2023-04-21 13:25:09 +00:00
|
|
|
{
|
2023-12-14 14:30:15 +00:00
|
|
|
"Event": {
|
|
|
|
"analysis": "2",
|
|
|
|
"date": "2020-06-09",
|
|
|
|
"extends_uuid": "",
|
|
|
|
"info": "OSINT - IQ-FA006:Dridex XLS Documents with Fancy Lures",
|
|
|
|
"publish_timestamp": "1591686914",
|
|
|
|
"published": true,
|
|
|
|
"threat_level_id": "3",
|
|
|
|
"timestamp": "1591686650",
|
|
|
|
"uuid": "5edf24d5-6b5c-4e65-bc89-426e950d210f",
|
|
|
|
"Orgc": {
|
|
|
|
"name": "CIRCL",
|
|
|
|
"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f"
|
|
|
|
},
|
|
|
|
"Tag": [
|
|
|
|
{
|
|
|
|
"colour": "#004646",
|
2024-04-05 12:15:17 +00:00
|
|
|
"local": false,
|
2023-12-14 14:30:15 +00:00
|
|
|
"name": "type:OSINT",
|
|
|
|
"relationship_type": ""
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"colour": "#0071c3",
|
2024-04-05 12:15:17 +00:00
|
|
|
"local": false,
|
2023-12-14 14:30:15 +00:00
|
|
|
"name": "osint:lifetime=\"perpetual\"",
|
|
|
|
"relationship_type": ""
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"colour": "#0087e8",
|
2024-04-05 12:15:17 +00:00
|
|
|
"local": false,
|
2023-12-14 14:30:15 +00:00
|
|
|
"name": "osint:certainty=\"50\"",
|
|
|
|
"relationship_type": ""
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"colour": "#ffffff",
|
2024-04-05 12:15:17 +00:00
|
|
|
"local": false,
|
2023-12-14 14:30:15 +00:00
|
|
|
"name": "tlp:white",
|
|
|
|
"relationship_type": ""
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"colour": "#0088cc",
|
2024-04-05 12:15:17 +00:00
|
|
|
"local": false,
|
2023-12-14 14:30:15 +00:00
|
|
|
"name": "misp-galaxy:malpedia=\"Dridex\"",
|
|
|
|
"relationship_type": ""
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"colour": "#0da700",
|
2024-04-05 12:15:17 +00:00
|
|
|
"local": false,
|
2023-12-14 14:30:15 +00:00
|
|
|
"name": "misp-galaxy:tool=\"Dridex\"",
|
|
|
|
"relationship_type": ""
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2500-10c0-47f9-997b-42cde387cbd9",
|
|
|
|
"value": "191832476af317aabe90cff7b0f16241acd8df9ee44a476bd1d206a138de6777"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2500-0640-4269-aab0-422de387cbd9",
|
|
|
|
"value": "1b27af50c09daedcf39982a0673d8ad08261fd20c9a7d840814699a24d92a5cf"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2500-b470-4116-bf71-4674e387cbd9",
|
|
|
|
"value": "1c49a77f9b817c8b7670cb06d96c3ecee6f1c34e910533b1020bb4948bf1701d"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2500-0ec0-454a-9e30-4199e387cbd9",
|
|
|
|
"value": "1c8a36d488b50edb22ade0168e8eb4dc4615a44a08431541fd8b1a7114eb9b23"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2500-d0c0-44b9-9158-4431e387cbd9",
|
|
|
|
"value": "20c6f5cfe318e013502aee7e52dca337264a2aab8da32b32347399b98e8922ff"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2500-8708-4b17-bd49-4d8fe387cbd9",
|
|
|
|
"value": "2bb379f1ee08c6c1aedf20cdb4feec2b5db08767c6d9ba6cad2d3dc13ade8609"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2500-0830-40b4-8218-414ce387cbd9",
|
|
|
|
"value": "328c729797fe2acbf06246dfca52c2f75c0713849fa588dd5c414e0e18244c54"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2500-d64c-486c-9936-481be387cbd9",
|
|
|
|
"value": "3bbcf3542a72193b90de7c74203dc8b9c9c3896f4234f36ed36f6d082c13f310"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2500-9314-4028-ae88-4406e387cbd9",
|
|
|
|
"value": "3fb1e4091ffbea04a93d5ef7ed5ef4bd8f4eaea58fb1763507df2ef8ccb73ae3"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2501-f220-43f9-a903-4a11e387cbd9",
|
|
|
|
"value": "4d55b07a3c375d8e63afbf93bce0f6a1f25327b8336659cfa0afa07be13296c1"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2501-0f04-4630-97cf-41f4e387cbd9",
|
|
|
|
"value": "4eece164c7d6273a0fd7f91df8ea2fc557da8e1225aac1890c1e490cd1fd4750"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2501-afd0-426a-bdf8-4064e387cbd9",
|
|
|
|
"value": "505313dded044c950cf4c0e27ff188391867ec7dd20d28e1dece3732f9ee92be"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682307",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2503-6dc8-42c6-8f88-4ad4e387cbd9",
|
|
|
|
"value": "60201e4cbce3b0a62e1a305716f17898d4ab6eb0e346adeb99aec56e632c9715"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682308",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2504-b140-4a1b-8ff1-4352e387cbd9",
|
|
|
|
"value": "607ee35288b437cdf89cb147281ab959e4b42051a299401293b0b54baff52710"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682310",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2506-3c30-4ed2-be34-4bf8e387cbd9",
|
|
|
|
"value": "63c396781b3e1a09f57da685dbb2fe1852e04c92b42d2dec08827861ce85f6ae"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682312",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2508-bbd4-4654-a8ea-4630e387cbd9",
|
|
|
|
"value": "64c7eaf9ceb0d6fe5918d25953bfb86a3c7c2ba2fd4ae555495ec7cd9244d376"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682314",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf250a-f204-4c88-8ea2-4abce387cbd9",
|
|
|
|
"value": "69ba6673c4223bb1b6cbe342ba8988ce1b6574d21dce31a81288a8e83b9d71de"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682316",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf250c-6f6c-4c1a-a98a-43cce387cbd9",
|
|
|
|
"value": "6a33c85cfc4d63e0f2ab9c7e9b11ef901fd9214ceed47a26b054d7ac668e5927"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682317",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf250e-b454-4402-8603-44e2e387cbd9",
|
|
|
|
"value": "6c0ee9ad6608774ccc6f2d1b4fc10d25db600a1ab147c38b862f985325d00d69"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682320",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2510-7718-4871-b9eb-4048e387cbd9",
|
|
|
|
"value": "6dd413cda5f640218e53068fcdeaa8095d43cfa08d7ae31bc1294b578eda3650"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682321",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2511-6840-4bb6-b457-4674e387cbd9",
|
|
|
|
"value": "7294b0fcd60f333401410205724a6a7d4b1a1c166624a3a897eb74dd9e878f3d"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682323",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2513-fa7c-4469-89d3-45d3e387cbd9",
|
|
|
|
"value": "74af1f6462c201ea1dcc02c8be66fdadb6c6f7c739c1a9788fa721bd37dc9d44"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682325",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2515-0d10-4f7a-8ea6-49dfe387cbd9",
|
|
|
|
"value": "764e871c333d53cdf00e42bb5e415e09fa268566f405e1e3b95c70293faeae4f"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682327",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2517-8d58-4199-93ee-4fd3e387cbd9",
|
|
|
|
"value": "7ae4e7e1241276b32acae1609fe081e95ee5104424502ff17619f36a2e489639"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682330",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf251a-9d40-4746-8ef4-40ace387cbd9",
|
|
|
|
"value": "7c77d76d04818ed18f27abfe40845e6d47d7cd2b5a6ca7405fa75d0bd4a84e6a"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682331",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf251b-50c4-43b1-a9bd-4d7fe387cbd9",
|
|
|
|
"value": "7e7ba697ecdd7cb1d19c70b30c96575d256032854bd6bb8e4f5fb4d18f5a0152"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682333",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf251d-36e4-4966-91ce-4a6ce387cbd9",
|
|
|
|
"value": "7fba5767a9bc61981cf53383b2518a9c528ade03085865212d868da802e2ec41"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf251f-21c8-479f-a382-49f4e387cbd9",
|
|
|
|
"value": "8624ed0e25319e3e6092df564b61fdd20620980b2eb424e7b77dd41fc3422f78"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf251f-4f94-4e9b-a567-447ce387cbd9",
|
|
|
|
"value": "8b98d4c61184c2f90585f84db9b94fa372e850c604dd51fd7d307b1a735c185d"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf251f-e698-4972-8261-43c3e387cbd9",
|
|
|
|
"value": "8bf46bbd626c107433372b39aba3719f1744244eb37b1aa7c72956bf9346ac15"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf251f-1bb0-494d-8309-44c9e387cbd9",
|
|
|
|
"value": "921026611780fe1d168a559852a3b17b408c65d9dc7ffb4650537577d71fa67b"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf251f-5980-4eb6-a63b-421be387cbd9",
|
|
|
|
"value": "9bd112a6b7bc00b0e83b81965e1a71f60f977d337aa37811d023d4adad541f81"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf251f-adb8-42b9-b836-4149e387cbd9",
|
|
|
|
"value": "b5de9e7c9eac0d1253ee4a0e38081a22f6d0070025507378affea6f571cc1b15"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2520-543c-48da-bff4-4928e387cbd9",
|
|
|
|
"value": "b8f4ab06d86cecdf78bde1ff0c415825ce2008b80f511bc715c96799e27ede54"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2520-3df0-4a61-8147-4ac6e387cbd9",
|
|
|
|
"value": "bbe972bd9a361d24d30b123b1fda8ece3fb4bc1cbc4a872c560c6a76c7fb6b33"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2520-13f8-458a-864e-4305e387cbd9",
|
|
|
|
"value": "bdd2bce8bf6d86503a022ca77d7d10051e7d7e67fcfd39bdf7c64cd3e4b96f01"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2520-3504-4caa-a806-4d02e387cbd9",
|
|
|
|
"value": "c18ed4f3ebbe80de53d9742ef9bca94c5cccb384db1e022d39d627da12501e81"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2520-f210-42cd-ad56-4a1ee387cbd9",
|
|
|
|
"value": "c3c5b54d4393654bbc34a98babd549ddc1a2fa7509217f53d84f2f81e8a85dea"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682338",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2522-976c-4c9a-91ff-42b8e387cbd9",
|
|
|
|
"value": "c69e1a03f2d71653e33408cfbd16fbb2f7eec647b89e4dcfad6a52f647aa7ac2"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2524-7be0-4c91-87c9-4b4ee387cbd9",
|
|
|
|
"value": "c70f06458faf1796a28c42f62647cac5948af982178cf1d5e61b70f3506a71c1"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2524-10f4-4d90-8ab0-4b24e387cbd9",
|
|
|
|
"value": "c735d45bbe1fa079409ae26d005a346f4698efb7e9f4db7bc2d0b247b57546f6"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2524-0620-4507-a5fd-4211e387cbd9",
|
|
|
|
"value": "c896c5e5a5d0abd059e43dbc305f50be63ff74b88547d8f7ce75608d4c8dc2d4"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2524-17d0-4308-88a5-4e5ee387cbd9",
|
|
|
|
"value": "c957de05aec8c4f295bec80711f2e934b837117094abcdd46098486c6f2934a9"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2524-837c-460b-9f45-452ae387cbd9",
|
|
|
|
"value": "cdc0ab79215e6c36de186ddfbed8e9b35c4c63161349c0935a90c69f553b318f"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2524-6cf0-44dd-b59b-401ee387cbd9",
|
|
|
|
"value": "d6e74f61b642eb614bcb745454fa23294f747603d64ec78d785acff8f8d16c28"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2524-1c30-4df2-88ba-49a4e387cbd9",
|
|
|
|
"value": "d997c1521407c74bcd9a33960d3fcb75470b11261ca8fe809ab28e60a2f9fa55"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2524-b590-472c-9058-4047e387cbd9",
|
|
|
|
"value": "defb31a9d386b63779fe2006c261fc7913d2229f953fdf6caecaab9d53dd8fa4"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2524-9798-459e-a66e-43b6e387cbd9",
|
|
|
|
"value": "e0c1189c63833e6dde70198558dc92b95ca0c8050e117dce432d2e9a838b7513"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2524-4c50-442c-8225-4575e387cbd9",
|
|
|
|
"value": "e1613169e4cca79ce0b36dec67f986e346ff4f40728f8f1750656871131785eb"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2525-1acc-4b2d-aab4-41ace387cbd9",
|
|
|
|
"value": "e38a95d1eb1b6f4c339954e2585549d336ea27b9fe76115abba8a1bfcfde8d79"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2525-cc20-4e5a-9ceb-4afae387cbd9",
|
|
|
|
"value": "e3a208481ae96872fcf001068171340b53536b9dd00c42e160a3b10ea499ff73"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2525-7a10-45ca-8610-4ddae387cbd9",
|
|
|
|
"value": "e4474de8aba502effb317894bdb9fa3337ab337584884ca67689718d74428049"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2525-7f00-41c2-bac3-41a9e387cbd9",
|
|
|
|
"value": "eb34a5211e692ba3b703f23d943f1f4a71f82faa886fb44409b1d93340d68b3b"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2525-7170-4185-b0bd-47eae387cbd9",
|
|
|
|
"value": "eb999aa4f1e79ed883460285525c7116bb1d771462da92af870b61b9f5afc2d5"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2527-ce78-4f96-b49a-4be7e387cbd9",
|
|
|
|
"value": "eca656418b0b1319fcd56156abf8970e903e042fb5ef56586c38394435989191"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2527-9374-402e-a14f-43fae387cbd9",
|
|
|
|
"value": "eccadcce17e5b016fbafa5858cb182e4b861d783590c5215ce0f0c8e9bfb4c4e"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682345",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "domain",
|
|
|
|
"uuid": "5edf2529-0bcc-4be8-9d7f-4b3ce387cbd9",
|
|
|
|
"value": "adrelatemedia.com"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682345",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf2529-a678-4f43-b64e-44bde387cbd9",
|
|
|
|
"value": "ef9af8969dccabad32eea973e55ff9d7c8b55e68bc492f38b7289417dd04d991"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252a-f968-4efe-8840-4e89e387cbd9",
|
|
|
|
"value": "https://www.adrelatemedia.com/haidress/gmail.php"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf252a-d8ac-4aa1-8610-41aee387cbd9",
|
|
|
|
"value": "f1669e315fa97d94329f6ff142dc844db1cd5cf98f0c3c908f11a28127a1e3a2"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252a-cabc-4859-9266-47dfe387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/835w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf252a-e820-4567-b27c-4c08e387cbd9",
|
|
|
|
"value": "f3b298b3272983fd118f42817ead6259fb46a31b22ac8f68eed54c2f28288fbb"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252a-0c70-4821-8224-4dc0e387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/925w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf252a-c86c-4d90-b7f3-4651e387cbd9",
|
|
|
|
"value": "f50c3e60db8adf31187448082ff4a783feb495b9545280ed23a65f89184f9236"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252a-a2e8-46c7-a0d8-4e43e387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/61w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf252a-4b5c-438f-9eb1-4563e387cbd9",
|
|
|
|
"value": "f67352ac345d03d511cb634d72798d06df3b74e4a8d34aa2c91692ad27adcfbf"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252c-e1a4-4094-86bd-4fcde387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/669w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf252c-a44c-4e8e-9baf-4c86e387cbd9",
|
|
|
|
"value": "f92c361f4849bdb8296fe20c394b3875e648f7c3d18e581bb5907c70451913c8"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252c-1dc0-4276-9f1f-4695e387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/919w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf252c-4ce0-41a8-b6e5-4bdde387cbd9",
|
|
|
|
"value": "fa37860944ee07b416cf634c758d32660af30baca16148cb0c66ccbf8bcf6465"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252c-7acc-4203-a250-49d6e387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/938w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf252c-bb80-4bf2-a156-4247e387cbd9",
|
|
|
|
