misp-circl-feed/feeds/circl/stix-2.1/e7ec6346-b312-48da-ba1c-8004d3e80eb1.json

{
    "type": "bundle",
    "id": "bundle--e7ec6346-b312-48da-ba1c-8004d3e80eb1",
    "objects": [
        {
            "type": "identity",
            "spec_version": "2.1",
            "id": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
            "created": "2024-08-23T11:55:25.000Z",
            "modified": "2024-08-23T11:55:25.000Z",
            "name": "CIRCL",
            "identity_class": "organization"
        },
        {
            "type": "report",
            "spec_version": "2.1",
            "id": "report--e7ec6346-b312-48da-ba1c-8004d3e80eb1",
            "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
            "created": "2024-08-23T11:55:25.000Z",
            "modified": "2024-08-23T11:55:25.000Z",
            "name": "Fake booking.com website - Lookyloo Capture (https://booking-0ef4-8213-ae7f-3fec3e22.1facc.pw/?stays=superb-apartment-to-rent-in-central-nijmegen&sid=9648547963&id=376818034&awg_dvm=FCgjGHuw8y)",
            "published": "2024-08-23T11:55:30Z",
            "object_refs": [
                "observed-data--a24d6bc5-0b93-464a-a6a1-330120afdc13",
                "url--a24d6bc5-0b93-464a-a6a1-330120afdc13",
                "observed-data--62ed0fcc-956f-4af6-906c-21fee493c762",
                "file--62ed0fcc-956f-4af6-906c-21fee493c762",
                "artifact--62ed0fcc-956f-4af6-906c-21fee493c762",
                "observed-data--65b42c04-0abf-4861-9478-60b885d7a227",
                "url--65b42c04-0abf-4861-9478-60b885d7a227",
                "indicator--f220931b-cdcf-42be-bda1-021c70737eaa",
                "indicator--bbaad5b5-8ad0-40bd-8b92-ce535f2646aa",
                "relationship--1a51b31c-18aa-412e-bc0c-4e606fe3b84e",
                "relationship--48c66ab6-dc7a-448d-ac00-0036d340b7a6",
                "relationship--e4d9c44f-068b-48b2-b3d0-78e756c782c8"
            ],
            "labels": [
                "Threat-Report",
                "misp:tool=\"MISP-STIX-Converter\"",
                "type:OSINT",
                "osint:lifetime=\"perpetual\"",
                "osint:certainty=\"50\"",
                "tlp:clear"
            ],
            "object_marking_refs": [
                "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"
            ]
        },
        {
            "type": "observed-data",
            "spec_version": "2.1",
            "id": "observed-data--a24d6bc5-0b93-464a-a6a1-330120afdc13",
            "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
            "created": "2024-08-23T11:48:46.000Z",
            "modified": "2024-08-23T11:48:46.000Z",
            "first_observed": "2024-08-23T11:48:46Z",
            "last_observed": "2024-08-23T11:48:46Z",
            "number_observed": 1,
            "object_refs": [
                "url--a24d6bc5-0b93-464a-a6a1-330120afdc13"
            ],
            "labels": [
                "misp:type=\"link\"",
                "misp:category=\"External analysis\""
            ]
        },
        {
            "type": "url",
            "spec_version": "2.1",
            "id": "url--a24d6bc5-0b93-464a-a6a1-330120afdc13",
            "value": "https://lookyloo.circl.lu/tree/5fd79eb8-0e6e-4f7a-8ca8-9380e41eb407"
        },
        {
            "type": "observed-data",
            "spec_version": "2.1",
            "id": "observed-data--62ed0fcc-956f-4af6-906c-21fee493c762",
            "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
            "created": "2024-08-23T11:48:46.000Z",
            "modified": "2024-08-23T11:48:46.000Z",
            "first_observed": "2024-08-23T11:48:46Z",
