misp-circl-feed/feeds/circl/misp/58f0ba71-80d8-4325-a8de-4707950d210f.json

1 line
2.5 MiB
JSON
Raw Normal View History

2023-04-21 13:25:09 +00:00
{"Event": {"info": "OSINT - windows.tar.xz from theshadowbrokers", "Tag": [{"colour": "#4a9500", "exportable": true, "name": "circl:incident-classification=\"information-leak\""}, {"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#14ff00", "exportable": true, "name": "admiralty-scale:information-credibility=\"6\""}], "publish_timestamp": "0", "timestamp": "1492173605", "analysis": "2", "Attribute": [{"comment": "Original file leaked (decrypted)", "category": "External analysis", "uuid": "58f0bc15-c63c-4269-9054-4254950d210f", "timestamp": "1492180067", "to_ids": true, "value": "42f74d30e1ba88e92e72bb6c8bf42045cd281e89", "disable_correlation": false, "object_relation": null, "type": "sha1"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c325-7ba0-475b-a339-4e99950d210f", "timestamp": "1492180067", "to_ids": true, "value": "windows/storage/pccp.pyc|81a364b485d0096aa61ec54cd1161da0a6b427cfc8a46f5d403827fa36a32727", "disable_correlation": false, "object_relation": null, "type": "filename|sha256"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c327-4ef4-4e4c-8998-441b950d210f", "timestamp": "1492180067", "to_ids": true, "value": "windows/storage/lipa_x64.dll|3c6429d6570274114b4677b781df2ab00915c709b7b53fdb10f65b160430e900", "disable_correlation": false, "object_relation": null, "type": "filename|sha256"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c329-7c0c-49ea-a029-4a7e950d210f", "timestamp": "1492180067", "to_ids": true, "value": "windows/storage/wbem.cpl|bc494b32aaf0824ec40019a703aebaeea743a2fb388d18d6e3361d9203cdc30b", "disable_correlation": false, "object_relation": null, "type": "filename|sha256"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c32b-a0a4-4f92-84f3-4511950d210f", "timestamp": "1492180067", "to_ids": true, "value": "windows/storage/brdg.dll|5b9961d395704ce5b04d6a22fc6a59a4e90351f7af321af3831b397ec5e455f3", "disable_correlation": false, "object_relation": null, "type": "filename|sha256"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c32c-5888-41a6-b868-4aff950d210f", "timestamp": "1492180067", "to_ids": true, "value": "windows/storage/start_pcdll.mof|20e77bb6139130fdaae35f3d53b83d7b833b7c8cfb65eb5253edba715dfc8aaf", "disable_correlation": false, "object_relation": null, "type": "filename|sha256"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c32e-be10-4454-b2d2-4049950d210f", "timestamp": "1492180067", "to_ids": true, "value": "windows/storage/start_dll.mof|40bd6d63314e59a6d3365cec79d13a56968ed0950b7b0111482202a273b8aa37", "disable_correlation": false, "object_relation": null, "type": "filename|sha256"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c330-cc34-44fe-b74f-4641950d210f", "timestamp": "1492180067", "to_ids": true, "value": "windows/storage/rpcproxydll.dll|e0959b444f5b78150ac33ee1efaaae86f72c72a3c4a6a6371274ce33475e4296", "disable_correlation": false, "object_relation": null, "type": "filename|sha256"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c332-5028-4de1-a369-4a33950d210f", "timestamp": "1492180067", "to_ids": true, "value": "windows/storage/start_exe.mof|815c5db5ea37372b29a6651ac48deb12c9a9230f695971464babee9d3b3b0a05", "disable_correlation": false, "object_relation": null, "type": "filename|sha256"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c334-1928-4102-b01d-436e950d210f", "timestamp": "1492180067", "to_ids": true, "value": "windows/configure_lp.py|22edfd04a040732f18b8e95cbbb49d0bc0cb96ab7ee61a95e3f697d6b193b946", "disable_correlation": false, "object_relation": null, "type": "filename|sha256"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c336-4920-44f5-a6ba-454f950d210f", "timestamp": "1492180067", "to_ids": true, "value": "windows/storage/capa_x64.dll|d088ddac1303177793a8077d32128439fed895c319c791b3a77a7b48603e7b0f", "disable_correlation": false, "object_relation": null, "type": "filename|sha256"}, {"comment": "", "category": "Artifacts dropped", "uuid": "58f0c337-1e44-4451-bcf9-46b395