"value": "ff03f367647fdc3e93f2f7e73c70ed381b71605443f2b051b901d1eb80493854"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252c-c5c4-4dfb-b485-40bee387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/264w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5edf252f-b438-4e18-af8d-4d1ee387cbd9",
|
|
|
|
"value": "ff5516ee7e4f734c4ae70e8f6fbf3fad09bb0ba99e67916972fe308ba5c4acad"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252f-6f10-4099-8b31-4104e387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/899w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252f-9a60-4361-aa2a-4405e387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/846w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252f-02e4-4371-872b-49e2e387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/845w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252f-7104-4bc4-9340-4db2e387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/69w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf252f-dc28-4ccf-993d-46d8e387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/408w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682353",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf2531-61e0-43a5-a347-416be387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/403w55a4r.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682353",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf2531-5170-4cbb-81b5-4f6fe387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/31dsdfsdfsdf.exe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Network activity",
|
|
|
|
"comment": "C2 and download URL",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"timestamp": "1591682353",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "url",
|
|
|
|
"uuid": "5edf2531-422c-4791-8e2a-4548e387cbd9",
|
|
|
|
"value": "http://adrelatemedia.com/haidress/393w55a4r.exe"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Object": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682390",
|
|
|
|
"uuid": "d89b10ca-d90c-47f7-ac81-b2829974d657",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "d89b10ca-d90c-47f7-ac81-b2829974d657",
|
|
|
|
"referenced_uuid": "900ce041-dfaa-4cef-8cb6-4dc15ba9e7e3",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682546",
|
|
|
|
"uuid": "5edf25f2-fb6c-4381-99a2-42cd02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682330",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "7f964155-3e8b-4e71-b6ad-1f64a68a30a6",
|
|
|
|
"value": "955fe08ef530ebae8f24b295e3bbdbd7"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682330",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "a979c885-7759-4465-8403-6a24b1cf4bb7",
|
|
|
|
"value": "64f5259582942cfccf0e68b5a0ca423d6ddcbf14"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682330",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "b9665475-51c0-45ad-9030-af2594c606af",
|
|
|
|
"value": "7c77d76d04818ed18f27abfe40845e6d47d7cd2b5a6ca7405fa75d0bd4a84e6a"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682390",
|
|
|
|
"uuid": "900ce041-dfaa-4cef-8cb6-4dc15ba9e7e3",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682330",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "71347c13-2981-41a1-bdce-ec5448dc5676",
|
|
|
|
"value": "2020-06-05T15:56:10+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682330",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "e0b001f8-4242-4ff0-8dcd-4216c1edaf72",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/7c77d76d04818ed18f27abfe40845e6d47d7cd2b5a6ca7405fa75d0bd4a84e6a/detection/f-7c77d76d04818ed18f27abfe40845e6d47d7cd2b5a6ca7405fa75d0bd4a84e6a-1591372570"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682330",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "15f781e2-0a0f-44dd-8951-e133f2bebd1e",
|
|
|
|
"value": "6/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682390",
|
|
|
|
"uuid": "30e8dc43-5696-472a-ae62-7ff9009a4530",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "30e8dc43-5696-472a-ae62-7ff9009a4530",
|
|
|
|
"referenced_uuid": "f78805f3-454e-4c28-8e9d-da08497493b0",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682546",
|
|
|
|
"uuid": "5edf25f2-d484-48fd-ada9-489f02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "5a03c845-e36d-4475-abbf-b1e2ad275e15",
|
|
|
|
"value": "a28bafa03fc00dd18dcb65751a4d1c98"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "65fe8ace-3672-4f36-ad09-883c3d98af89",
|
|
|
|
"value": "f6884d65af38f8588f40935305aebb1b2fe24b72"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "54b0637c-649b-4a2e-ba44-bc325f86f8c6",
|
|
|
|
"value": "e1613169e4cca79ce0b36dec67f986e346ff4f40728f8f1750656871131785eb"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682390",
|
|
|
|
"uuid": "f78805f3-454e-4c28-8e9d-da08497493b0",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "b8613bd6-bd0e-4828-b192-50d0c06d0293",
|
|
|
|
"value": "2020-06-05T00:14:44+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "87e4d9f7-b36b-4ca1-8adc-d093dcb04f44",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/e1613169e4cca79ce0b36dec67f986e346ff4f40728f8f1750656871131785eb/detection/f-e1613169e4cca79ce0b36dec67f986e346ff4f40728f8f1750656871131785eb-1591316084"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "c91dcf71-0f1e-4d1c-aa09-317e0bb09627",
|
|
|
|
"value": "4/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682394",
|
|
|
|
"uuid": "9b4eda44-e5cd-4d9a-9d51-b106876bcd8c",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "9b4eda44-e5cd-4d9a-9d51-b106876bcd8c",
|
|
|
|
"referenced_uuid": "ab715d98-7e1c-46fa-a7e2-1b703574523c",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682546",
|
|
|
|
"uuid": "5edf25f2-72f8-4f65-b08d-42f902de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "28e579f6-bf28-4b5f-9ef3-8990acba8042",
|
|
|
|
"value": "c97476157564f4c1436434ece7288dfa"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "0d824013-1503-47f9-8bf8-331fe2d6e145",
|
|
|
|
"value": "0e0f46956f0954870d233d9bd1483404548eafb9"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "79207cb2-6353-4cb4-b858-8c8397662128",
|
|
|
|
"value": "c18ed4f3ebbe80de53d9742ef9bca94c5cccb384db1e022d39d627da12501e81"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682395",
|
|
|
|
"uuid": "ab715d98-7e1c-46fa-a7e2-1b703574523c",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "d0cffab5-68d2-4ef1-9628-a2a70d8d76d6",
|
|
|
|
"value": "2020-06-08T01:38:32+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "c386be42-ce65-45ea-a9ab-c5fe0d2b1b5a",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/c18ed4f3ebbe80de53d9742ef9bca94c5cccb384db1e022d39d627da12501e81/detection/f-c18ed4f3ebbe80de53d9742ef9bca94c5cccb384db1e022d39d627da12501e81-1591580312"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "91c949ca-9dba-4656-8188-e487ef1ddb44",
|
|
|
|
"value": "3/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682395",
|
|
|
|
"uuid": "075611f6-615d-4e32-9a17-50f01363a0af",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "075611f6-615d-4e32-9a17-50f01363a0af",
|
|
|
|
"referenced_uuid": "dec9f73c-7bb0-4e21-99d4-8f34b60dff09",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682546",
|
|
|
|
"uuid": "5edf25f2-739c-4177-a2a2-494102de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682325",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "5ca65aa4-e146-46ba-a196-1be4c022ad3d",
|
|
|
|
"value": "4cab2361328eeb0736d4ebeb9b04f06b"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682325",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "d9807e5c-8113-4a70-a215-fbb400dab164",
|
|
|
|
"value": "172c42f1192c5b7dff41b71f88115ef815c954c3"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682325",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "acc36625-f381-4087-acb6-3bb7de40c201",
|
|
|
|
"value": "764e871c333d53cdf00e42bb5e415e09fa268566f405e1e3b95c70293faeae4f"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682395",
|
|
|
|
"uuid": "dec9f73c-7bb0-4e21-99d4-8f34b60dff09",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682325",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "c7e5888a-1e02-4765-ae7b-fe98a5f7d1de",
|
|
|
|
"value": "2020-06-04T04:39:54+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682325",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "07e2cc4f-4c93-4082-b26c-8df37d6c58a2",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/764e871c333d53cdf00e42bb5e415e09fa268566f405e1e3b95c70293faeae4f/detection/f-764e871c333d53cdf00e42bb5e415e09fa268566f405e1e3b95c70293faeae4f-1591245594"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682325",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "5c92a9a4-0472-4759-b092-1ab79543a17e",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682395",
|
|
|
|
"uuid": "3be4313f-e1f6-48af-ace1-97ee4f1e9050",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "3be4313f-e1f6-48af-ace1-97ee4f1e9050",
|
|
|
|
"referenced_uuid": "23e65c58-88c8-462d-b3c8-d73c950c5a14",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682546",
|
|
|
|
"uuid": "5edf25f2-ae10-423a-a4ad-458602de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "33f980bb-e19b-43bf-942c-e170e3ff8a2e",
|
|
|
|
"value": "6f50364718da775b241f703632aaa90d"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "318a27e6-aaa3-460a-84c5-48985de74eaa",
|
|
|
|
"value": "acd58257053b73831d73c12dabf33ef4969e7c8f"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "9612a2d3-fabc-499c-a767-c50c5aac5ea3",
|
|
|
|
"value": "eb34a5211e692ba3b703f23d943f1f4a71f82faa886fb44409b1d93340d68b3b"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682395",
|
|
|
|
"uuid": "23e65c58-88c8-462d-b3c8-d73c950c5a14",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "6f50c741-8bcf-4610-9442-aa4e18bba3bf",
|
|
|
|
"value": "2020-06-03T00:45:08+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "1dcec2d1-3367-4833-ab43-f7176a64c1d0",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/eb34a5211e692ba3b703f23d943f1f4a71f82faa886fb44409b1d93340d68b3b/detection/f-eb34a5211e692ba3b703f23d943f1f4a71f82faa886fb44409b1d93340d68b3b-1591145108"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "a84c7ea9-1ac0-4ec4-bbd3-ec60bc806f44",
|
|
|
|
"value": "2/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682400",
|
|
|
|
"uuid": "8034d958-60fa-41ba-acbf-5c360cdb4bf3",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "8034d958-60fa-41ba-acbf-5c360cdb4bf3",
|
|
|
|
"referenced_uuid": "f95cfe04-18ba-4750-83f4-8f02a27ea64c",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682546",
|
|
|
|
"uuid": "5edf25f2-7cf4-4fcb-b19a-469f02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "1605f6aa-408b-4864-ad52-ca701a59d6e5",
|
|
|
|
"value": "e691d34c2e55e0762cfb2fc4f140aa6c"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "c092f1f8-17ba-43e3-a88f-9b821538ac63",
|
|
|
|
"value": "d7daffc585151f8304c2f69924ae36800ae0dc04"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "7b9f802e-4924-4e6b-9590-a87ef5560320",
|
|
|
|
"value": "d6e74f61b642eb614bcb745454fa23294f747603d64ec78d785acff8f8d16c28"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682400",
|
|
|
|
"uuid": "f95cfe04-18ba-4750-83f4-8f02a27ea64c",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "b9ad04ac-2511-4ce2-8999-76b659259813",
|
|
|
|
"value": "2020-06-08T07:07:46+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "2c5bd767-a340-43a5-b7f1-e6d0ab011451",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/d6e74f61b642eb614bcb745454fa23294f747603d64ec78d785acff8f8d16c28/detection/f-d6e74f61b642eb614bcb745454fa23294f747603d64ec78d785acff8f8d16c28-1591600066"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "1d4af9d6-305e-4885-8a6e-fd3f42355ca7",
|
|
|
|
"value": "12/58"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682400",
|
|
|
|
"uuid": "0df9ef00-7657-4a0a-b741-7038330aad91",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "0df9ef00-7657-4a0a-b741-7038330aad91",
|
|
|
|
"referenced_uuid": "6ee5680e-3f35-4d36-aaa8-ffba22e4eef6",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682546",
|
|
|
|
"uuid": "5edf25f2-8b44-4dc7-b80f-46ad02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "4a123934-8e50-47bc-a401-35440ea6d634",
|
|
|
|
"value": "c1cf39026702e60374f33519b8bde06b"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "909e61f1-b879-4368-9f6f-198c1342eac7",
|
|
|
|
"value": "53db20be969e690c156d18a401bfff10bda14e5c"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "e0daab1a-1f47-4967-8df3-a1bb9917b34c",
|
|
|
|
"value": "1b27af50c09daedcf39982a0673d8ad08261fd20c9a7d840814699a24d92a5cf"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682400",
|
|
|
|
"uuid": "6ee5680e-3f35-4d36-aaa8-ffba22e4eef6",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "d3b1cc7c-91b4-44c4-bd15-7b6d822215a5",
|
|
|
|
"value": "2020-06-06T13:43:20+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "cb66a717-15e2-4fbe-83c4-e5fb6ce5bb92",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/1b27af50c09daedcf39982a0673d8ad08261fd20c9a7d840814699a24d92a5cf/detection/f-1b27af50c09daedcf39982a0673d8ad08261fd20c9a7d840814699a24d92a5cf-1591451000"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "3e91f92d-0549-4ec9-839f-468f5297a6b4",
|
|
|
|
"value": "12/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682403",
|
|
|
|
"uuid": "46144bb3-b1b4-43ce-9214-bc02d9e6b532",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "46144bb3-b1b4-43ce-9214-bc02d9e6b532",
|
|
|
|
"referenced_uuid": "c33a9c32-1993-482c-917d-f8c8b8dfce94",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-92f0-493f-a18d-4a4a02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682312",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "69a24f27-1ab6-4ae9-9bbc-5d75889e188d",
|
|
|
|
"value": "89242b8bd403fa0a4d59ae73ec7ea74c"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682312",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "b54feb2b-b13c-4bec-870b-32bf914cf289",
|
|
|
|
"value": "ef4ea4336f3d5495877c776ed3e05cfdd8a20963"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682312",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "c7f65b1f-ba1b-457f-ad93-efc9d4585a7c",
|
|
|
|
"value": "64c7eaf9ceb0d6fe5918d25953bfb86a3c7c2ba2fd4ae555495ec7cd9244d376"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682403",
|
|
|
|
"uuid": "c33a9c32-1993-482c-917d-f8c8b8dfce94",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682312",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "a65e9076-9320-432a-957d-38f483dde25b",
|
|
|
|
"value": "2020-06-05T01:04:51+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682312",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "d288170a-0347-4310-80a8-b414fc9a65e1",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/64c7eaf9ceb0d6fe5918d25953bfb86a3c7c2ba2fd4ae555495ec7cd9244d376/detection/f-64c7eaf9ceb0d6fe5918d25953bfb86a3c7c2ba2fd4ae555495ec7cd9244d376-1591319091"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682312",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "d2cbf4a6-c551-40a6-8380-4fc7cd2c13ee",