            "last_observed": "2024-08-23T11:48:46Z",
            "number_observed": 1,
            "object_refs": [
                "file--62ed0fcc-956f-4af6-906c-21fee493c762",
                "artifact--62ed0fcc-956f-4af6-906c-21fee493c762"
            ],
            "labels": [
                "misp:type=\"attachment\"",
                "misp:category=\"External analysis\""
            ]
        },
        {
            "type": "file",
            "spec_version": "2.1",
            "id": "file--62ed0fcc-956f-4af6-906c-21fee493c762",
            "name": "screenshot_landing_page.png",
            "content_ref": "artifact--62ed0fcc-956f-4af6-906c-21fee493c762"
        },
        {
            "type": "artifact",
            "spec_version": "2.1",
            "id": "artifact--62ed0fcc-956f-4af6-906c-21fee493c762",
            "payload_bin": "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
        },
        {
            "type": "observed-data",
            "spec_version": "2.1",
            "id": "observed-data--65b42c04-0abf-4861-9478-60b885d7a227",
            "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
            "created": "2024-08-23T11:48:46.000Z",
            "modified": "2024-08-23T11:48:46.000Z",
            "first_observed": "2024-08-23T11:48:46Z",
            "last_observed": "2024-08-23T11:48:46Z",
            "number_observed": 1,
            "object_refs": [
                "url--65b42c04-0abf-4861-9478-60b885d7a227"
            ],
            "labels": [
                "misp:type=\"link\"",
                "misp:category=\"External analysis\""
            ]
        },
        {
            "type": "url",
            "spec_version": "2.1",
            "id": "url--65b42c04-0abf-4861-9478-60b885d7a227",
            "value": "https://urlscan.io/result/c12083f9-1ab1-434c-9435-82d674ed64bb/"
        },
        {
            "type": "indicator",
            "spec_version": "2.1",
            "id": "indicator--f220931b-cdcf-42be-bda1-021c70737eaa",
            "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
            "created": "2024-08-23T11:48:46.000Z",
            "modified": "2024-08-23T11:48:46.000Z",
            "description": "Submitted URL",
            "pattern": "[url:value = 'https://booking-0ef4-8213-ae7f-3fec3e22.1facc.pw/?stays=superb-apartment-to-rent-in-central-nijmegen&sid=9648547963&id=376818034&awg_dvm=FCgjGHuw8y' AND url:x_misp_host = 'booking-0ef4-8213-ae7f-3fec3e22.1facc.pw' AND url:x_misp_domain = '1facc.pw']",
            "pattern_type": "stix",
            "pattern_version": "2.1",
            "valid_from": "2024-08-23T11:48:46Z",
            "kill_chain_phases": [
                {
                    "kill_chain_name": "misp-category",
                    "phase_name": "network"
                }
            ],
            "labels": [
                "misp:name=\"url\"",
                "misp:meta-category=\"network\"",
                "misp:to_ids=\"True\""
            ]
        },
        {
            "type": "indicator",
            "spec_version": "2.1",
            "id": "indicator--bbaad5b5-8ad0-40bd-8b92-ce535f2646aa",
            "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
            "created": "2024-08-23T11:48:46.000Z",
            "modified": "2024-08-23T11:48:46.000Z",
            "description": "Content received for the final redirect (before rendering)",
