1 line
32 KiB
JSON
1 line
32 KiB
JSON
|
{"Event": {"info": "OSINT - Malicious Documents Targeting Security Professionals", "Tag": [{"colour": "#12e000", "exportable": true, "name": "admiralty-scale:information-credibility=\"4\""}, {"colour": "#0022d6", "exportable": true, "name": "estimative-language:confidence-in-analytic-judgment=\"low\""}, {"colour": "#0088cc", "exportable": true, "name": "misp-galaxy:mitre-enterprise-attack-intrusion-set=\"APT28\""}, {"colour": "#0088cc", "exportable": true, "name": "misp-galaxy:microsoft-activity-group=\"STRONTIUM\""}, {"colour": "#0088cc", "exportable": true, "name": "misp-galaxy:mitre-mobile-attack-intrusion-set=\"APT28 - G0007\""}, {"colour": "#12e000", "exportable": true, "name": "misp-galaxy:threat-actor=\"Sofacy\""}, {"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#00223b", "exportable": true, "name": "osint:source-type=\"blog-post\""}], "publish_timestamp": "0", "timestamp": "1537778612", "Object": [{"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5af19b1d-a4b4-4ceb-8f5d-4d23950d210f", "sharing_group_id": "0", "timestamp": "1525783325", "description": "File object describing a file with meta-information", "template_version": "11", "Attribute": [{"comment": "", "category": "Other", "uuid": "5af19b1e-3bb4-4131-879f-4c94950d210f", "timestamp": "1525783326", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}, {"comment": "", "category": "Payload delivery", "uuid": "5af19b1d-b028-4b3a-8e81-472d950d210f", "timestamp": "1525783325", "to_ids": true, "value": "522fd9b35323af55113455d823571f71332e53dde988c2eb41395cf6b0c15805", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5af19b2f-11f0-400f-a7c0-4d86950d210f", "sharing_group_id": "0", "timestamp": "1525783343", "description": "File object describing a file with meta-information", "template_version": "11", "Attribute": [{"comment": "", "category": "Other", "uuid": "5af19b30-b930-4a45-b93b-42c5950d210f", "timestamp": "1525783344", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}, {"comment": "", "category": "Payload delivery", "uuid": "5af19b30-92f0-4568-be79-4572950d210f", "timestamp": "1525783344", "to_ids": true, "value": "c4be15f9ccfecf7a463f3b1d4a17e7b4f95de939e057662c3f97b52f7fa3c52f", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5af19b44-a0ac-4250-b880-4b8b950d210f", "sharing_group_id": "0", "timestamp": "1525783364", "description": "File object describing a file with meta-information", "template_version": "11", "Attribute": [{"comment": "", "category": "Other", "uuid": "5af19b45-3764-42ca-8ced-4511950d210f", "timestamp": "1525783365", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}, {"comment": "", "category": "Payload delivery", "uuid": "5af19b45-d800-4c3e-a72e-44fd950d210f", "timestamp": "1525783365", "to_ids": true, "value": "e5511b22245e26a003923ba476d7c36029939b2d1936e17a9b35b396467179ae", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5af19b54-e774-4814-9e53-4631950d210f", "sharing_group_id": "0", "timestamp": "1525783380", "description": "File object describing a file with meta-information", "template_version": "11", "Attribute": [{"comment": "", "category": "Other", "uuid": "5af19b55-165c-4f61-bf68-4f99950d210f", "timestamp": "1525783381", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}, {"comment": "", "category": "Payload deliv
|