misp-circl-feed/feeds/circl/misp/5cd2e198-65ac-4a34-9499-4d17950d210f.json

1 line
8 KiB
JSON
Raw Normal View History

2023-04-21 13:25:09 +00:00
{"Event": {"info": "OSINT - Sodinokibi ransomware exploits WebLogic Server vulnerability", "Tag": [{"colour": "#e7007d", "exportable": true, "name": "workflow:state=\"incomplete\""}, {"colour": "#2c4f00", "exportable": true, "name": "malware_classification:malware-category=\"Ransomware\""}, {"colour": "#00223b", "exportable": true, "name": "osint:source-type=\"blog-post\""}, {"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#72003d", "exportable": true, "name": "workflow:todo=\"add-missing-misp-galaxy-cluster-values\""}], "publish_timestamp": "0", "timestamp": "1557730264", "Object": [{"comment": "Ransomware sample", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5cd91190-e1a4-4b13-b0e8-579b950d210f", "sharing_group_id": "0", "timestamp": "1557729680", "description": "File object describing a file with meta-information", "template_version": "17", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5cd91190-115c-43a9-94b3-579b950d210f", "timestamp": "1557729680", "to_ids": true, "value": "0fa207940ea53e2b54a2b769d8ab033a6b2c5e08c78bf4d7dade79849960b54d", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}, {"comment": "", "category": "Other", "uuid": "5cd91191-ae04-4ae6-b4d9-579b950d210f", "timestamp": "1557729681", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "Ransomware sample", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5cd911ac-d4c4-46f9-9c3f-1713950d210f", "sharing_group_id": "0", "timestamp": "1557729708", "description": "File object describing a file with meta-information", "template_version": "17", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5cd911ac-3cec-4b90-b97e-1713950d210f", "timestamp": "1557729708", "to_ids": true, "value": "34dffdb04ca07b014cdaee857690f86e490050335291ccc84c94994fa91e0160", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}, {"comment": "", "category": "Other", "uuid": "5cd911ac-0b68-4c6d-aed5-1713950d210f", "timestamp": "1557729708", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "Ransomware sample", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5cd911c0-b3e0-4e84-b937-1713950d210f", "sharing_group_id": "0", "timestamp": "1557729728", "description": "File object describing a file with meta-information", "template_version": "17", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5cd911c0-c79c-46a9-9cac-1713950d210f", "timestamp": "1557729728", "to_ids": true, "value": "74bc2f9a81ad2cc609b7730dbabb146506f58244e5e655cbb42044913384a6ac", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}, {"comment": "", "category": "Other", "uuid": "5cd911c0-58a0-40cc-b75b-1713950d210f", "timestamp": "1557729728", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "Ransomware sample", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5cd911f3-2b10-4344-af8b-42c2950d210f", "sharing_group_id": "0", "timestamp": "1557729779", "description": "File object describing a file with meta-information", "template_version": "17", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5cd911f3-d4c4-422e-a830-4a62950d210f", "timestamp": "1557729779", "to_ids": true, "value": "95ac3903127b74f8e4d73d987f5e3736f5bdd909ba756260e187b6bf53fb1a05", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}, {"comment": "", "category": "Other", "uuid": "5cd911f4-f7d4-4ff8-890a-433d950d210f", "timestamp": "1557729780", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distri