            "pattern": "[file:hashes.MD5 = 'd296c42315858d4e43f8ac1b41cd785e' AND file:hashes.SHA1 = 'b8af8103f21e5f73a572c291eb0e801a347b7567' AND file:hashes.SHA256 = '25a96d0dc318058ded4060a840fbdb3c873febeda344e9bc9994a6995d1140cc' AND file:hashes.SHA512 = 'd6c15ff40de6f591795ff10d8fdd083cb0ceda7c641f9f54195d076ad9a5cd137f064699ba9d8e26173e7ba709a3f0ebf9c0b841d7761b6cecbe02ad63d4a227' AND file:hashes.SSDEEP = '192:SIXwo35EAOwSgnDdMB0c32JyhEFjxdrfqQa6LnwZewpKSzduOXRgMgflTsAu0Qh0:SIA05leK8jRex39' AND file:name = 'file.bin' AND file:size = '21615' AND (file:content_ref.payload_bin = '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
            "pattern_type": "stix",
            "pattern_version": "2.1",
            "valid_from": "2024-08-23T11:48:46Z",
            "kill_chain_phases": [
                {
                    "kill_chain_name": "misp-category",
                    "phase_name": "file"
                }
            ],
            "labels": [
                "misp:name=\"file\"",
                "misp:meta-category=\"file\"",
                "misp:to_ids=\"True\""
            ]
        },
        {
            "type": "relationship",
            "spec_version": "2.1",
            "id": "relationship--1a51b31c-18aa-412e-bc0c-4e606fe3b84e",
            "created": "2024-08-23T11:48:46.000Z",
            "modified": "2024-08-23T11:48:46.000Z",
            "relationship_type": "captured-by",
            "source_ref": "indicator--f220931b-cdcf-42be-bda1-021c70737eaa",
            "target_ref": "observed-data--a24d6bc5-0b93-464a-a6a1-330120afdc13"
        },
        {
            "type": "relationship",
            "spec_version": "2.1",
            "id": "relationship--48c66ab6-dc7a-448d-ac00-0036d340b7a6",
            "created": "2024-08-23T11:48:46.000Z",
            "modified": "2024-08-23T11:48:46.000Z",
            "relationship_type": "loaded-by",
            "source_ref": "indicator--bbaad5b5-8ad0-40bd-8b92-ce535f2646aa",
            "target_ref": "indicator--f220931b-cdcf-42be-bda1-021c70737eaa"
        },
        {
            "type": "relationship",
            "spec_version": "2.1",
            "id": "relationship--e4d9c44f-068b-48b2-b3d0-78e756c782c8",
            "created": "2024-08-23T11:48:46.000Z",
            "modified": "2024-08-23T11:48:46.000Z",
            "relationship_type": "rendered-as",
            "source_ref": "indicator--bbaad5b5-8ad0-40bd-8b92-ce535f2646aa",
            "target_ref": "observed-data--62ed0fcc-956f-4af6-906c-21fee493c762"
        },
        {
            "type": "marking-definition",
            "spec_version": "2.1",
            "id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",
            "created": "2017-01-20T00:00:00.000Z",
            "definition_type": "tlp",
            "name": "TLP:WHITE",
            "definition": {
                "tlp": "white"
            }
        }
    ]
}
chg: [feeds] updated 2024-12-27 11:52:46 +01:00			`{`
			`"type": "bundle",`
			`"id": "bundle--e7ec6346-b312-48da-ba1c-8004d3e80eb1",`
			`"objects": [`
			`{`
			`"type": "identity",`
			`"spec_version": "2.1",`
			`"id": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",`
			`"created": "2024-08-23T11:55:25.000Z",`
			`"modified": "2024-08-23T11:55:25.000Z",`
			`"name": "CIRCL",`
			`"identity_class": "organization"`
			`},`
			`{`
			`"type": "report",`
			`"spec_version": "2.1",`
			`"id": "report--e7ec6346-b312-48da-ba1c-8004d3e80eb1",`
			`"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",`
			`"created": "2024-08-23T11:55:25.000Z",`
			`"modified": "2024-08-23T11:55:25.000Z",`
			`"name": "Fake booking.com website - Lookyloo Capture (https://booking-0ef4-8213-ae7f-3fec3e22.1facc.pw/?stays=superb-apartment-to-rent-in-central-nijmegen&sid=9648547963&id=376818034&awg_dvm=FCgjGHuw8y)",`
			`"published": "2024-08-23T11:55:30Z",`
			`"object_refs": [`
			`"observed-data--a24d6bc5-0b93-464a-a6a1-330120afdc13",`