|
|
|
|
"value": "4/59"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682403",
|
|
|
|
"uuid": "72221436-c0a8-465e-b386-02ca0145c8a5",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "72221436-c0a8-465e-b386-02ca0145c8a5",
|
|
|
|
"referenced_uuid": "df0b6060-9424-44df-b24d-50010c1ddf9e",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-7fa8-447e-9da4-4beb02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "619fccd6-d31d-4a81-a2bd-946de04b4597",
|
|
|
|
"value": "58134e8628e61da721d09756435241b7"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "c93b4baa-f978-4924-97c3-0c781e419a16",
|
|
|
|
"value": "c040ad667bfac59b90c012087845176cab9e9b56"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "a6cda127-0bb1-42cd-9033-dccc2690c03a",
|
|
|
|
"value": "1c49a77f9b817c8b7670cb06d96c3ecee6f1c34e910533b1020bb4948bf1701d"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682403",
|
|
|
|
"uuid": "df0b6060-9424-44df-b24d-50010c1ddf9e",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "eeecc53c-5b49-49fa-9515-fb39cb2b8a39",
|
|
|
|
"value": "2020-06-05T02:49:51+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "5d23bec0-9123-4541-84aa-649dc647ed0d",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/1c49a77f9b817c8b7670cb06d96c3ecee6f1c34e910533b1020bb4948bf1701d/detection/f-1c49a77f9b817c8b7670cb06d96c3ecee6f1c34e910533b1020bb4948bf1701d-1591325391"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "62eaf609-1e5a-449d-9678-21d9af50eb3d",
|
|
|
|
"value": "2/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682405",
|
|
|
|
"uuid": "44a0a2d0-b960-45e1-a717-f0c41f1a9c0b",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "44a0a2d0-b960-45e1-a717-f0c41f1a9c0b",
|
|
|
|
"referenced_uuid": "836e0af6-4dbb-44a9-98df-8bc54dbde31e",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-ce08-4713-b8dc-47e202de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682307",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "2bc68ea9-683b-4a5e-9669-cdbf579eadac",
|
|
|
|
"value": "f1e29aa7707932397d39ebe8d0eeb00c"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682307",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "f6f1ddcd-e911-4b74-876f-96017fd8c532",
|
|
|
|
"value": "72d33982226925a638248b29ffa1d9ae7a95e5e6"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682307",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "dcf581eb-cbbc-49b9-8b08-63b825f6b5de",
|
|
|
|
"value": "60201e4cbce3b0a62e1a305716f17898d4ab6eb0e346adeb99aec56e632c9715"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682407",
|
|
|
|
"uuid": "836e0af6-4dbb-44a9-98df-8bc54dbde31e",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682307",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "4fb6b00e-3fed-4937-9440-a85c8c2e5a36",
|
|
|
|
"value": "2020-06-04T23:09:58+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682307",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "a9b6f761-dd52-4cd2-b590-e60649d1dd6a",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/60201e4cbce3b0a62e1a305716f17898d4ab6eb0e346adeb99aec56e632c9715/detection/f-60201e4cbce3b0a62e1a305716f17898d4ab6eb0e346adeb99aec56e632c9715-1591312198"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682307",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "a6aa5838-e297-4b02-b1d7-6ca23b22d387",
|
|
|
|
"value": "2/59"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682409",
|
|
|
|
"uuid": "07cf1eb8-076e-442b-a9c4-3e0d311531b5",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "07cf1eb8-076e-442b-a9c4-3e0d311531b5",
|
|
|
|
"referenced_uuid": "f5df88c1-fcfb-4b95-afe6-0f4c99138cfe",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-ac4c-499a-b64b-48eb02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "7a67c07a-893c-4e9a-bb51-c48776273a92",
|
|
|
|
"value": "8f109218fd54029d01e6e5ecf8f8715c"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "c37a9f13-7215-4dc7-9018-d73a7be3ec9a",
|
|
|
|
"value": "6482a782bb307540e1187681d6cbe268d618e6d2"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "cd5660b7-b80f-4fbd-9af1-ba5d39267ab6",
|
|
|
|
"value": "d997c1521407c74bcd9a33960d3fcb75470b11261ca8fe809ab28e60a2f9fa55"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682410",
|
|
|
|
"uuid": "f5df88c1-fcfb-4b95-afe6-0f4c99138cfe",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "bebcf8de-4b66-4bb5-90ea-cb71701e8333",
|
|
|
|
"value": "2020-06-08T07:09:25+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "71dbb39b-103e-428f-8b00-e8c5e65d9ada",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/d997c1521407c74bcd9a33960d3fcb75470b11261ca8fe809ab28e60a2f9fa55/detection/f-d997c1521407c74bcd9a33960d3fcb75470b11261ca8fe809ab28e60a2f9fa55-1591600165"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "82d6e6f5-2ab3-441b-b1e6-d649f34e25b3",
|
|
|
|
"value": "14/59"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682412",
|
|
|
|
"uuid": "4679265b-1231-4b99-bd2f-d20d0960d347",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "4679265b-1231-4b99-bd2f-d20d0960d347",
|
|
|
|
"referenced_uuid": "b0da3f28-76fe-400c-b083-82454e177213",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-1c44-4019-96aa-45b002de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "081fdd9f-71cc-4568-a116-9aca66a08b43",
|
|
|
|
"value": "ddf4db06af9a7a574cf80518972b5f8d"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "d4ad797d-8b08-4c88-8381-e33633e75e73",
|
|
|
|
"value": "0777951a56eec8a738b6c55bb8c96db0db1c3ac8"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "e4a354dd-0bcd-4a9f-85a9-0d2c4ea68d21",
|
|
|
|
"value": "1c8a36d488b50edb22ade0168e8eb4dc4615a44a08431541fd8b1a7114eb9b23"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682415",
|
|
|
|
"uuid": "b0da3f28-76fe-400c-b083-82454e177213",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "52eff36d-ed8c-49d6-8d3c-796363005bc3",
|
|
|
|
"value": "2020-06-04T18:49:12+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "ac1716d8-4f17-4b56-865d-89971f20a4a4",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/1c8a36d488b50edb22ade0168e8eb4dc4615a44a08431541fd8b1a7114eb9b23/detection/f-1c8a36d488b50edb22ade0168e8eb4dc4615a44a08431541fd8b1a7114eb9b23-1591296552"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "c9b6eac5-fec6-4f9f-9128-2f1fc0e1ca9f",
|
|
|
|
"value": "6/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682415",
|
|
|
|
"uuid": "c6ec90b6-1e3a-4821-9adc-77b2e9eaacd3",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "c6ec90b6-1e3a-4821-9adc-77b2e9eaacd3",
|
|
|
|
"referenced_uuid": "d49fc5d1-2074-4238-a4b4-7372e389593d",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-8c44-4f31-abc6-4ce602de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "92c85831-3d8c-4216-bdbf-e02be47bd0b2",
|
|
|
|
"value": "b305fd4e9bc5e56fe4c6085b977a208b"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "bd684de0-f208-4e5b-ac1f-9b7bd56b2e5d",
|
|
|
|
"value": "1d687c7452e2d1a477e3c17492807793748ebd24"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "22bd851a-1ea6-41a6-9f4b-dc3ae1f3afc0",
|
|
|
|
"value": "505313dded044c950cf4c0e27ff188391867ec7dd20d28e1dece3732f9ee92be"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682418",
|
|
|
|
"uuid": "d49fc5d1-2074-4238-a4b4-7372e389593d",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "ab211881-104a-4e02-89f4-d7f0f31e2ed3",
|
|
|
|
"value": "2020-06-04T02:36:24+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "c816c86e-c199-487d-92a1-8a20f8a7ceb8",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/505313dded044c950cf4c0e27ff188391867ec7dd20d28e1dece3732f9ee92be/detection/f-505313dded044c950cf4c0e27ff188391867ec7dd20d28e1dece3732f9ee92be-1591238184"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "67550d30-380a-4d73-8a5b-ad4428eb8700",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682418",
|
|
|
|
"uuid": "6093b577-0406-4b50-aeed-67f869b5102c",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "6093b577-0406-4b50-aeed-67f869b5102c",
|
|
|
|
"referenced_uuid": "9ad70519-e27b-40ae-9ca7-5ea5a63fe322",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-dd20-4011-bcab-450402de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "03a66853-2f52-48ad-b285-17bde6f7cb08",
|
|
|
|
"value": "b900bb4774fc4240d89c80ccb2eb8293"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "97c2ecd5-10bf-4e4c-9a38-e063cc7013d4",
|
|
|
|
"value": "cb7e3147c2dda9d72a669fe4e3e0a7f04b210707"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "54593271-5595-427e-b860-90d280a7f525",
|
|
|
|
"value": "8b98d4c61184c2f90585f84db9b94fa372e850c604dd51fd7d307b1a735c185d"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682418",
|
|
|
|
"uuid": "9ad70519-e27b-40ae-9ca7-5ea5a63fe322",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "3dcf2008-ad1c-4522-b87e-e8ebd4c90398",
|
|
|
|
"value": "2020-06-04T07:42:58+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "fcec2967-56fb-480b-b633-7aec1f3c9af0",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/8b98d4c61184c2f90585f84db9b94fa372e850c604dd51fd7d307b1a735c185d/detection/f-8b98d4c61184c2f90585f84db9b94fa372e850c604dd51fd7d307b1a735c185d-1591256578"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "9bf7bbd5-3b10-42ee-b1e4-8ad460e9be55",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682418",
|
|
|
|
"uuid": "27fcfb5c-8569-4e24-b931-e8441ea89687",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "27fcfb5c-8569-4e24-b931-e8441ea89687",
|
|
|
|
"referenced_uuid": "a28538ac-63fa-4abe-8bf8-8c623a5ecddd",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-9198-499c-be0c-45ac02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682314",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "bcef339b-8833-4a78-9969-36e00dde9a3e",
|
|
|
|
"value": "8dc2b5da765c4af6f33aae9d83f16a8c"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682314",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "ec9b6368-10e2-4865-be4f-cccd6423e7bd",
|
|
|
|
"value": "8d7f766a0a398b4b650e8713806126d158bca92d"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682314",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "ebe01f3b-997e-400e-a926-3c526459688f",
|
|
|
|
"value": "69ba6673c4223bb1b6cbe342ba8988ce1b6574d21dce31a81288a8e83b9d71de"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682418",
|
|
|
|
"uuid": "a28538ac-63fa-4abe-8bf8-8c623a5ecddd",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682314",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "e8013cb7-4fdd-499b-a7a4-a21f1c83e5bd",
|
|
|
|
"value": "2020-06-05T08:55:24+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682314",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "72a1cbc0-e893-4a9d-91e9-7bd56519a667",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/69ba6673c4223bb1b6cbe342ba8988ce1b6574d21dce31a81288a8e83b9d71de/detection/f-69ba6673c4223bb1b6cbe342ba8988ce1b6574d21dce31a81288a8e83b9d71de-1591347324"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682314",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "7f80b18b-cc8d-4e31-b193-0c2774a211c4",
|
|
|
|
"value": "6/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682423",
|
|
|
|
"uuid": "4a3ef6aa-b702-4321-9afa-6db30fb41ea4",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "4a3ef6aa-b702-4321-9afa-6db30fb41ea4",
|
|
|
|
"referenced_uuid": "de5fda18-6b74-4d3d-9271-8f706d6fa41a",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-14d8-47b9-93e0-4d7802de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "1a7b78de-8f8f-4546-aace-365c48968385",
|
|
|
|
"value": "7b5f29334c2b3f2ee7e6105d40fa6373"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "88d9b8e4-55bf-442d-921d-bd66c269f60c",
|
|
|
|
"value": "582daf0f5db81617e043962b4cac9b0011f2e91c"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "4b9c7e19-2c81-420b-b792-494bfbb6dfbe",
|
|
|
|
"value": "eca656418b0b1319fcd56156abf8970e903e042fb5ef56586c38394435989191"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682423",
|
|
|
|
"uuid": "de5fda18-6b74-4d3d-9271-8f706d6fa41a",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "8b893b00-8157-4ecf-ac2b-4daa655cf6da",
|
|
|
|
"value": "2020-06-08T05:59:50+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "616fad15-7974-4213-bca1-ad921c4e585d",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/eca656418b0b1319fcd56156abf8970e903e042fb5ef56586c38394435989191/detection/f-eca656418b0b1319fcd56156abf8970e903e042fb5ef56586c38394435989191-1591595990"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "4218fd36-e580-4f9e-ab96-ab655553a66f",
|
|
|
|
"value": "3/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682423",
|
|
|
|
"uuid": "0dc86ee5-1e8b-4955-b6d4-cf2faf678ccc",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "0dc86ee5-1e8b-4955-b6d4-cf2faf678ccc",
|
|
|
|
"referenced_uuid": "23d55af4-2648-4249-b84c-f6fab5dfe5b9",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-f060-4fc7-ac61-4b4502de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "8aa4ca73-853e-43e1-9e1e-0ec3e3b33d5a",
|
|
|
|
"value": "4a37085f174319f919003818243e39f2"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "34d2632a-d618-48ff-a022-25bc8669452c",
|
|
|
|
"value": "908d67e3a71eb59e83fb03258f15f4ae99fb9b1f"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "07eaf21a-3573-49b1-b5b5-b82ac2d933fc",
|
|
|
|
"value": "328c729797fe2acbf06246dfca52c2f75c0713849fa588dd5c414e0e18244c54"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682428",
|
|
|
|
"uuid": "23d55af4-2648-4249-b84c-f6fab5dfe5b9",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "b4f4df53-e18c-4a58-97e5-4182ecbfa459",
|
|
|
|
"value": "2020-06-08T05:21:03+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "00a7f4e7-7056-44e5-8bc9-823694407a3d",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/328c729797fe2acbf06246dfca52c2f75c0713849fa588dd5c414e0e18244c54/detection/f-328c729797fe2acbf06246dfca52c2f75c0713849fa588dd5c414e0e18244c54-1591593663"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "1bf62fd9-fa50-4826-be84-6a683be022f1",
|
|
|
|
"value": "6/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682428",
|
|
|
|
"uuid": "f09cdda4-d278-44db-acad-b2857a94251f",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "f09cdda4-d278-44db-acad-b2857a94251f",
|
|
|
|
"referenced_uuid": "3ec4966c-7b38-4222-a56d-898f7ebfb9dc",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-4fb0-4353-8a79-46bd02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "795cb4c3-8310-4a59-8d0b-a8940b4b1771",
|
|
|
|
"value": "fdeec23ae4d451ab38794387924d8b6c"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "99a5228a-49b3-484f-afef-52e1379d38f8",
|
|
|
|
"value": "0ba2beb425b1460969474dfab6604890122ca0db"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "cb99845a-7c75-4dd8-966d-6d02649a8709",
|
|
|
|
"value": "20c6f5cfe318e013502aee7e52dca337264a2aab8da32b32347399b98e8922ff"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682428",
