0 a W 9 u c 2 h p c F 90 e X B l I j o g I m l u Z G l j Y X R l c y I s C i A g I C A g I C A g I C A g I C J z b 3 V y Y 2 V f c m V m I j o g I m l u Z G l j Y X R v c i 0 t M m U y Z j A 0 Y T I t Z j E x O C 0 0 M T c z L T l j O G U t M D I z O W J m M W E y M j c 1 I i w K I C A g I C A g I C A g I C A g I n R h c m d l d F 9 y Z W Y i O i A i b W F s d 2 F y Z S 0 t Y W I 2 M j g 2 N G U t Z T I 0 N S 0 0 O D g 1 L T g 3 O D Y t Y T Y 1 N j Y y Y m I 2 Z D Z j I g o g I C A g I C A g I H 0 s C i A g I C A g I C A g e w o g I C A g I C A g I C A g I C A i d H l w Z S I 6 I C J p b m R p Y 2 F 0 b 3 I i L A o g I C A g I C A g I C A g I C A i c 3 B l Y 192 Z X J z a W 9 u I j o g I j I u M S I s C i A g I C A g I C A g I C A g I C J p Z C I 6 I C J p b m R p Y 2 F 0 b 3 I t L W U 5 N j k 5 N W J h L T I x Y j Y t N D I x Y y 1 h Y j c 2 L T J m O T A z M z A y N 2 J h N i I s C i A g I C A g I C A g I C A g I C J j c m V h d G V k I j o g I j I w M j E t M T I t M T Z U M T A 6 N D c 6 N D U u M j g 4 O T I 1 W i I s C i A g I C A g I C A g I C A g I C J t b 2 R p Z m l l Z C I 6 I C I y M D I x L T E y L T E 2 V D E w O j Q 3 O j Q 1 L j I 4 O D k y N V o i L A o g I C A g I C A g I C A g I C A i a W 5 k a W N h d G 9 y X 3 R 5 c G V z I j o g W w o g I C A g I C A g I C A g I C A g I C A g I m 1 h b G l j a W 91 c y 1 h Y 3 R p d m l 0 e S I K I C A g I C A g I C A g I C A g X S w K I C A g I C A g I C A g I C A g I n B h d H R l c m 4 i O i A i W 2 R v b W F p b i 1 u Y W 1 l O n Z h b H V l P S d u Z X d z b G l 2 Z T I u e H l 6 J 10 i L A o g I C A g I C A g I C A g I C A i c G F 0 d G V y b l 90 e X B l I j o g I n N 0 a X g i L A o g I C A g I C A g I C A g I C A i c G F 0 d G V y b l 92 Z X J z a W 9 u I j o g I j I u M S I s C i A g I C A g I C A g I C A g I C J 2 Y W x p Z F 9 m c m 9 t I j o g I j I w M j E t M T I t M T Z U M T A 6 N D c 6 N D U u M j g 4 O T I 1 W i I K I C A g I C A g I C B 9 L A o g I C A g I C A g I H s K I C A g I C A g I C
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "imported-sample" ,
"timestamp" : "1643538172" ,
"to_ids" : false ,
"type" : "attachment" ,
"uuid" : "2dc29630-ca09-4f31-a4d3-0516a6ba87e6" ,
"value" : "cytrox.stix2"
} ,
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "format" ,
"timestamp" : "1643538172" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "636a8777-490d-42d5-850b-589ec0cd32e2" ,
"value" : "STIX 2.0"
}
]
} ,
{
"comment" : "" ,
"deleted" : false ,
"description" : "Metadata used to generate an executive level report" ,
"meta-category" : "misc" ,
"name" : "report" ,
"template_uuid" : "70a68471-df22-4e3f-aa1a-5a3be19f82df" ,
"template_version" : "5" ,
"timestamp" : "1643538248" ,
"uuid" : "aa74ba61-2d36-42a4-88e9-b238dc2a8b92" ,
"Attribute" : [
{
"category" : "External analysis" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "link" ,
"timestamp" : "1643538248" ,
"to_ids" : false ,
"type" : "link" ,
"uuid" : "01a90efd-c99f-41ee-95e9-71714756e58c" ,
"value" : "https://github.com/AmnestyTech/investigations/tree/master/2021-12-16_cytrox"
} ,
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : false ,
"object_relation" : "summary" ,
"timestamp" : "1643538248" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "d7ebf909-06c5-4ed9-9bb5-193eab1182a5" ,
"value" : "This repository contains network and device indicators of compromised (IoCs) related to the IOS and Android spyware tools developed by the cyber-surveillance company Cytrox. These indicators were first published in December 2021 by Meta in their Threat Report on the Surveillance-for-Hire Industry and by Citizen Lab in their report Pegasus vs. Predator - Dissident\u2019s Doubly-Infected iPhone Reveals Cytrox Mercenary Spyware. Additional indicators of compromise were identified by the Amnesty Tech Security Lab as part of an independent investigation."
} ,
{
"category" : "Other" ,
"comment" : "" ,
"deleted" : false ,
"disable_correlation" : true ,
"object_relation" : "type" ,
"timestamp" : "1643538248" ,
"to_ids" : false ,
"type" : "text" ,
"uuid" : "71bdc154-7709-433b-b9c9-8d183a435474" ,
"value" : "Report"
}
]
}
]
}
}