			`"url--a24d6bc5-0b93-464a-a6a1-330120afdc13",`
			`"observed-data--62ed0fcc-956f-4af6-906c-21fee493c762",`
			`"file--62ed0fcc-956f-4af6-906c-21fee493c762",`
			`"artifact--62ed0fcc-956f-4af6-906c-21fee493c762",`
			`"observed-data--65b42c04-0abf-4861-9478-60b885d7a227",`
			`"url--65b42c04-0abf-4861-9478-60b885d7a227",`
			`"indicator--f220931b-cdcf-42be-bda1-021c70737eaa",`
			`"indicator--bbaad5b5-8ad0-40bd-8b92-ce535f2646aa",`
			`"relationship--1a51b31c-18aa-412e-bc0c-4e606fe3b84e",`
			`"relationship--48c66ab6-dc7a-448d-ac00-0036d340b7a6",`
			`"relationship--e4d9c44f-068b-48b2-b3d0-78e756c782c8"`
			`],`
			`"labels": [`
			`"Threat-Report",`
			`"misp:tool=\"MISP-STIX-Converter\"",`
			`"type:OSINT",`
			`"osint:lifetime=\"perpetual\"",`
			`"osint:certainty=\"50\"",`
			`"tlp:clear"`
			`],`
			`"object_marking_refs": [`
			`"marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"`
			`]`
			`},`
			`{`
			`"type": "observed-data",`
			`"spec_version": "2.1",`
			`"id": "observed-data--a24d6bc5-0b93-464a-a6a1-330120afdc13",`
			`"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",`
			`"created": "2024-08-23T11:48:46.000Z",`
			`"modified": "2024-08-23T11:48:46.000Z",`
			`"first_observed": "2024-08-23T11:48:46Z",`
			`"last_observed": "2024-08-23T11:48:46Z",`
			`"number_observed": 1,`
			`"object_refs": [`
			`"url--a24d6bc5-0b93-464a-a6a1-330120afdc13"`
			`],`
			`"labels": [`
			`"misp:type=\"link\"",`
			`"misp:category=\"External analysis\""`
			`]`
			`},`
			`{`
			`"type": "url",`
			`"spec_version": "2.1",`
			`"id": "url--a24d6bc5-0b93-464a-a6a1-330120afdc13",`
			`"value": "https://lookyloo.circl.lu/tree/5fd79eb8-0e6e-4f7a-8ca8-9380e41eb407"`
			`},`
			`{`
			`"type": "observed-data",`
			`"spec_version": "2.1",`
			`"id": "observed-data--62ed0fcc-956f-4af6-906c-21fee493c762",`
			`"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",`
			`"created": "2024-08-23T11:48:46.000Z",`
			`"modified": "2024-08-23T11:48:46.000Z",`
			`"first_observed": "2024-08-23T11:48:46Z",`
			`"last_observed": "2024-08-23T11:48:46Z",`
			`"number_observed": 1,`
			`"object_refs": [`
			`"file--62ed0fcc-956f-4af6-906c-21fee493c762",`
			`"artifact--62ed0fcc-956f-4af6-906c-21fee493c762"`
			`],`
			`"labels": [`
			`"misp:type=\"attachment\"",`
			`"misp:category=\"External analysis\""`
			`]`
			`},`
			`{`
			`"type": "file",`
			`"spec_version": "2.1",`
			`"id": "file--62ed0fcc-956f-4af6-906c-21fee493c762",`
			`"name": "screenshot_landing_page.png",`
			`"content_ref": "artifact--62ed0fcc-956f-4af6-906c-21fee493c762"`
			`},`
			`{`
			`"type": "artifact",`
			`"spec_version": "2.1",`
			`"id": "artifact--62ed0fcc-956f-4af6-906c-21fee493c762",`
			"payload_bin": "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
			`},`
			`{`
			`"type": "observed-data",`
			`"spec_version": "2.1",`
			`"id": "observed-data--65b42c04-0abf-4861-9478-60b885d7a227",`
			`"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",`
			`"created": "2024-08-23T11:48:46.000Z",`
			`"modified": "2024-08-23T11:48:46.000Z",`
			`"first_observed": "2024-08-23T11:48:46Z",`
			`"last_observed": "2024-08-23T11:48:46Z",`
			`"number_observed": 1,`
			`"object_refs": [`
			`"url--65b42c04-0abf-4861-9478-60b885d7a227"`
			`],`
			`"labels": [`
			`"misp:type=\"link\"",`
			`"misp:category=\"External analysis\""`
			`]`
			`},`
			`{`
			`"type": "url",`
			`"spec_version": "2.1",`
			`"id": "url--65b42c04-0abf-4861-9478-60b885d7a227",`
			`"value": "https://urlscan.io/result/c12083f9-1ab1-434c-9435-82d674ed64bb/"`
			`},`
			`{`
			`"type": "indicator",`
			`"spec_version": "2.1",`
			`"id": "indicator--f220931b-cdcf-42be-bda1-021c70737eaa",`