|
|
|
|
"uuid": "3ec4966c-7b38-4222-a56d-898f7ebfb9dc",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "22ddbe9c-b073-43db-811a-2508c79e77b5",
|
|
|
|
"value": "2020-06-04T01:22:03+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "46f5d77f-c7a9-4040-8172-aaaf3ef6897e",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/20c6f5cfe318e013502aee7e52dca337264a2aab8da32b32347399b98e8922ff/detection/f-20c6f5cfe318e013502aee7e52dca337264a2aab8da32b32347399b98e8922ff-1591233723"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "acb2e5e4-6622-4cb4-acae-a4fa9b3976b2",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682428",
|
|
|
|
"uuid": "83d32ab3-447e-41ab-ba41-ee7f2b80606c",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "83d32ab3-447e-41ab-ba41-ee7f2b80606c",
|
|
|
|
"referenced_uuid": "21417981-9841-4bea-b6cd-93199fca2d5e",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-87a8-4eef-aa8c-465902de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682316",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "7a9b3142-c707-445d-9da7-586c4a2a06d7",
|
|
|
|
"value": "6aae8e87c115d559bf1bd5dd5d29244b"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682316",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "698ebde4-3764-48ce-8761-52f15c1465f6",
|
|
|
|
"value": "63133a03747721ca00af575d74d4b343c8f40973"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682316",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "0b48f924-81d9-4f4d-9429-6d882b6d983a",
|
|
|
|
"value": "6a33c85cfc4d63e0f2ab9c7e9b11ef901fd9214ceed47a26b054d7ac668e5927"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682429",
|
|
|
|
"uuid": "21417981-9841-4bea-b6cd-93199fca2d5e",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682316",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "b57e7e9c-68b6-40aa-bb29-80ad0da84fb0",
|
|
|
|
"value": "2020-06-05T01:34:46+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682316",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "47a418dd-12e5-4142-9370-ff795b450005",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/6a33c85cfc4d63e0f2ab9c7e9b11ef901fd9214ceed47a26b054d7ac668e5927/detection/f-6a33c85cfc4d63e0f2ab9c7e9b11ef901fd9214ceed47a26b054d7ac668e5927-1591320886"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682316",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "69d1dfe0-59f3-4612-befa-ba6bafd9b3fc",
|
|
|
|
"value": "4/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682431",
|
|
|
|
"uuid": "2e1ac848-36eb-4f1c-93ae-24e585b54433",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "2e1ac848-36eb-4f1c-93ae-24e585b54433",
|
|
|
|
"referenced_uuid": "16420e7f-7d0d-4ae9-a5bf-b801d1912119",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-5fd0-46d5-ab15-4b6702de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682323",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "24b2e953-b9a2-4309-89ae-5c3becef451e",
|
|
|
|
"value": "e4eb46539623c5be3ea481e27cb0f063"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682323",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "c506210e-88a5-4d38-8aff-ebc19d3d578d",
|
|
|
|
"value": "596d01d7636891672dfea73975bc800be1d147c3"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682323",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "11ad7d24-bbba-4346-838c-412a5b5bdb05",
|
|
|
|
"value": "74af1f6462c201ea1dcc02c8be66fdadb6c6f7c739c1a9788fa721bd37dc9d44"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682433",
|
|
|
|
"uuid": "16420e7f-7d0d-4ae9-a5bf-b801d1912119",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682323",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "e9dd2ffc-3022-4f21-b8f4-e1454467cd27",
|
|
|
|
"value": "2020-06-04T01:22:42+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682323",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "38a9ff20-73ad-47da-bd67-26c6ef71c3bb",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/74af1f6462c201ea1dcc02c8be66fdadb6c6f7c739c1a9788fa721bd37dc9d44/detection/f-74af1f6462c201ea1dcc02c8be66fdadb6c6f7c739c1a9788fa721bd37dc9d44-1591233762"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682323",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "3f465259-c608-4199-b294-07d92b5e47ea",
|
|
|
|
"value": "1/50"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682433",
|
|
|
|
"uuid": "886acb36-b778-4ff4-9c0d-c4eaf7f6bfeb",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "886acb36-b778-4ff4-9c0d-c4eaf7f6bfeb",
|
|
|
|
"referenced_uuid": "77d3db3a-79f6-4a98-8548-2ec6ab80da2f",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-fdbc-4e43-ba5d-4fe002de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "455d8485-cc91-407a-8273-3d438e0d4bb3",
|
|
|
|
"value": "107e68a6cbeb39f7ff49654e358f1558"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "e954d5ad-bc74-4ccd-8c77-5b4f55748051",
|
|
|
|
"value": "0e28a7a17bc7ea30c9e68e81b4331edc7fa400b5"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "51eeba89-72e7-4585-98e7-6e017a1b72ba",
|
|
|
|
"value": "4d55b07a3c375d8e63afbf93bce0f6a1f25327b8336659cfa0afa07be13296c1"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682436",
|
|
|
|
"uuid": "77d3db3a-79f6-4a98-8548-2ec6ab80da2f",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "1f1812ad-9a64-4405-aab6-0cac3016a283",
|
|
|
|
"value": "2020-06-04T01:27:24+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "a4e86e98-c6bf-4b1b-ad08-b912985278f4",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/4d55b07a3c375d8e63afbf93bce0f6a1f25327b8336659cfa0afa07be13296c1/detection/f-4d55b07a3c375d8e63afbf93bce0f6a1f25327b8336659cfa0afa07be13296c1-1591234044"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "2f5fc4ae-45c7-4777-9dbe-6457edc53d84",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682438",
|
|
|
|
"uuid": "cb0a9fc7-efe3-4f55-b5af-18b67b78ee6e",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "cb0a9fc7-efe3-4f55-b5af-18b67b78ee6e",
|
|
|
|
"referenced_uuid": "c68def7e-0e0a-47f7-ad7f-340d0fe2be6d",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-5944-4b73-bfe0-4afe02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682345",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "f4a72fc8-3fc9-4621-bff7-7d519e48d97e",
|
|
|
|
"value": "d3a76d5d7873c5b78b21f46ce3d3cfc0"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682345",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "0454799a-fe55-46ec-a958-ab72878f887a",
|
|
|
|
"value": "154ddaf6f1102a8deab0445822d2ac041603dc93"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682345",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "d29e6544-6ccf-4de7-92f1-65dbe74427b9",
|
|
|
|
"value": "ef9af8969dccabad32eea973e55ff9d7c8b55e68bc492f38b7289417dd04d991"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682438",
|
|
|
|
"uuid": "c68def7e-0e0a-47f7-ad7f-340d0fe2be6d",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682345",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "48468701-1ab3-49ed-b9f7-1c1579374e18",
|
|
|
|
"value": "2020-06-04T04:26:36+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682345",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "d119457a-78cb-4b94-a423-c00d39e402ec",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/ef9af8969dccabad32eea973e55ff9d7c8b55e68bc492f38b7289417dd04d991/detection/f-ef9af8969dccabad32eea973e55ff9d7c8b55e68bc492f38b7289417dd04d991-1591244796"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682345",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "4f49a3d6-3e4f-47ad-9803-3771101fa6ae",
|
|
|
|
"value": "2/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682438",
|
|
|
|
"uuid": "88e5d29f-37c2-4ae3-b14e-b82c898781f8",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "88e5d29f-37c2-4ae3-b14e-b82c898781f8",
|
|
|
|
"referenced_uuid": "7b519bdf-c502-4ca6-83c5-d7028c629db8",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-c278-47e7-b356-4d7a02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "f14a4ce6-a900-41b3-9b63-7547a05c5eb3",
|
|
|
|
"value": "0ec2a7d6c07a9fd450730d405604a90c"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "10822dbd-570b-4eda-9954-407af3d7d5fc",
|
|
|
|
"value": "821d098cdcc1f42208aee72930a6a3eef30eb5b7"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "246c4cd8-03be-46d4-90fa-710d9521cae6",
|
|
|
|
"value": "3fb1e4091ffbea04a93d5ef7ed5ef4bd8f4eaea58fb1763507df2ef8ccb73ae3"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682441",
|
|
|
|
"uuid": "7b519bdf-c502-4ca6-83c5-d7028c629db8",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "d2991e5c-44b8-4df9-b4c4-6bb47f6b9914",
|
|
|
|
"value": "2020-06-08T07:07:20+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "e4b8e04d-c570-41e8-9ce6-6fe825879b7c",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/3fb1e4091ffbea04a93d5ef7ed5ef4bd8f4eaea58fb1763507df2ef8ccb73ae3/detection/f-3fb1e4091ffbea04a93d5ef7ed5ef4bd8f4eaea58fb1763507df2ef8ccb73ae3-1591600040"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "a0245e92-6e13-428b-aec3-0e0b40649a69",
|
|
|
|
"value": "15/59"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682443",
|
|
|
|
"uuid": "f08817e6-be28-493f-96f4-7edcedc447b0",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "f08817e6-be28-493f-96f4-7edcedc447b0",
|
|
|
|
"referenced_uuid": "901357a4-20c3-455b-b0a3-19a0f7411b34",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-0d10-4269-9506-4b2702de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "54c8cfcf-f8bf-4e27-8c46-0f54a27416d3",
|
|
|
|
"value": "68b0f87f11054de87866754cd005ce81"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "5d9b6e43-ee74-4043-b95d-337bc8da0c71",
|
|
|
|
"value": "c3bb68dc2b4dd373d674318fba88425c53b13423"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "e1412121-d67b-4124-9fbe-6c77e178d8e6",
|
|
|
|
"value": "eccadcce17e5b016fbafa5858cb182e4b861d783590c5215ce0f0c8e9bfb4c4e"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682443",
|
|
|
|
"uuid": "901357a4-20c3-455b-b0a3-19a0f7411b34",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "98ae4895-768c-490a-939a-3d8f638a595e",
|
|
|
|
"value": "2020-06-04T04:10:16+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "b61da289-909f-4ff6-b83a-473abf90ab7d",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/eccadcce17e5b016fbafa5858cb182e4b861d783590c5215ce0f0c8e9bfb4c4e/detection/f-eccadcce17e5b016fbafa5858cb182e4b861d783590c5215ce0f0c8e9bfb4c4e-1591243816"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682343",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "ad83cfc5-91ea-47c2-a579-c6ddd8c647df",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682443",
|
|
|
|
"uuid": "607a4d64-896c-4b1e-832e-b27a1ba926e4",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "607a4d64-896c-4b1e-832e-b27a1ba926e4",
|
|
|
|
"referenced_uuid": "ca26c7e1-e5ca-415d-871d-2fea04786a4d",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-df40-4d7b-ad0c-4f0502de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "3415af3c-e835-471b-86ad-54bb83b82cb0",
|
|
|
|
"value": "693b0795fe68c9c21cc9c4b758b01db0"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "c6343bcf-b904-46d9-979b-1c44e585d9ec",
|
|
|
|
"value": "7e01e9927bc4adbc8e8476d78d56a40a9c78a5d7"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "44843d5b-b970-4b1f-bb05-6b5630160213",
|
|
|
|
"value": "c70f06458faf1796a28c42f62647cac5948af982178cf1d5e61b70f3506a71c1"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682446",
|
|
|
|
"uuid": "ca26c7e1-e5ca-415d-871d-2fea04786a4d",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "6d8dc03f-c506-4ee9-b9d8-8c2b7c9c3fe9",
|
|
|
|
"value": "2020-06-04T02:29:49+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "e05af7cb-cdbf-4d28-9bad-a0e83b24cb8c",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/c70f06458faf1796a28c42f62647cac5948af982178cf1d5e61b70f3506a71c1/detection/f-c70f06458faf1796a28c42f62647cac5948af982178cf1d5e61b70f3506a71c1-1591237789"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "2d6fb51b-ef32-4342-b8f3-5c1ca647048d",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682446",
|
|
|
|
"uuid": "417c7b12-f55c-408c-9d4b-d6c6298116b7",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "417c7b12-f55c-408c-9d4b-d6c6298116b7",
|
|
|
|
"referenced_uuid": "b36dc007-3b5c-4e99-b628-7e843becfbd1",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-0010-486e-9347-4dbf02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682331",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "f0c06faa-ed69-46ca-a5cd-99097ba630aa",
|
|
|
|
"value": "84c09f42f6dd03c5750ba3f08de72d86"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682331",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "bd6c87fc-b5d5-4ac7-a4ef-bb173e3e386d",
|
|
|
|
"value": "a00e4d57e6589429ce6bb49a114a25390fddce94"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682331",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5637d1df-0c04-4b5f-9875-e42577aab7c8",
|
|
|
|
"value": "7e7ba697ecdd7cb1d19c70b30c96575d256032854bd6bb8e4f5fb4d18f5a0152"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682448",
|
|
|
|
"uuid": "b36dc007-3b5c-4e99-b628-7e843becfbd1",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682331",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "2686d001-2dbf-4d52-b06a-4d781620d337",
|
|
|
|
"value": "2020-06-04T05:55:43+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682331",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "a45504a4-5f9e-486a-abd0-eee962b0a1e7",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/7e7ba697ecdd7cb1d19c70b30c96575d256032854bd6bb8e4f5fb4d18f5a0152/detection/f-7e7ba697ecdd7cb1d19c70b30c96575d256032854bd6bb8e4f5fb4d18f5a0152-1591250143"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682331",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "4fdf6cb7-5b4a-4b9e-9d6b-d38899b59cfe",
|
|
|
|
"value": "1/61"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682448",
|
|
|
|
"uuid": "5ababfda-57fa-430f-8a8e-40490185b41e",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "5ababfda-57fa-430f-8a8e-40490185b41e",
|
|
|
|
"referenced_uuid": "2123bb62-8e34-43d9-8d93-832511e08d2c",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-7cc8-4860-9049-423102de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682333",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "9667a7a9-4f8c-4b6b-b662-619e822ce9fb",
|
|
|
|
"value": "1ff54321cae5b80e77acd86e32a057f9"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682333",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "88c83e7b-73b6-4ec5-ae85-59993d8ac5fa",
|
|
|
|
"value": "eac12119486771febd4f905b91e02d51cff7452a"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682333",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "51618051-81d3-4902-ae97-d88af36ed3b0",
|
|
|
|
"value": "7fba5767a9bc61981cf53383b2518a9c528ade03085865212d868da802e2ec41"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682450",
|
|
|
