{"Event":{"info":"OSINT - Thrip: Espionage Group Hits Satellite, Telecoms, and Defense Companies","Tag":[{"colour":"#0088cc","exportable":true,"name":"misp-galaxy:threat-actor=\"Thrip\""},{"colour":"#064800","exportable":true,"name":"misp-galaxy:tool=\"Mimikatz\""},{"colour":"#0088cc","exportable":true,"name":"misp-galaxy:mitre-enterprise-attack-tool=\"Mimikatz - S0002\""},{"colour":"#0088cc","exportable":true,"name":"misp-galaxy:mitre-enterprise-attack-tool=\"Mimikatz\""},{"colour":"#0088cc","exportable":true,"name":"misp-galaxy:mitre-tool=\"Mimikatz\""},{"colour":"#ffffff","exportable":true,"name":"tlp:white"},{"colour":"#00223b","exportable":true,"name":"osint:source-type=\"blog-post\""},{"colour":"#007d98","exportable":true,"name":"veris:actor:motive=\"Espionage\""}],"publish_timestamp":"0","timestamp":"1537773773","Object":[{"comment":"Trojan.Rikamanu","template_uuid":"688c46fb-5edb-40a3-8273-1af7923e2215","uuid":"5b2b5e7f-cbd0-4ee5-8f00-4ed8950d210f","sharing_group_id":"0","timestamp":"1529568895","description":"File object describing a file with meta-information","template_version":"11","Attribute":[{"comment":"","category":"Payload delivery","uuid":"5b2b5e80-0434-4e47-ac6b-4ffd950d210f","timestamp":"1529568896","to_ids":true,"value":"00d9da2b665070d674acdbb7c8f25a01086b7ca39d482d55f08717f7383ee26a","disable_correlation":false,"object_relation":"sha256","type":"sha256"},{"comment":"","category":"Other","uuid":"5b2b5e80-0b70-4293-bb3a-496f950d210f","timestamp":"1529568896","to_ids":false,"value":"Malicious","disable_correlation":true,"object_relation":"state","type":"text"}],"distribution":"5","meta-category":"file","name":"file"},{"comment":"Trojan.Syndicasec","template_uuid":"688c46fb-5edb-40a3-8273-1af7923e2215","uuid":"5b2b60b9-bab8-40f6-8b9b-40a1950d210f","sharing_group_id":"0","timestamp":"1529569465","description":"File object describing a file with meta-information","template_version":"11","Attribute":[{"comment":"","category":"Payload delivery","uuid":"5b2b60b9-dc9c-4172-a798-4c77950d210f","timestamp":"1529569465","to_ids":true,"value":"01396dce4a8d231b1cf96dfc1ca4067617e43a8898974cd9b257172e2e5ce39e","disable_correlation":false,"object_relation":"sha256","type":"sha256"},{"comment":"","category":"Other","uuid":"5b2b60ba-3d14-4ae9-b877-43d3950d210f","timestamp":"1529569466","to_ids":false,"value":"Malicious","disable_correlation":true,"object_relation":"state","type":"text"}],"distribution":"5","meta-category":"file","name":"file"},{"comment":"Trojan.Syndicasec","template_uuid":"688c46fb-5edb-40a3-8273-1af7923e2215","uuid":"5b2b62ab-5ee8-4f1f-aa66-4085950d210f","sharing_group_id":"0","timestamp":"1529569963","description":"File object describing a file with meta-information","template_version":"11","Attribute":[{"comment":"","category":"Payload delivery","uuid":"5b2b62ac-8e74-4897-aa5b-4594950d210f","timestamp":"1529569964","to_ids":true,"value":"01786f8b7629132297bc923258e22b8f73b128487f05353917ff02f0d420f905","disable_correlation":false,"object_relation":"sha256","type":"sha256"},{"comment":"","category":"Other","uuid":"5b2b62ac-9d10-4934-9830-4ab0950d210f","timestamp":"1529569964","to_ids":false,"value":"Malicious","disable_correlation":true,"object_relation":"state","type":"text"}],"distribution":"5","meta-category":"file","name":"file"},{"comment":"Trojan.Syndicasec","template_uuid":"688c46fb-5edb-40a3-8273-1af7923e2215","uuid":"5b2b6301-b9fc-444d-bab0-4b5d950d210f","sharing_group_id":"0","timestamp":"1529570049","description":"File object describing a file with meta-information","template_version":"11","Attribute":[{"comment":"","category":"Payload delivery","uuid":"5b2b6301-ddb8-4726-b637-431c950d210f","timestamp":"1529570049","to_ids":true,"value":"022e38ed813137b968bdfd59201fdc6df27df0b53f3a5a2927e81d17d8fd1ba0","disable_correlation":false,"obj
