2023-04-21 13:25:09 +00:00
|
|
|
{
|
|
|
|
"Event": {
|
|
|
|
"analysis": "0",
|
|
|
|
"date": "2016-03-15",
|
|
|
|
"extends_uuid": "",
|
|
|
|
"info": "Potential SpamBots (2016-03-15)",
|
|
|
|
"publish_timestamp": "1458046633",
|
|
|
|
"published": true,
|
|
|
|
"threat_level_id": "3",
|
|
|
|
"timestamp": "1458044736",
|
|
|
|
"uuid": "56e7fbe0-55e4-4d2d-ac65-4b19950d210f",
|
|
|
|
"Orgc": {
|
|
|
|
"name": "CIRCL",
|
|
|
|
"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f"
|
|
|
|
},
|
|
|
|
"Tag": [
|
|
|
|
{
|
|
|
|
"colour": "#203f00",
|
2023-05-19 09:05:37 +00:00
|
|
|
"local": "0",
|
|
|
|
"name": "circl:incident-classification=\"system-compromise\"",
|
|
|
|
"relationship_type": ""
|
2023-04-21 13:25:09 +00:00
|
|
|
},
|
|
|
|
{
|
|
|
|
"colour": "#ffffff",
|
2023-05-19 09:05:37 +00:00
|
|
|
"local": "0",
|
|
|
|
"name": "tlp:white",
|
|
|
|
"relationship_type": ""
|
2023-04-21 13:25:09 +00:00
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "Imported via the freetext import.",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1458043908",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "ip-src",
|
|
|
|
"uuid": "56e7fc04-3aa0-4a38-b125-4cfc950d210f",
|
|
|
|
"value": "182.65.96.201"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "Imported via the freetext import.",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1458043909",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "ip-src",
|
|
|
|
"uuid": "56e7fc05-9144-4f36-a92d-4719950d210f",
|
|
|
|
"value": "115.250.105.20"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "Imported via the freetext import.",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1458043909",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "ip-src",
|
|
|
|
"uuid": "56e7fc05-aab4-4fe8-ab4e-4487950d210f",
|
|
|
|
"value": "5.101.140.71"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "Imported via the freetext import.",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1458043909",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "ip-src",
|
|
|
|
"uuid": "56e7fc05-1304-45ff-bc11-47a2950d210f",
|
|
|
|
"value": "180.215.249.37"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "Imported via the freetext import.",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1458043910",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "ip-src",
|
|
|
|
"uuid": "56e7fc06-ae90-4e8e-9383-4a66950d210f",
|
|
|
|
"value": "182.58.172.236"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "Imported via the freetext import.",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1458043910",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "ip-src",
|
|
|
|
"uuid": "56e7fc06-41fc-4faa-9a05-4709950d210f",
|
|
|
|
"value": "201.137.2.95"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "Imported via the freetext import.",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1458044735",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "ip-src",
|
|
|
|
"uuid": "56e7ff3f-585c-4de4-863c-4072950d210f",
|
|
|
|
"value": "196.182.29.34"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
}
|
|
|
|
}
|