|
"uuid": "2123bb62-8e34-43d9-8d93-832511e08d2c",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682333",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "fe5d4162-3441-4f59-9655-e3573d8bb028",
|
|
|
|
"value": "2020-06-04T23:52:58+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682333",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "866df720-6b5c-4a54-8ea1-c4506640de91",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/7fba5767a9bc61981cf53383b2518a9c528ade03085865212d868da802e2ec41/detection/f-7fba5767a9bc61981cf53383b2518a9c528ade03085865212d868da802e2ec41-1591314778"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682333",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "08fa7294-d20a-4dd8-8fa5-d134bfd48f31",
|
|
|
|
"value": "1/61"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682451",
|
|
|
|
"uuid": "caa6bf35-269e-479c-9134-9f32d4995eef",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "caa6bf35-269e-479c-9134-9f32d4995eef",
|
|
|
|
"referenced_uuid": "aeb8868a-6ac0-4a86-9929-6e04ef0f578a",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-4768-4c30-bbe0-4f7502de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "cd8d5349-572e-44ad-b5ab-f4152c983cfa",
|
|
|
|
"value": "f014578ff2be67d5999595d49c11a868"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "5724bef6-7f5e-4417-a518-17433078b9fa",
|
|
|
|
"value": "c9f557712bdc91d3954d417edae661c356076e99"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "3a746c99-deee-4903-883a-c8478b70d512",
|
|
|
|
"value": "eb999aa4f1e79ed883460285525c7116bb1d771462da92af870b61b9f5afc2d5"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682451",
|
|
|
|
"uuid": "aeb8868a-6ac0-4a86-9929-6e04ef0f578a",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "f82385e6-cec6-4dd4-bf26-2c11d01d40f0",
|
|
|
|
"value": "2020-06-09T01:23:38+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "b8a22cec-8639-485c-bfe7-5d7b68131780",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/eb999aa4f1e79ed883460285525c7116bb1d771462da92af870b61b9f5afc2d5/detection/f-eb999aa4f1e79ed883460285525c7116bb1d771462da92af870b61b9f5afc2d5-1591665818"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "4c614506-ce4a-4116-8eaa-01c848b69d32",
|
|
|
|
"value": "12/58"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682453",
|
|
|
|
"uuid": "70b0a245-cc60-4665-8345-75c3fa46380c",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "70b0a245-cc60-4665-8345-75c3fa46380c",
|
|
|
|
"referenced_uuid": "28ec2dc3-46f3-43bf-bd6f-daffc85e1ad7",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-913c-4bfe-9edf-493c02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "cada273c-6f7a-4580-abff-1cdfad82b56b",
|
|
|
|
"value": "5effec2fd1367ac0932b0bc5a3790c71"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "bb887621-5a55-40c2-a3eb-889fbd3d4e10",
|
|
|
|
"value": "08ad377ecdd4680e877dd1c896476862937648f8"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "47e9a5e7-10a7-4f64-96c7-e5688031d263",
|
|
|
|
"value": "3bbcf3542a72193b90de7c74203dc8b9c9c3896f4234f36ed36f6d082c13f310"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682456",
|
|
|
|
"uuid": "28ec2dc3-46f3-43bf-bd6f-daffc85e1ad7",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "d7ddb9a1-e7ee-41a4-8940-664d970c0010",
|
|
|
|
"value": "2020-06-05T03:07:09+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "cce4ef06-138a-49db-9982-b872643d22e9",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/3bbcf3542a72193b90de7c74203dc8b9c9c3896f4234f36ed36f6d082c13f310/detection/f-3bbcf3542a72193b90de7c74203dc8b9c9c3896f4234f36ed36f6d082c13f310-1591326429"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "0f2cc363-b029-4576-b8c2-35f6b180b367",
|
|
|
|
"value": "4/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682456",
|
|
|
|
"uuid": "b87bb012-05e0-46ed-a509-52f57e8d47c2",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "b87bb012-05e0-46ed-a509-52f57e8d47c2",
|
|
|
|
"referenced_uuid": "72278eca-2c0a-4aaa-8d35-87551023b3ef",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-ea4c-4366-996c-483c02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "b6967d67-7ac9-4ae9-a112-49494053288b",
|
|
|
|
"value": "8733bcf50e7faf744c0a5f576a4f3695"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "11569a43-0634-40df-b3d8-8b6b46bd6261",
|
|
|
|
"value": "763987e6fdb1f1920f2118f3243ba45f67474f09"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "79c0706f-dbac-48b6-a100-db51cdfca7a7",
|
|
|
|
"value": "c735d45bbe1fa079409ae26d005a346f4698efb7e9f4db7bc2d0b247b57546f6"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682458",
|
|
|
|
"uuid": "72278eca-2c0a-4aaa-8d35-87551023b3ef",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "710854b4-b56d-40e7-ad7e-1296fe44debf",
|
|
|
|
"value": "2020-06-04T01:21:16+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "cdb744dc-0b6b-4051-afb6-4279d519d6cd",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/c735d45bbe1fa079409ae26d005a346f4698efb7e9f4db7bc2d0b247b57546f6/detection/f-c735d45bbe1fa079409ae26d005a346f4698efb7e9f4db7bc2d0b247b57546f6-1591233676"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "99e68e0f-6f8d-4781-85a2-fb0441827045",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682461",
|
|
|
|
"uuid": "755e5c5d-f8ee-4d53-8cfc-6c1bf7e9737e",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "755e5c5d-f8ee-4d53-8cfc-6c1bf7e9737e",
|
|
|
|
"referenced_uuid": "3d19ecae-2b1f-4c06-9656-f596a40b380e",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-b1e8-4e45-a5a2-43d502de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "8a4863ea-a381-4782-bedc-2de4760e3d47",
|
|
|
|
"value": "174c6b43c9cf35d8f6485ded1a29ac7a"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "db231a8e-989e-4ee5-a13f-82cba4036545",
|
|
|
|
"value": "cbe93d2e0ffaaf65e6747d6506016504c7a6fb9e"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "dda2ac76-73bb-406b-b0c2-5562664e1103",
|
|
|
|
"value": "cdc0ab79215e6c36de186ddfbed8e9b35c4c63161349c0935a90c69f553b318f"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682461",
|
|
|
|
"uuid": "3d19ecae-2b1f-4c06-9656-f596a40b380e",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "0facac3c-bbda-494a-9acd-d5df27ebed19",
|
|
|
|
"value": "2020-06-09T05:42:17+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "a6a15e80-51f6-4848-8a4a-b5620e901a68",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/cdc0ab79215e6c36de186ddfbed8e9b35c4c63161349c0935a90c69f553b318f/detection/f-cdc0ab79215e6c36de186ddfbed8e9b35c4c63161349c0935a90c69f553b318f-1591681337"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "26eac9c8-bdee-427b-9634-f4366b7a347b",
|
|
|
|
"value": "10/59"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682461",
|
|
|
|
"uuid": "8d0ffa81-f0c7-429d-8f43-7dcb4a65177c",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "8d0ffa81-f0c7-429d-8f43-7dcb4a65177c",
|
|
|
|
"referenced_uuid": "d5208822-8e6a-4bd3-97c2-ba0200435469",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-7c18-41bb-a858-4f2802de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "748457ae-9d86-43f6-b087-7b3729d3fa2d",
|
|
|
|
"value": "cb61b901c14679944e8f65c16679be74"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "fe07bd9e-3880-4bfc-9118-7cf53d94e8c1",
|
|
|
|
"value": "09f9c69c0b46a910df86c78939486d203c5f0af1"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "afcad5f1-91c6-4b8e-9d81-4a57a0624e55",
|
|
|
|
"value": "c3c5b54d4393654bbc34a98babd549ddc1a2fa7509217f53d84f2f81e8a85dea"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682470",
|
|
|
|
"uuid": "d5208822-8e6a-4bd3-97c2-ba0200435469",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "0b8dce57-3b85-4433-97b8-0e05c45246a2",
|
|
|
|
"value": "2020-06-07T20:16:16+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "892e395d-7c22-44f3-a5f2-e311f09abe0e",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/c3c5b54d4393654bbc34a98babd549ddc1a2fa7509217f53d84f2f81e8a85dea/detection/f-c3c5b54d4393654bbc34a98babd549ddc1a2fa7509217f53d84f2f81e8a85dea-1591560976"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "d3149d72-df8e-4757-be0c-92588b4a75ed",
|
|
|
|
"value": "5/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682470",
|
|
|
|
"uuid": "06a1d251-aceb-4e4d-ad48-1db678a12d0b",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "06a1d251-aceb-4e4d-ad48-1db678a12d0b",
|
|
|
|
"referenced_uuid": "1f150a93-e848-469b-af16-76dd411457bd",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-1e78-4881-839f-41b102de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "ee584682-23af-4d28-8f6a-c0379031316a",
|
|
|
|
"value": "80e967febcd3b824389848014a953b33"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "c0c38aa7-bcb5-4e67-aab2-c9af2ed4481e",
|
|
|
|
"value": "68607c9fa232f38e6d07a4ce65d340283e8ef370"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "059c12cf-afb3-4393-85c1-ce58000aa741",
|
|
|
|
"value": "b5de9e7c9eac0d1253ee4a0e38081a22f6d0070025507378affea6f571cc1b15"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682475",
|
|
|
|
"uuid": "1f150a93-e848-469b-af16-76dd411457bd",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "8591a653-79e9-4d69-8ec1-21f3a3b8abc1",
|
|
|
|
"value": "2020-06-04T07:59:34+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "b4136986-9e33-4805-891a-3a9677412422",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/b5de9e7c9eac0d1253ee4a0e38081a22f6d0070025507378affea6f571cc1b15/detection/f-b5de9e7c9eac0d1253ee4a0e38081a22f6d0070025507378affea6f571cc1b15-1591257574"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "7e9cd187-1c45-4494-82bc-7c68fa8148ef",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682497",
|
|
|
|
"uuid": "c498cc28-1920-4db5-8cb5-34f55eec93a4",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "c498cc28-1920-4db5-8cb5-34f55eec93a4",
|
|
|
|
"referenced_uuid": "aa407782-fcaa-4402-a73b-86e1bdf292ee",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-765c-4df4-ac4b-4bd002de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "4b5c7bd7-7139-41c9-9888-40986703805a",
|
|
|
|
"value": "f60b66808f2d7c3a8bf6e6dba7c3cb06"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "a573377d-8509-4430-a72a-46175fcecf8f",
|
|
|
|
"value": "0cf6f806c60cc0dee654dfe40d46ce0f8e1adcc9"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "723acf71-7b43-4ddf-be91-9f2711c8a257",
|
|
|
|
"value": "ff5516ee7e4f734c4ae70e8f6fbf3fad09bb0ba99e67916972fe308ba5c4acad"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682497",
|
|
|
|
"uuid": "aa407782-fcaa-4402-a73b-86e1bdf292ee",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "c3852ab1-8bf1-45ae-a700-57c82474346f",
|
|
|
|
"value": "2020-06-05T03:03:51+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "c3f960d8-5720-48e8-a4f2-ed44c44b75ba",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/ff5516ee7e4f734c4ae70e8f6fbf3fad09bb0ba99e67916972fe308ba5c4acad/detection/f-ff5516ee7e4f734c4ae70e8f6fbf3fad09bb0ba99e67916972fe308ba5c4acad-1591326231"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682351",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "304fcc03-05e1-4c5e-a719-5bc276df7117",
|
|
|
|
"value": "6/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682497",
|
|
|
|
"uuid": "f659716f-6ea7-475f-9d61-04e88c406f40",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "f659716f-6ea7-475f-9d61-04e88c406f40",
|
|
|
|
"referenced_uuid": "3e852049-d9d6-4eed-9885-2e63decce573",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-ad4c-4e5d-a8ec-410b02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "87cf5184-64eb-4eef-be7a-29f270f52366",
|
|
|
|
"value": "8e2b53609f31d4c6fb2fd9ad2bcb138d"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "ee8c57f0-629d-4f5b-95ef-c640e1989e9a",
|
|
|
|
"value": "3af8b2bfe4e4404dbb3a0814bcbbc0189e50957b"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "c90f055e-b730-4cc1-ba0d-c763f67036dc",
|
|
|
|
"value": "c896c5e5a5d0abd059e43dbc305f50be63ff74b88547d8f7ce75608d4c8dc2d4"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682498",
|
|
|
|
"uuid": "3e852049-d9d6-4eed-9885-2e63decce573",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "ffb9fd59-e21d-408d-8f64-178d3c65d810",
|
|
|
|
"value": "2020-06-04T01:23:40+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "b703a43d-ac5b-4402-ae3a-81fd754e236b",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/c896c5e5a5d0abd059e43dbc305f50be63ff74b88547d8f7ce75608d4c8dc2d4/detection/f-c896c5e5a5d0abd059e43dbc305f50be63ff74b88547d8f7ce75608d4c8dc2d4-1591233820"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "93769ff2-d854-4117-911c-7eb50f978214",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682498",
|
|
|
|
"uuid": "c6494a3e-fa2c-4cac-a248-bbe0c1d56b53",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "c6494a3e-fa2c-4cac-a248-bbe0c1d56b53",
|
|
|
|
"referenced_uuid": "3a5f0e90-c569-4f34-9c55-e975fbf20204",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-ac60-49f0-a0ae-4a0202de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "9a6246b8-11df-4207-ba37-41c395f96b5c",
|
|
|
|
"value": "57885f5c1a38c44913e5f500c1ea4ea6"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "939badb3-d415-467f-a792-4c8ab3336376",
|
|
|
|
"value": "bd966e200eaf33408b21d3bbcc4f1eaaf24eed91"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "28a76766-a935-4013-bc0e-2270fe13a9b7",
|
|
|
|
"value": "bdd2bce8bf6d86503a022ca77d7d10051e7d7e67fcfd39bdf7c64cd3e4b96f01"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682498",
|
|
|
|
"uuid": "3a5f0e90-c569-4f34-9c55-e975fbf20204",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "f0a66cc0-2072-4813-971e-a9c7039b4c94",
|
|
|
|
"value": "2020-06-06T13:37:24+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "7603496f-e5fe-469c-bab1-3293baf573e6",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/bdd2bce8bf6d86503a022ca77d7d10051e7d7e67fcfd39bdf7c64cd3e4b96f01/detection/f-bdd2bce8bf6d86503a022ca77d7d10051e7d7e67fcfd39bdf7c64cd3e4b96f01-1591450644"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "eceb5bbe-67dd-4b2b-b554-f141aa1a34bd",
|
|
|
|
"value": "12/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682498",
|
|
|
|
"uuid": "2658dbdc-527e-44b4-b1d7-03339fbc8b11",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "2658dbdc-527e-44b4-b1d7-03339fbc8b11",
|
|
|
|
"referenced_uuid": "42fdd7f5-2557-48b5-b48c-56238c6bf285",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-0bb0-442c-87ca-44ab02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "85ee9b3c-e3cd-440e-bc94-c14b6cfcf140",
|
|
|
|
"value": "a233d3875310246b611dcad299c4e5ad"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "c568a0ca-e9a2-4e4d-8bd9-a039914ed2b9",
|
|
|
|
"value": "bf55936cbddcacadbd96855bea042c437c2e5cd5"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "004c9df0-66cf-4fde-af52-0a3c9f2e1f4f",
|
|
|
|
"value": "f1669e315fa97d94329f6ff142dc844db1cd5cf98f0c3c908f11a28127a1e3a2"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682498",