			`"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",`
			`"created": "2024-08-23T11:48:46.000Z",`
			`"modified": "2024-08-23T11:48:46.000Z",`
			`"description": "Submitted URL",`
			`"pattern": "[url:value = 'https://booking-0ef4-8213-ae7f-3fec3e22.1facc.pw/?stays=superb-apartment-to-rent-in-central-nijmegen&sid=9648547963&id=376818034&awg_dvm=FCgjGHuw8y' AND url:x_misp_host = 'booking-0ef4-8213-ae7f-3fec3e22.1facc.pw' AND url:x_misp_domain = '1facc.pw']",`
			`"pattern_type": "stix",`
			`"pattern_version": "2.1",`
			`"valid_from": "2024-08-23T11:48:46Z",`
			`"kill_chain_phases": [`
			`{`
			`"kill_chain_name": "misp-category",`
			`"phase_name": "network"`
			`}`
			`],`
			`"labels": [`
			`"misp:name=\"url\"",`
			`"misp:meta-category=\"network\"",`
			`"misp:to_ids=\"True\""`
			`]`
			`},`
			`{`
			`"type": "indicator",`
			`"spec_version": "2.1",`
			`"id": "indicator--bbaad5b5-8ad0-40bd-8b92-ce535f2646aa",`
			`"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",`
			`"created": "2024-08-23T11:48:46.000Z",`
			`"modified": "2024-08-23T11:48:46.000Z",`
			`"description": "Content received for the final redirect (before rendering)",`
			"pattern": "[file:hashes.MD5 = 'd296c42315858d4e43f8ac1b41cd785e' AND file:hashes.SHA1 = 'b8af8103f21e5f73a572c291eb0e801a347b7567' AND file:hashes.SHA256 = '25a96d0dc318058ded4060a840fbdb3c873febeda344e9bc9994a6995d1140cc' AND file:hashes.SHA512 = 'd6c15ff40de6f591795ff10d8fdd083cb0ceda7c641f9f54195d076ad9a5cd137f064699ba9d8e26173e7ba709a3f0ebf9c0b841d7761b6cecbe02ad63d4a227' AND file:hashes.SSDEEP = '192:SIXwo35EAOwSgnDdMB0c32JyhEFjxdrfqQa6LnwZewpKSzduOXRgMgflTsAu0Qh0:SIA05leK8jRex39' AND file:name = 'file.bin' AND file:size = '21615' AND (file:content_ref.payload_bin = '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
			`"pattern_type": "stix",`
			`"pattern_version": "2.1",`
			`"valid_from": "2024-08-23T11:48:46Z",`
			`"kill_chain_phases": [`
			`{`
			`"kill_chain_name": "misp-category",`
			`"phase_name": "file"`
			`}`
			`],`
			`"labels": [`
			`"misp:name=\"file\"",`
			`"misp:meta-category=\"file\"",`
			`"misp:to_ids=\"True\""`
			`]`
			`},`
			`{`
			`"type": "relationship",`
			`"spec_version": "2.1",`
			`"id": "relationship--1a51b31c-18aa-412e-bc0c-4e606fe3b84e",`
			`"created": "2024-08-23T11:48:46.000Z",`
			`"modified": "2024-08-23T11:48:46.000Z",`
			`"relationship_type": "captured-by",`
			`"source_ref": "indicator--f220931b-cdcf-42be-bda1-021c70737eaa",`
			`"target_ref": "observed-data--a24d6bc5-0b93-464a-a6a1-330120afdc13"`
			`},`
			`{`
			`"type": "relationship",`
			`"spec_version": "2.1",`
			`"id": "relationship--48c66ab6-dc7a-448d-ac00-0036d340b7a6",`
			`"created": "2024-08-23T11:48:46.000Z",`
			`"modified": "2024-08-23T11:48:46.000Z",`
			`"relationship_type": "loaded-by",`
			`"source_ref": "indicator--bbaad5b5-8ad0-40bd-8b92-ce535f2646aa",`
			`"target_ref": "indicator--f220931b-cdcf-42be-bda1-021c70737eaa"`
			`},`
			`{`
			`"type": "relationship",`
			`"spec_version": "2.1",`
			`"id": "relationship--e4d9c44f-068b-48b2-b3d0-78e756c782c8",`
			`"created": "2024-08-23T11:48:46.000Z",`
			`"modified": "2024-08-23T11:48:46.000Z",`
			`"relationship_type": "rendered-as",`
			`"source_ref": "indicator--bbaad5b5-8ad0-40bd-8b92-ce535f2646aa",`
			`"target_ref": "observed-data--62ed0fcc-956f-4af6-906c-21fee493c762"`
			`},`
			`{`
			`"type": "marking-definition",`
			`"spec_version": "2.1",`
			`"id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",`
			`"created": "2017-01-20T00:00:00.000Z",`
			`"definition_type": "tlp",`
			`"name": "TLP:WHITE",`
			`"definition": {`
			`"tlp": "white"`
			`}`
			`}`
			`]`
			`}`