2023-12-14 14:30:15 +00:00
|
|
|
{"Event": {"info": "Jaff 2017-05-23 : \"Invoice\" - \"12-3456.pdf\"", "Tag": [{"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#006c6c", "exportable": true, "name": "ecsirt:malicious-code=\"ransomware\""}, {"colour": "#0088cc", "exportable": true, "name": "misp-galaxy:ransomware=\"Jaff\""}], "publish_timestamp": "0", "timestamp": "1495554174", "analysis": "1", "Attribute": [{"comment": "", "category": "Network activity", "uuid": "5924587a-0b9c-48fb-b11e-3dd2950d210f", "timestamp": "1495554170", "to_ids": true, "value": "http://maximusstafastoriesticks.info/a5", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5924587d-ef80-472a-af91-c159950d210f", "timestamp": "1495554172", "to_ids": true, "value": "maximusstafastoriesticks.info", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "maximusstafastoriesticks.info", "category": "Network activity", "uuid": "5924587e-5394-4d5d-b0ff-c155950d210f", "timestamp": "1495554174", "to_ids": true, "value": "185.109.147.122", "disable_correlation": false, "object_relation": null, "type": "ip-dst"}, {"comment": "", "category": "Network activity", "uuid": "59245877-05fc-4ca9-a2e2-c154950d210f", "timestamp": "1495554167", "to_ids": true, "value": "williams-fitness.com", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "williams-fitness.com", "category": "Network activity", "uuid": "59245879-ede0-4aff-976a-6bfa950d210f", "timestamp": "1495554169", "to_ids": true, "value": "143.95.44.115", "disable_correlation": false, "object_relation": null, "type": "ip-dst"}, {"comment": "", "category": "Network activity", "uuid": "59245876-1f10-415a-8b19-c150950d210f", "timestamp": "1495554166", "to_ids": true, "value": "http://williams-fitness.com/fgJds2U", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "uslugitransportowe-warszawa.pl", "category": "Network activity", "uuid": "59245875-8278-4a28-8a8b-180d950d210f", "timestamp": "1495554165", "to_ids": true, "value": "188.68.249.235", "disable_correlation": false, "object_relation": null, "type": "ip-dst"}, {"comment": "", "category": "Network activity", "uuid": "59245873-a7b8-4d3c-a6ca-c14e950d210f", "timestamp": "1495554163", "to_ids": true, "value": "uslugitransportowe-warszawa.pl", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "59245868-51c8-4999-b464-6b79950d210f", "timestamp": "1495554152", "to_ids": true, "value": "http://oliverkuo.com.au/fgJds2U", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "59245869-8088-41ef-8c1c-c159950d210f", "timestamp": "1495554153", "to_ids": true, "value": "oliverkuo.com.au", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "oliverkuo.com.au", "category": "Network activity", "uuid": "5924586c-0de0-4e2c-9a87-c155950d210f", "timestamp": "1495554156", "to_ids": true, "value": "27.54.86.49", "disable_correlation": false, "object_relation": null, "type": "ip-dst"}, {"comment": "", "category": "Network activity", "uuid": "5924586d-c514-44bf-94be-47aa950d210f", "timestamp": "1495554157", "to_ids": true, "value": "http://pcflame.com.au/fgJds2U", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5924586e-ed8c-4299-a339-c156950d210f", "timestamp": "1495554158", "to_ids": true, "value": "pcflame.com.au", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "pcflame.com.au", "category": "Network activity", "uuid": "59245871-9f24-47d2-a997-6a00950d210f", "timestamp": "1495554161", "to_ids": true, "value": "103.9.170.249", "disable_correlation": false, "object_relation": null, "type": "ip-dst"}, {"comment": "", "category": "Network activity", "uuid": "59245872-0214-46ae-8ee2-3ddc950d210f", "timestamp": "1
|