|
|
|
|
"uuid": "42fdd7f5-2557-48b5-b48c-56238c6bf285",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "aa5a6840-d135-4048-83a8-b171e0aa72aa",
|
|
|
|
"value": "2020-06-04T13:56:29+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "6959ac5a-4629-460b-ad64-36f626da4ead",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/f1669e315fa97d94329f6ff142dc844db1cd5cf98f0c3c908f11a28127a1e3a2/detection/f-f1669e315fa97d94329f6ff142dc844db1cd5cf98f0c3c908f11a28127a1e3a2-1591278989"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "80394326-4ab4-4e1f-9615-b20c6cbfff0a",
|
|
|
|
"value": "1/61"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682499",
|
|
|
|
"uuid": "3d1299d5-1344-4be5-aefa-3ffb35a40a93",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "3d1299d5-1344-4be5-aefa-3ffb35a40a93",
|
|
|
|
"referenced_uuid": "92609381-e064-45ef-b40c-ad7407545efd",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-dcac-4b4c-b342-4d0e02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "931e2ae4-3793-4330-9aa6-efee61ef61b4",
|
|
|
|
"value": "224e03cbb9ef972648a7f73cb7af1ecd"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "08ed558a-a701-4554-95d4-da9fb409b573",
|
|
|
|
"value": "ef3986c3be01331079a0cafd509da9899ab05c35"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "c7193d01-5b20-4cc8-a4b0-dcee520e548a",
|
|
|
|
"value": "b8f4ab06d86cecdf78bde1ff0c415825ce2008b80f511bc715c96799e27ede54"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682499",
|
|
|
|
"uuid": "92609381-e064-45ef-b40c-ad7407545efd",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "2ffe0b8c-3042-448b-8307-0d03d801b623",
|
|
|
|
"value": "2020-06-04T18:48:22+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "f5486bb5-a361-48be-8338-2abdb861b956",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/b8f4ab06d86cecdf78bde1ff0c415825ce2008b80f511bc715c96799e27ede54/detection/f-b8f4ab06d86cecdf78bde1ff0c415825ce2008b80f511bc715c96799e27ede54-1591296502"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "d9d70fd4-8f7d-4f4a-8b09-c5a24f06fbfb",
|
|
|
|
"value": "4/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682500",
|
|
|
|
"uuid": "fd8519ed-2362-40be-ab1b-4daf21d8628a",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "fd8519ed-2362-40be-ab1b-4daf21d8628a",
|
|
|
|
"referenced_uuid": "5c479fb7-7b27-4cac-b1cb-9e6b74bbf388",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-1a80-4e37-8d62-4d8302de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682320",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "a0af027b-360a-4791-82b4-f2adbdc3aa44",
|
|
|
|
"value": "f7be789d155f82cc2b9fffb160756f37"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682320",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "941aece8-00d8-40e5-bd09-9a631e3c9508",
|
|
|
|
"value": "cb3bc1852effed55d7ba5f921dd5be766f35d43a"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682320",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "1c6a5b09-20a5-425b-817a-71803e6e65a0",
|
|
|
|
"value": "6dd413cda5f640218e53068fcdeaa8095d43cfa08d7ae31bc1294b578eda3650"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682500",
|
|
|
|
"uuid": "5c479fb7-7b27-4cac-b1cb-9e6b74bbf388",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682320",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "544bc4ff-8e9b-44c5-ba6d-d1b61225ac39",
|
|
|
|
"value": "2020-06-04T23:34:36+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682320",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "f50a97ae-8426-4e41-bd33-327c26508ada",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/6dd413cda5f640218e53068fcdeaa8095d43cfa08d7ae31bc1294b578eda3650/detection/f-6dd413cda5f640218e53068fcdeaa8095d43cfa08d7ae31bc1294b578eda3650-1591313676"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682320",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "9c8ab6e0-4d5d-4097-898a-128ff8d41256",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682500",
|
|
|
|
"uuid": "6b733565-8f47-4de9-9bbc-810e295e5169",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "6b733565-8f47-4de9-9bbc-810e295e5169",
|
|
|
|
"referenced_uuid": "36a13ea7-530d-4744-a2ef-307970bc215e",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-12f0-4574-a203-41d602de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "cfed3c45-ce09-4337-860c-51348e5d3a7f",
|
|
|
|
"value": "cc4426d619a47d89a77d41bad5f9547d"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "81504689-30d3-43fe-828f-c939a3fabf1e",
|
|
|
|
"value": "cf94a7a8feb412cab891c72b2e63799800987f21"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "eb379753-1cc7-42e4-8379-221aa79b052a",
|
|
|
|
"value": "f3b298b3272983fd118f42817ead6259fb46a31b22ac8f68eed54c2f28288fbb"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682503",
|
|
|
|
"uuid": "36a13ea7-530d-4744-a2ef-307970bc215e",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "809c16ba-84d6-4d6a-b16d-bf4e2696dc13",
|
|
|
|
"value": "2020-06-05T02:48:56+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "6af685d8-fc96-4696-ae5a-fcd91c40be14",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/f3b298b3272983fd118f42817ead6259fb46a31b22ac8f68eed54c2f28288fbb/detection/f-f3b298b3272983fd118f42817ead6259fb46a31b22ac8f68eed54c2f28288fbb-1591325336"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "af1859c1-38ec-4477-b17b-ec24a3d7ab12",
|
|
|
|
"value": "4/58"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682503",
|
|
|
|
"uuid": "1e2e2fc2-2cd6-497d-807a-fc12e9eabce6",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "1e2e2fc2-2cd6-497d-807a-fc12e9eabce6",
|
|
|
|
"referenced_uuid": "7683dbcd-1fff-4605-a06a-e6a48b91457c",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-9ec8-4f05-a30c-4c4902de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682308",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "7b622a08-7c6e-4721-9bc7-d2cd02e31eb2",
|
|
|
|
"value": "ba6ded9edb08a6b12d96b00c97dc30a2"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682308",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "fd17620b-e2f5-4ad1-a6fd-7695de4589fd",
|
|
|
|
"value": "e5e933ac2a3a69250940232d305e6e5a2c68c8fb"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682308",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "853fbedc-4373-4c75-aada-8de0d2a60bc1",
|
|
|
|
"value": "607ee35288b437cdf89cb147281ab959e4b42051a299401293b0b54baff52710"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682503",
|
|
|
|
"uuid": "7683dbcd-1fff-4605-a06a-e6a48b91457c",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682308",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "1453d558-1161-4f93-9945-fd2bc9722e3c",
|
|
|
|
"value": "2020-06-04T06:19:58+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682308",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "6a46a992-8688-4552-8a0d-51576d818b00",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/607ee35288b437cdf89cb147281ab959e4b42051a299401293b0b54baff52710/detection/f-607ee35288b437cdf89cb147281ab959e4b42051a299401293b0b54baff52710-1591251598"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682308",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "4a62dce1-aa9a-4120-80c7-4ed7791216db",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682503",
|
|
|
|
"uuid": "5dde504f-1091-4678-b154-190825774f03",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "5dde504f-1091-4678-b154-190825774f03",
|
|
|
|
"referenced_uuid": "c0a8b1cf-2879-4d58-9b31-d08f485461a3",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-f260-406f-9a58-4a6502de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682310",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "fde622d6-a916-4288-8d7b-9c83d1d0c90e",
|
|
|
|
"value": "20727d10e94f4ee25e6086f2835a9e27"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682310",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "b35ed90d-bf74-4fb0-ae8f-1c27644daace",
|
|
|
|
"value": "5d3bfcee3067651cbdadb26238d322152bea62ab"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682310",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "3dd3ea9e-343f-4c9f-90a7-eae82ffe0006",
|
|
|
|
"value": "63c396781b3e1a09f57da685dbb2fe1852e04c92b42d2dec08827861ce85f6ae"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682504",
|
|
|
|
"uuid": "c0a8b1cf-2879-4d58-9b31-d08f485461a3",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682310",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "d3ea58ec-489c-443a-a2fe-883d8fa79d69",
|
|
|
|
"value": "2020-06-06T13:43:25+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682310",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "4feba9c2-6e7f-484f-bb08-9684da1390c1",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/63c396781b3e1a09f57da685dbb2fe1852e04c92b42d2dec08827861ce85f6ae/detection/f-63c396781b3e1a09f57da685dbb2fe1852e04c92b42d2dec08827861ce85f6ae-1591451005"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682310",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "2a24934a-bc56-427b-b23c-8bc9dac13f6f",
|
|
|
|
"value": "10/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682504",
|
|
|
|
"uuid": "77d64976-aba3-40f9-b9d3-f835bf208170",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "77d64976-aba3-40f9-b9d3-f835bf208170",
|
|
|
|
"referenced_uuid": "8592cadd-a5ed-489a-bf33-8c54cbc2c808",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-83b0-42c6-bec3-40eb02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682321",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "1bbbe31f-7038-4470-88b1-22d3ca432755",
|
|
|
|
"value": "a0292ff3404997eeedaa98430a3810a9"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682321",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "02e9225e-31be-4b43-be40-91e571ff7e0c",
|
|
|
|
"value": "bd06daa513c2ff507663ba6721c597003538be14"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682321",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "518e3f32-250a-4b65-81bf-8c2db6843837",
|
|
|
|
"value": "7294b0fcd60f333401410205724a6a7d4b1a1c166624a3a897eb74dd9e878f3d"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682505",
|
|
|
|
"uuid": "8592cadd-a5ed-489a-bf33-8c54cbc2c808",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682321",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "331cce22-33bf-4bf3-bc4a-2ae26bb19134",
|
|
|
|
"value": "2020-06-04T01:27:24+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682321",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "7a4a5052-c4d6-464b-856f-d201e3a17737",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/7294b0fcd60f333401410205724a6a7d4b1a1c166624a3a897eb74dd9e878f3d/detection/f-7294b0fcd60f333401410205724a6a7d4b1a1c166624a3a897eb74dd9e878f3d-1591234044"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682321",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "f517b2e8-5e93-40fc-a16f-4dbb738f5d35",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682505",
|
|
|
|
"uuid": "a5631381-183c-4b80-a250-adf9c9123c77",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "a5631381-183c-4b80-a250-adf9c9123c77",
|
|
|
|
"referenced_uuid": "b774dd41-d3cd-4d50-9b07-2505de7e0e4b",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-356c-4eec-bd94-4e1b02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "2fd4dd60-4485-4a59-a23c-d8f9ea25dd0e",
|
|
|
|
"value": "335408b886bf9bdfd5e2bd24e1fe9a36"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "34712044-434d-45d6-bbda-aee88a7a2078",
|
|
|
|
"value": "c4826071e2b7ab987a392904c55089e82f06bbf9"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "7725d519-fb03-4972-bb24-676822c98201",
|
|
|
|
"value": "f92c361f4849bdb8296fe20c394b3875e648f7c3d18e581bb5907c70451913c8"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682505",
|
|
|
|
"uuid": "b774dd41-d3cd-4d50-9b07-2505de7e0e4b",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "8cad3a5b-5565-485a-960d-a97f9d56e246",
|
|
|
|
"value": "2020-06-04T02:19:12+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "a68117c2-8634-4c34-a911-ac33cb7fbdd6",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/f92c361f4849bdb8296fe20c394b3875e648f7c3d18e581bb5907c70451913c8/detection/f-f92c361f4849bdb8296fe20c394b3875e648f7c3d18e581bb5907c70451913c8-1591237152"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "741a04ba-2241-4b05-a0fc-c83f487b2d43",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682505",
|
|
|
|
"uuid": "ded62a1c-8ccb-41af-9f06-f4be406dd46b",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "ded62a1c-8ccb-41af-9f06-f4be406dd46b",
|
|
|
|
"referenced_uuid": "c3818fc0-9785-4c01-ac5a-08d8ac7754c2",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-00f0-4dd1-adca-4f3202de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "a527b8b0-d7c3-48dd-a77d-74d80408131c",
|
|
|
|
"value": "da08fae1018db44ce0f76f4f1259fe54"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "276a9e59-970d-480e-adec-b793acb8a0a7",
|
|
|
|
"value": "e5b2f82e0497c93c5244123f4a0e97b41173c00e"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "f4c8ddb2-90f2-4268-a80a-1ec00a89ba9c",
|
|
|
|
"value": "bbe972bd9a361d24d30b123b1fda8ece3fb4bc1cbc4a872c560c6a76c7fb6b33"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682505",
|
|
|
|
"uuid": "c3818fc0-9785-4c01-ac5a-08d8ac7754c2",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "27121199-c864-41bd-b277-a4321745f140",
|
|
|
|
"value": "2020-06-05T05:16:25+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "8edb81a9-6520-4c65-877b-faf599681f1f",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/bbe972bd9a361d24d30b123b1fda8ece3fb4bc1cbc4a872c560c6a76c7fb6b33/detection/f-bbe972bd9a361d24d30b123b1fda8ece3fb4bc1cbc4a872c560c6a76c7fb6b33-1591334185"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682336",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "70931b0c-f91f-496a-a159-74880c4f9718",
|
|
|
|
"value": "5/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682506",
|
|
|
|
"uuid": "c9ad8598-5527-4f55-97ea-baada6e4f98c",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "c9ad8598-5527-4f55-97ea-baada6e4f98c",
|
|
|
|
"referenced_uuid": "c84d21bb-bb57-420e-b59f-ae03ed4f6e8a",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-af28-4af2-a4e9-4bfc02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682338",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "66c191ae-a6c8-46f1-b723-3547025e071f",
|
|
|
|
"value": "003b41485f43ba8ae3d04716e0ac04b2"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682338",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "db30fdc2-5d35-4559-831e-edc0f8116db7",
|
|
|
|
"value": "c7af8420a738803e3c6965d440ec230aa70b9ff4"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682338",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "e0d71d69-0ce4-4253-9728-f00b30d17d80",
|
|
|
|
"value": "c69e1a03f2d71653e33408cfbd16fbb2f7eec647b89e4dcfad6a52f647aa7ac2"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682506",
|
|
|
|
"uuid": "c84d21bb-bb57-420e-b59f-ae03ed4f6e8a",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682338",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "ff4ec341-b3ed-4b70-b90e-c4c9d2a45f43",
|
|
|
|
"value": "2020-06-05T14:24:39+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682338",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "a513f626-dcdf-4ef7-8839-020c8df1bd16",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/c69e1a03f2d71653e33408cfbd16fbb2f7eec647b89e4dcfad6a52f647aa7ac2/detection/f-c69e1a03f2d71653e33408cfbd16fbb2f7eec647b89e4dcfad6a52f647aa7ac2-1591367079"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682338",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "9bf97184-3b9b-4dd0-a0fa-873061212027",
|
|
|
|
"value": "3/59"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682510",
|
|
|
|
"uuid": "f21d7940-84a2-4d6f-acea-0a1ba19c21f7",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "f21d7940-84a2-4d6f-acea-0a1ba19c21f7",
|
|
|
|
"referenced_uuid": "90242e98-98ed-40e8-9354-ada828e137d2",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-3970-4ecd-9c0c-4a3402de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "7db4dcfd-116a-4d3c-bf3d-2c76a6d7f0c0",
|
|
|
|
"value": "56bffb2c1d498481f1c2e6066ac38050"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "e04c54cd-5369-4e99-8fcb-4bb5ff8cf0a7",
|
|
|
|
"value": "6a1762048ee45e4a52388f4914a60a3ee03d29d8"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "a9b07831-d95c-4af0-b2b0-6be351c1251e",
|
|
|
|
"value": "921026611780fe1d168a559852a3b17b408c65d9dc7ffb4650537577d71fa67b"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682510",
|
|
|
|
"uuid": "90242e98-98ed-40e8-9354-ada828e137d2",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "0be40de2-fa19-48ae-bf2f-a6147c7c6c28",
|
|
|
|
"value": "2020-06-05T01:09:17+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "e3c20367-31ec-44d6-ad6c-d7f284680148",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/921026611780fe1d168a559852a3b17b408c65d9dc7ffb4650537577d71fa67b/detection/f-921026611780fe1d168a559852a3b17b408c65d9dc7ffb4650537577d71fa67b-1591319357"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "e8add3cd-cc4c-4083-a2ab-71db19d178e5",
|
|
|
|
"value": "4/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682510",
|
|
|
|
"uuid": "a307466f-d959-4593-8a29-4b0c830d5336",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "a307466f-d959-4593-8a29-4b0c830d5336",
|
|
|
|
"referenced_uuid": "9be4f043-827a-403d-b10c-17d8337ffd5c",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-ad74-4ed2-9627-4ff302de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "38ecb93b-9baa-48ff-b95d-b54596a5942c",
|
|
|
|
"value": "0a1162e09d286a35bf0e3eaa3a9a5c00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "5ad5ad1c-10d4-4e91-8f49-e031e89b4344",
|
|
|
|
"value": "8cf666630d4e5850266d986a4668c6486a188185"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "ee66550c-1763-45f8-9960-fc599f694b1d",
|
|
|
|
"value": "fa37860944ee07b416cf634c758d32660af30baca16148cb0c66ccbf8bcf6465"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682511",
|
|
|
|
"uuid": "9be4f043-827a-403d-b10c-17d8337ffd5c",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "ea8247b2-155d-45b9-ae9b-425efc80d1b0",
|
|
|
|
"value": "2020-06-05T14:48:57+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "d0360e27-2af0-4390-ae09-55aa781a69fb",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/fa37860944ee07b416cf634c758d32660af30baca16148cb0c66ccbf8bcf6465/detection/f-fa37860944ee07b416cf634c758d32660af30baca16148cb0c66ccbf8bcf6465-1591368537"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "509db5bc-c5ca-4bc2-a434-ee35f10fe485",
|
|
|
|
"value": "7/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682511",
|
|
|
|
"uuid": "d0e67cb3-b1e8-43e4-8c32-30ea97599b75",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "d0e67cb3-b1e8-43e4-8c32-30ea97599b75",
|
|
|
|
"referenced_uuid": "c79ef7b2-4efb-4db8-91c1-94370849b546",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-77cc-4272-a816-410c02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "c101f76a-8374-44e2-b9d3-4dd87b0d647a",
|
|
|
|
"value": "1f1c25c4ea45f76f625e989598907987"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "bcf9f23a-22c7-4be6-a6df-829ccc0ee4b3",
|
|
|
|
"value": "61dd74334eb2c1c14c1746fa2a76a63b800e2f00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "9d090e04-ba6d-4b94-86b8-a79894e99986",
|
|
|
|
"value": "8bf46bbd626c107433372b39aba3719f1744244eb37b1aa7c72956bf9346ac15"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682515",
|
|
|
|
"uuid": "c79ef7b2-4efb-4db8-91c1-94370849b546",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "18dad584-14d8-4495-b2e9-313d110d98be",
|
|
|
|
"value": "2020-06-08T01:11:49+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "12e3ab77-65f1-4402-b594-6ca85b77d7cb",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/8bf46bbd626c107433372b39aba3719f1744244eb37b1aa7c72956bf9346ac15/detection/f-8bf46bbd626c107433372b39aba3719f1744244eb37b1aa7c72956bf9346ac15-1591578709"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "891f9dd6-0db7-4f39-b56b-9b6710342481",
|
|
|
|
"value": "3/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682515",
|
|
|
|
"uuid": "21327aa5-00ae-4c4f-a5cb-5034b481dba1",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "21327aa5-00ae-4c4f-a5cb-5034b481dba1",
|
|
|
|
"referenced_uuid": "0224c52a-1b8d-415b-bc81-fe6c122bb3cf",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682547",
|
|
|
|
"uuid": "5edf25f3-1efc-4388-8059-4eae02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "ebe39c98-c44c-43ef-9326-38f25b666c80",
|
|
|
|
"value": "fb33c2acb7da7def8d113f5baaf3e29c"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "e31fefb4-1555-49fe-95e3-a6080131ce1c",
|
|
|
|
"value": "fc0217d8da1d61415023471fd5b9a340d59e89c4"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "023b1044-b9cb-44e6-9bd5-95641aeff3db",
|
|
|
|
"value": "f67352ac345d03d511cb634d72798d06df3b74e4a8d34aa2c91692ad27adcfbf"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682516",
|
|
|
|
"uuid": "0224c52a-1b8d-415b-bc81-fe6c122bb3cf",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "94472822-27f1-44a7-9c03-4e6c1c452b88",
|
|
|
|
"value": "2020-06-08T18:02:33+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "77826e3b-80ad-4a61-bf32-afcac8504886",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/f67352ac345d03d511cb634d72798d06df3b74e4a8d34aa2c91692ad27adcfbf/detection/f-f67352ac345d03d511cb634d72798d06df3b74e4a8d34aa2c91692ad27adcfbf-1591639353"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "8ca5ce24-e2fb-4ccd-98b9-fd40485c0cfa",
|
|
|
|
"value": "14/58"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682516",
|
|
|
|
"uuid": "7920ef25-680a-4be9-92ce-01802b3c9e6a",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "7920ef25-680a-4be9-92ce-01802b3c9e6a",
|
|
|
|
"referenced_uuid": "096fa49e-5aec-4bcb-bb03-6676e3cd09f7",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-d780-423c-8dfc-45a902de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "31d595c9-b9a7-49b4-816d-070fd119a6ff",
|
|
|
|
"value": "3e35ebcc7387ef78363229487f2afb23"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "410d78f0-feff-41e2-8696-244cea786504",
|
|
|
|
"value": "60eeede481d501e3c58fe9e63c898edb4e514701"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "5d6a5786-6695-4537-a4c2-4280bf305518",
|
|
|
|
"value": "defb31a9d386b63779fe2006c261fc7913d2229f953fdf6caecaab9d53dd8fa4"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682516",
|
|
|
|
"uuid": "096fa49e-5aec-4bcb-bb03-6676e3cd09f7",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "0d67683a-2f69-4755-ba2c-00d093f4da64",
|
|
|
|
"value": "2020-06-05T02:21:05+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "055acff6-852c-412c-9310-b754822ed072",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/defb31a9d386b63779fe2006c261fc7913d2229f953fdf6caecaab9d53dd8fa4/detection/f-defb31a9d386b63779fe2006c261fc7913d2229f953fdf6caecaab9d53dd8fa4-1591323665"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "1c0e0ff7-02c3-4285-b8b5-aea820224019",
|
|
|
|
"value": "2/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682520",
|
|
|
|
"uuid": "360da40a-d5bd-463b-a358-912d8b1cb32e",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "360da40a-d5bd-463b-a358-912d8b1cb32e",
|
|
|
|
"referenced_uuid": "04f31345-2514-4ebc-810c-4fcf298a9dfc",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-6100-4f60-8e29-43db02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "1a9ed9f0-4bb6-4ffa-8415-ce603b1ff180",
|
|
|
|
"value": "451938147bcda8155c1c05def074a381"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "077acc9a-5cbe-417e-a071-cc54af480981",
|
|
|
|
"value": "5a930165b0dcdb7934294f8f88cb520bab76909d"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "29696e3d-401e-4d5e-9742-633deb8d8190",
|
|
|
|
"value": "e38a95d1eb1b6f4c339954e2585549d336ea27b9fe76115abba8a1bfcfde8d79"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682520",
|
|
|
|
"uuid": "04f31345-2514-4ebc-810c-4fcf298a9dfc",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "33cac6e7-7206-4114-9f8c-17f86d573f99",
|
|
|
|
"value": "2020-06-04T01:40:35+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "0b5bafa2-1469-43ad-8f29-4dd636060a0a",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/e38a95d1eb1b6f4c339954e2585549d336ea27b9fe76115abba8a1bfcfde8d79/detection/f-e38a95d1eb1b6f4c339954e2585549d336ea27b9fe76115abba8a1bfcfde8d79-1591234835"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "8d3dfa13-d155-478f-a1f9-35efbc4439b8",
|
|
|
|
"value": "1/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682521",
|
|
|
|
"uuid": "91caeb9c-8bcc-46c4-a2b1-967cb2ffc06b",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "91caeb9c-8bcc-46c4-a2b1-967cb2ffc06b",
|
|
|
|
"referenced_uuid": "16355c6c-5495-4128-b058-a75caffcc180",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-cba4-4d76-9a4c-4e7502de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "19f87edb-30c7-4e17-956a-7eb0e2a3c2ad",
|
|
|
|
"value": "6402c0725c77fdadd27cba028b346100"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "e0517acc-4546-4b5b-9171-2986ec07a7db",
|
|
|
|
"value": "e7b675ea6b808a0135c4b9ca0dbafb9664001119"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "ba5fdf83-5f6a-411d-ad51-0a59f009fa74",
|
|
|
|
"value": "c957de05aec8c4f295bec80711f2e934b837117094abcdd46098486c6f2934a9"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682521",
|
|
|
|
"uuid": "16355c6c-5495-4128-b058-a75caffcc180",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "2daa03ad-aebd-4283-a7e1-c5af0613d3fe",
|
|
|
|
"value": "2020-06-03T06:32:33+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "22d269b8-f734-4d8c-b499-98795efb3581",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/c957de05aec8c4f295bec80711f2e934b837117094abcdd46098486c6f2934a9/detection/f-c957de05aec8c4f295bec80711f2e934b837117094abcdd46098486c6f2934a9-1591165953"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "e197e84d-f685-495f-8d4f-83c403ba9a62",
|
|
|
|
"value": "3/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682523",
|
|
|
|
"uuid": "7ebe7237-c0c2-4b5a-990f-d772e7380a4a",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "7ebe7237-c0c2-4b5a-990f-d772e7380a4a",
|
|
|
|
"referenced_uuid": "772cbd68-b23c-43b2-83f6-d2e04fa9fb7a",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-a2e0-4451-85bf-46e302de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "4ed57d8d-590b-4c3e-905f-d6cf578c604c",
|
|
|
|
"value": "68ea9a44404538895d9989ffb700d6c2"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "b7b577a4-e373-41fb-aaef-0574e02ea762",
|
|
|
|
"value": "1ebfa9038414eb0162e115889dadb7fc34c61a17"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "1b769a94-2521-4d5a-aa63-9b096102b779",
|
|
|
|
"value": "9bd112a6b7bc00b0e83b81965e1a71f60f977d337aa37811d023d4adad541f81"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682525",
|
|
|
|
"uuid": "772cbd68-b23c-43b2-83f6-d2e04fa9fb7a",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "20e28165-919f-4558-ad2f-0b86d94f57a0",
|
|
|
|
"value": "2020-06-04T04:10:17+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "ed14d64f-a6be-4a1f-965e-c988e2153269",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/9bd112a6b7bc00b0e83b81965e1a71f60f977d337aa37811d023d4adad541f81/detection/f-9bd112a6b7bc00b0e83b81965e1a71f60f977d337aa37811d023d4adad541f81-1591243817"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "b13b8810-f0cf-432a-8643-50e8114b555b",
|
|
|
|
"value": "1/61"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682526",
|
|
|
|
"uuid": "d65d8426-637a-4461-aef9-3aeee89fdb68",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "d65d8426-637a-4461-aef9-3aeee89fdb68",
|
|
|
|
"referenced_uuid": "321df88e-3d1f-4c02-b568-f4150e216f6d",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-e3b4-4c92-b36a-4e2c02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "cb71b6d3-8d82-4332-9716-bc439e11d812",
|
|
|
|
"value": "9f07d953e88681e6343ffdec24f3d589"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "5117fc53-b979-4abb-a033-f300a6998a9e",
|
|
|
|
"value": "0c2985e8d97e402b99023753a99160cd1e1f2a9b"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "7958d0d9-d0ef-4fdc-9c8f-4626a2f47887",
|
|
|
|
"value": "ff03f367647fdc3e93f2f7e73c70ed381b71605443f2b051b901d1eb80493854"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682526",
|
|
|
|
"uuid": "321df88e-3d1f-4c02-b568-f4150e216f6d",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "fcc487f7-0bf6-4e4a-87a6-7176d6566e01",
|
|
|
|
"value": "2020-06-06T17:42:16+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "f731c621-44bf-4c86-885b-3c2495410436",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/ff03f367647fdc3e93f2f7e73c70ed381b71605443f2b051b901d1eb80493854/detection/f-ff03f367647fdc3e93f2f7e73c70ed381b71605443f2b051b901d1eb80493854-1591465336"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682348",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "3ec85e3a-4536-4f59-977e-cc8fe5e5629f",
|
|
|
|
"value": "8/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682526",
|
|
|
|
"uuid": "0cd3c477-a7f0-40d7-b4d3-1a66fcf454b6",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "0cd3c477-a7f0-40d7-b4d3-1a66fcf454b6",
|
|
|
|
"referenced_uuid": "43c340b7-1379-4812-a486-d88ce1f4a269",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-1b2c-41fb-9276-4f9502de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "2d1f1610-dca0-445d-bf3a-d3ba231cea6f",
|
|
|
|
"value": "b495eeacdc3197eb47c8218aae74c86d"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "dce95098-dcb1-4873-9e2e-d76e66e23882",
|
|
|
|
"value": "d83ddae2e9373624c7d010c305370a7313bbbc1a"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "9dc8e8be-6c24-4b83-8e75-895b4834e6e4",
|
|
|
|
"value": "8624ed0e25319e3e6092df564b61fdd20620980b2eb424e7b77dd41fc3422f78"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682526",
|
|
|
|
"uuid": "43c340b7-1379-4812-a486-d88ce1f4a269",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "235c6e26-15be-4172-8a86-8b93bd9f3988",
|
|
|
|
"value": "2020-06-04T01:25:36+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "a86ac40e-705b-4b2a-86f8-eb59ab5188df",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/8624ed0e25319e3e6092df564b61fdd20620980b2eb424e7b77dd41fc3422f78/detection/f-8624ed0e25319e3e6092df564b61fdd20620980b2eb424e7b77dd41fc3422f78-1591233936"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682335",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "557495bb-d138-41d5-be4c-3aacf38b8f92",
|
|
|
|
"value": "1/61"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682526",
|
|
|
|
"uuid": "02ffe887-b7e7-4f22-8916-d0d09f027627",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "02ffe887-b7e7-4f22-8916-d0d09f027627",
|
|
|
|
"referenced_uuid": "afc704d0-bc2b-4bdb-af7e-386697650f60",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-95d4-41f4-8e69-4f1302de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682327",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "a6d9d42b-7143-46ec-9d81-b1bbcbc65bd9",
|
|
|
|
"value": "f1e9ce0eb05059f1c3f8896f4981f41b"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682327",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "73825c3f-0549-42ec-84c9-0e00ec0d8dd7",
|
|
|
|
"value": "62731746fdacf02067e9c7a1d9e3a7c2c027bcf2"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682327",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "64910309-97dd-4ab6-94ca-08c62b1d4d35",
|
|
|
|
"value": "7ae4e7e1241276b32acae1609fe081e95ee5104424502ff17619f36a2e489639"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682531",
|
|
|
|
"uuid": "afc704d0-bc2b-4bdb-af7e-386697650f60",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682327",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "7c928391-c6f1-43fe-9581-a98ca56ee71f",
|
|
|
|
"value": "2020-06-04T13:32:15+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682327",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "a7194995-a3e7-4a50-9562-a7f99072b92a",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/7ae4e7e1241276b32acae1609fe081e95ee5104424502ff17619f36a2e489639/detection/f-7ae4e7e1241276b32acae1609fe081e95ee5104424502ff17619f36a2e489639-1591277535"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682327",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "4a9f6a60-9993-4af4-8e16-3eb10950a1da",
|
|
|
|
"value": "2/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682531",
|
|
|
|
"uuid": "efec214e-341d-48b8-a691-eb5323c6a65e",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "efec214e-341d-48b8-a691-eb5323c6a65e",
|
|
|
|
"referenced_uuid": "88c76c85-0992-446d-823d-ad812fa0e834",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-53ac-4411-9b0b-4a9002de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "e94989b0-65ed-49bc-afd2-1675b178258e",
|
|
|
|
"value": "555943c45e284802825d60f11902f032"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "6ee2ef32-17b6-4a0e-b351-c7007ad2dda9",
|
|
|
|
"value": "c2835fbd3c41ece3d6f1f6384203ab85767388ba"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "69a43a6d-5e53-4faf-98bb-ab770c8b1c50",
|
|
|
|
"value": "4eece164c7d6273a0fd7f91df8ea2fc557da8e1225aac1890c1e490cd1fd4750"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682531",
|
|
|
|
"uuid": "88c76c85-0992-446d-823d-ad812fa0e834",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "248bd84b-215f-458b-a2ab-cca73a0df52d",
|
|
|
|
"value": "2020-06-05T11:19:47+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "d69e1fbb-0898-48e8-9019-f45f33645739",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/4eece164c7d6273a0fd7f91df8ea2fc557da8e1225aac1890c1e490cd1fd4750/detection/f-4eece164c7d6273a0fd7f91df8ea2fc557da8e1225aac1890c1e490cd1fd4750-1591355987"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682305",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "58d407ca-ac66-4bd5-90e2-87215b3923dd",
|
|
|
|
"value": "7/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682531",
|
|
|
|
"uuid": "893e683a-d963-478a-81b8-515a607f26f9",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "893e683a-d963-478a-81b8-515a607f26f9",
|
|
|
|
"referenced_uuid": "cd256349-da15-4795-8859-39beae284bf5",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-c9a4-4286-9e70-4ed802de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682317",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "0042a470-e976-4104-8c57-106f818d6def",
|
|
|
|
"value": "ada44b65ce28309b2d8da9233a8f2443"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682317",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "807b7de0-b706-44cf-9ea5-e047eb1ab01c",
|
|
|
|
"value": "d70a974043372641baf570ab1ecc30806cc6e26f"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682317",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "0b9618c4-941c-4ac3-87ee-4dc4ff876704",
|
|
|
|
"value": "6c0ee9ad6608774ccc6f2d1b4fc10d25db600a1ab147c38b862f985325d00d69"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682536",
|
|
|
|
"uuid": "cd256349-da15-4795-8859-39beae284bf5",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682317",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "caa7c656-1db1-4b5b-8dd7-72954ed99f75",
|
|
|
|
"value": "2020-06-08T23:54:53+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682317",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "312d96fe-5610-4bff-b093-4e99fba25af2",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/6c0ee9ad6608774ccc6f2d1b4fc10d25db600a1ab147c38b862f985325d00d69/detection/f-6c0ee9ad6608774ccc6f2d1b4fc10d25db600a1ab147c38b862f985325d00d69-1591660493"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682317",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "7c18bf01-7a81-4f1b-b790-05cd819c84f2",
|
|
|
|
"value": "15/58"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682536",
|
|
|
|
"uuid": "0fdf714c-00e3-4e05-be1d-8ea23d0ce8da",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "0fdf714c-00e3-4e05-be1d-8ea23d0ce8da",
|
|
|
|
"referenced_uuid": "39d8757d-7d4f-4a82-b436-413099f5352c",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-57d4-4f65-80f0-447702de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "75d896e3-c9d9-443e-8b57-68ecfad4fc7b",
|
|
|
|
"value": "de4d45b0b14700528dab525315758734"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "c711933d-a00b-4eb5-ac2b-618a2fa9ecb1",
|
|
|
|
"value": "d00f79deee4824fd432cd810757376e2eb292893"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "aad7c9e9-2ea6-4d2b-bb24-64a66c829890",
|
|
|
|
"value": "2bb379f1ee08c6c1aedf20cdb4feec2b5db08767c6d9ba6cad2d3dc13ade8609"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682536",
|
|
|
|
"uuid": "39d8757d-7d4f-4a82-b436-413099f5352c",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "4ff9b615-e58f-46ad-97a0-5a2611ef1aa5",
|
|
|
|
"value": "2020-06-08T18:02:56+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "cef87992-fc11-4a96-9ad0-fc291ec475c1",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/2bb379f1ee08c6c1aedf20cdb4feec2b5db08767c6d9ba6cad2d3dc13ade8609/detection/f-2bb379f1ee08c6c1aedf20cdb4feec2b5db08767c6d9ba6cad2d3dc13ade8609-1591639376"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "62961a8e-4560-432e-a9ce-cbc36887ad5c",
|
|
|
|
"value": "4/59"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682536",
|
|
|
|
"uuid": "3c6835b0-9345-4fa9-9dcc-a34ba656f9cd",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "3c6835b0-9345-4fa9-9dcc-a34ba656f9cd",
|
|
|
|
"referenced_uuid": "d536dabc-5b89-47cf-a262-8c3ac457a884",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-085c-4e77-8866-430f02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "426776f8-4f4f-4160-8ca5-1b49cc640330",
|
|
|
|
"value": "f9df74341bae4eaae2ad38524472614f"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "63465e5b-5c5c-4779-855b-b5398ed025ea",
|
|
|
|
"value": "ae3d454aa5ab5f7aa65953a6877994b4ed792940"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "82e20b0d-a849-4a78-be2f-cd04f3601e27",
|
|
|
|
"value": "f50c3e60db8adf31187448082ff4a783feb495b9545280ed23a65f89184f9236"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682536",
|
|
|
|
"uuid": "d536dabc-5b89-47cf-a262-8c3ac457a884",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "a3dd23e1-d4cf-4e02-b760-2539018946d9",
|
|
|
|
"value": "2020-06-08T06:30:32+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "dbc6cfc4-09f6-475e-a89a-b9c9f129ff99",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/f50c3e60db8adf31187448082ff4a783feb495b9545280ed23a65f89184f9236/detection/f-f50c3e60db8adf31187448082ff4a783feb495b9545280ed23a65f89184f9236-1591597832"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682346",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "23484474-9f4a-455b-bd28-6ff12ca446f1",
|
|
|
|
"value": "10/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682539",
|
|
|
|
"uuid": "a84b79e3-bc00-4922-bd77-6960e5fad744",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "a84b79e3-bc00-4922-bd77-6960e5fad744",
|
|
|
|
"referenced_uuid": "f90e7bfd-931b-4b4a-8037-9fba919341e6",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-9524-4e29-9a6f-4c4502de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "2bc013f7-de60-4c45-8219-13602ce2f1ff",
|
|
|
|
"value": "8433ada2f215c6286f1526f21ab780b9"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "1a11e402-6bb6-4b00-972a-8e18a058517d",
|
|
|
|
"value": "dc9e799736d24decb33b7436b629effb149d79dc"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "6d828172-4115-4d57-859d-16e241ae30c2",
|
|
|
|
"value": "e0c1189c63833e6dde70198558dc92b95ca0c8050e117dce432d2e9a838b7513"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682541",
|
|
|
|
"uuid": "f90e7bfd-931b-4b4a-8037-9fba919341e6",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "74cc1162-ccd2-4954-947c-d649d935183f",
|
|
|
|
"value": "2020-06-05T15:58:44+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "c7396f96-ba36-4fb1-b94d-c650d2cb674e",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/e0c1189c63833e6dde70198558dc92b95ca0c8050e117dce432d2e9a838b7513/detection/f-e0c1189c63833e6dde70198558dc92b95ca0c8050e117dce432d2e9a838b7513-1591372724"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682340",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "8fdf84f4-a0aa-4b8b-bda3-0c0aba0fa844",
|
|
|
|
"value": "5/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682541",
|
|
|
|
"uuid": "7c7cd57a-b804-4dde-bded-f75c3e3cf6ae",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "7c7cd57a-b804-4dde-bded-f75c3e3cf6ae",
|
|
|
|
"referenced_uuid": "11525246-c1d8-4d98-99ec-1951d92b8038",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-2480-4784-81d9-457302de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "ae221765-eb50-4a9c-9f2f-477c175ff099",
|
|
|
|
"value": "04edfbe9c3783bfe6b2c90f5ea731073"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "a5fdb4f4-e06e-4ab0-94a5-9da76625b455",
|
|
|
|
"value": "2fdfa996afedbeed158cbb95fbc15a7f159328b6"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "e916c1bf-f19d-4c8f-a6c2-7a8dd4c6971e",
|
|
|
|
"value": "191832476af317aabe90cff7b0f16241acd8df9ee44a476bd1d206a138de6777"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682541",
|
|
|
|
"uuid": "11525246-c1d8-4d98-99ec-1951d92b8038",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "6df539f5-5045-4df9-82ed-6ecd3f2a9e31",
|
|
|
|
"value": "2020-06-07T04:45:27+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "94316567-d859-4c24-bab6-810165e533c5",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/191832476af317aabe90cff7b0f16241acd8df9ee44a476bd1d206a138de6777/detection/f-191832476af317aabe90cff7b0f16241acd8df9ee44a476bd1d206a138de6777-1591505127"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682304",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "5e1ccbbe-8cab-49c6-9206-8ceb49fc6cd1",
|
|
|
|
"value": "17/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
|
|
"template_version": "17",
|
|
|
|
"timestamp": "1591682542",
|
|
|
|
"uuid": "073d8a2f-42d5-4382-b61c-5a758e00a5d6",
|
|
|
|
"ObjectReference": [
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"object_uuid": "073d8a2f-42d5-4382-b61c-5a758e00a5d6",
|
|
|
|
"referenced_uuid": "66543bc6-fef9-4a42-9327-3ec832c746bc",
|
2023-04-21 13:25:09 +00:00
|
|
|
"relationship_type": "analysed-with",
|
2023-12-14 14:30:15 +00:00
|
|
|
"timestamp": "1591682548",
|
|
|
|
"uuid": "5edf25f4-b1e8-4208-93f2-42fb02de0b81"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "md5",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "md5",
|
|
|
|
"uuid": "c7203c31-a678-48c5-a79d-9f9b299b85f3",
|
|
|
|
"value": "883a56dbe62c938cc12f7a07ffe37a03"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha1",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha1",
|
|
|
|
"uuid": "4f903eef-2ec7-4d59-9c58-f15075ae65c2",
|
|
|
|
"value": "cc657632fa93f86ab0d09ee2034c1a98df1793fe"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "sha256",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "sha256",
|
|
|
|
"uuid": "1ca65462-3982-43fc-943c-5763b736ec18",
|
|
|
|
"value": "e3a208481ae96872fcf001068171340b53536b9dd00c42e160a3b10ea499ff73"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"comment": "",
|
|
|
|
"deleted": false,
|
|
|
|
"description": "VirusTotal report",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"name": "virustotal-report",
|
|
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
|
|
"template_version": "2",
|
|
|
|
"timestamp": "1591682546",
|
|
|
|
"uuid": "66543bc6-fef9-4a42-9327-3ec832c746bc",
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"category": "Other",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "last-submission",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "datetime",
|
|
|
|
"uuid": "6d2615c5-029f-473f-bd59-764af16b1d72",
|
|
|
|
"value": "2020-06-05T01:35:19+00:00"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "permalink",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "link",
|
|
|
|
"uuid": "86dd80d9-c638-4932-b579-98c5c375cb55",
|
|
|
|
"value": "https://www.virustotal.com/gui/file/e3a208481ae96872fcf001068171340b53536b9dd00c42e160a3b10ea499ff73/detection/f-e3a208481ae96872fcf001068171340b53536b9dd00c42e160a3b10ea499ff73-1591320919"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"comment": "Associated Maldocs",
|
|
|
|
"deleted": false,
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "detection-ratio",
|
|
|
|
"timestamp": "1591682341",
|
|
|
|
"to_ids": false,
|
|
|
|
"type": "text",
|
|
|
|
"uuid": "7d5ec6ed-b909-4f3e-a108-5bb8f3fca830",
|
|
|
|
"value": "2/60"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
}
|
2023-04-21 13:25:09 +00:00
|
|
|
]
|
2023-12-14 14:30:15 +00:00
|
|
|
}
|
2023-04-21 13:25:09 +00:00
|
|
|
}
|