{ "type": "bundle", "id": "bundle--5af5a46d-52e8-4740-997c-56790acd0835", "objects": [ { "type": "identity", "spec_version": "2.1", "id": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-15T15:49:20.000Z", "modified": "2018-05-15T15:49:20.000Z", "name": "Synovus Financial", "identity_class": "organization" }, { "type": "report", "spec_version": "2.1", "id": "report--5af5a46d-52e8-4740-997c-56790acd0835", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-15T15:49:20.000Z", "modified": "2018-05-15T15:49:20.000Z", "name": "Late Emotet yesterday 5/8/2018", "published": "2018-05-15T16:15:00Z", "object_refs": [ "indicator--c695e058-ae6b-4b14-aaf9-b970ceef7172", "indicator--44e80590-a0f1-4bc7-b077-a801bb70f4cf", "indicator--d8f8b4f9-c450-430d-9578-6db6f9151d22", "indicator--95c15d64-1df6-4184-ab74-8fd856542a7a", "indicator--dc819b9d-c67b-4782-aae3-5a24ff795b6e", "indicator--11ee6bcd-d8e0-44c5-9ae9-3911db3d497d", "indicator--04e7b369-6287-4dd5-9443-2539116d576b", "indicator--dcbe53ce-80b6-44c4-9359-4ec4d1d30ff1", "indicator--465b2446-dc98-4f97-b513-b9d5f4e96039", "indicator--316096c9-71d5-4b53-a5e0-37d7548af1a1", "indicator--776d5031-c1fc-4ab1-bc99-ae1bc748f66f", "indicator--a08de967-2d1c-4161-bc07-244ac80e75b4", "indicator--676c0164-90cc-4ec5-acd1-1d63930cd9f7", "indicator--6588ca8d-baf2-423a-9a8e-5f143b8c47df", "indicator--ca2c98f9-2968-412e-bd58-3656946538f9", "indicator--62b1d801-aafa-4f87-9f12-401d306c2c60", "indicator--17358ae3-0fee-457d-8ac7-1c00e7ea40c5", "indicator--fccf2413-43b9-4ded-a61b-7924930a7ef2", "indicator--32bf3446-f9e5-4481-80e0-d1a3e3cec01d", "indicator--fdfac100-16bd-4121-88f5-7fd2f3dd3fea", "indicator--5ff2a5f7-5510-451f-8971-8bbfbdee56e9", "indicator--4b3c3165-520a-4d86-810f-db8084c48dfe", "indicator--6837e7d6-c227-40be-af43-1e1f547e31f4", "indicator--fac3c165-d8f4-4c1a-a7ea-9ba4d3bf42c7", "indicator--0818affb-6231-4ed8-94cf-7c2bf444dae6", "indicator--53ce7e29-0fb7-4f37-a3d2-91bc67fb3e30", "indicator--4aaeabb2-5e2f-4dd5-8315-7006fe13758f", "indicator--82426562-9dcb-4ae8-99a0-dd160a4710a4", "indicator--e12ffd2c-dd46-4f80-a8d4-25fca65a5825", "indicator--96b22acb-588f-4257-b114-11358e9762db", "indicator--2ad95171-0f12-475a-b343-ab69e80dc920", "indicator--b4fd4cfa-7e8b-47cc-a5f0-739581a6e2b3", "indicator--f3f20da0-2f3f-46dc-879d-4e033ec81f89", "indicator--c1d1c456-5d73-4286-a0fa-068f8844b2ed", "indicator--903ca4e6-c48d-47f6-a3f2-8a26f51b88d5", "indicator--e91dd2cb-55d3-4ea4-8e1a-2c05ef4d0de0", "indicator--6272b98f-fab7-4949-869f-bb45586d6c47", "indicator--acc6ed47-b6c1-4e8a-bc72-c21141b09670", "indicator--2e26029d-cdd7-4d43-aa56-f5019b637149", "indicator--36e060a5-cdfd-4033-8e36-06cd6c76fc1b", "indicator--fa1bc5bc-9949-4833-8172-3cd198476298", "indicator--fc683a62-0a13-4eea-bdc7-0fb1d9353512", "indicator--54848155-818d-41fe-98e1-b0847dedad68", "indicator--6767c5c1-7516-4dcc-aa15-f4d74730cf81", "indicator--50750f6b-f746-4055-81e2-7123be6c0d65", "indicator--3eb4cba2-3f09-4619-b294-576a383ffbf3", "indicator--1e8c9f08-b701-4391-a923-dff8bf7c2cc8", "indicator--9ccc2c51-83bb-41db-ac32-d1460a2afa47", "indicator--d44c0c6c-4bc1-4c22-9378-f4c57ad7237c", "indicator--9aae2214-66f8-4041-8d25-40f263f058e8", "indicator--62a32a48-3265-4994-94e3-d7544fd0b4ba", "indicator--4b3a84ed-0f9b-48ef-94e4-e3bf43eeebee", "indicator--78041a53-cf47-4d69-8fd7-92958c4dadee", "indicator--460d4aa4-4ada-43ac-9433-a15d8c0cccdf", "indicator--9dbf09b1-e260-4d41-af1c-b59c36822c91", "indicator--ece4e2f2-e147-4a38-8d6a-585819d9598f", "indicator--8c4e7f5f-6ee9-47ff-9696-ab16fe3ca168", "indicator--9d4fd432-ad0e-4827-b1f5-4531de4b3c27", "observed-data--8cfba633-3aac-43e4-8c0a-14a9607bad03", "network-traffic--8cfba633-3aac-43e4-8c0a-14a9607bad03", "ipv4-addr--8cfba633-3aac-43e4-8c0a-14a9607bad03", "observed-data--0e1da33e-065e-4e59-80cc-b4cbd8027de9", "network-traffic--0e1da33e-065e-4e59-80cc-b4cbd8027de9", "ipv4-addr--0e1da33e-065e-4e59-80cc-b4cbd8027de9", "observed-data--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593", "network-traffic--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593", "ipv4-addr--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593", "observed-data--3338fb06-339b-408d-9e9c-1f1d3521648a", "network-traffic--3338fb06-339b-408d-9e9c-1f1d3521648a", "ipv4-addr--3338fb06-339b-408d-9e9c-1f1d3521648a", "observed-data--3a4db54d-6c15-46da-a66d-c685dc147d0e", "network-traffic--3a4db54d-6c15-46da-a66d-c685dc147d0e", "ipv4-addr--3a4db54d-6c15-46da-a66d-c685dc147d0e", "observed-data--c94ccb79-d1b5-481b-b6dc-fa7024739417", "network-traffic--c94ccb79-d1b5-481b-b6dc-fa7024739417", "ipv4-addr--c94ccb79-d1b5-481b-b6dc-fa7024739417", "observed-data--466d4ca1-5838-484c-9d36-7480a35e55ba", "network-traffic--466d4ca1-5838-484c-9d36-7480a35e55ba", "ipv4-addr--466d4ca1-5838-484c-9d36-7480a35e55ba", "observed-data--6c913421-5949-492d-bafc-8895027431c1", "network-traffic--6c913421-5949-492d-bafc-8895027431c1", "ipv4-addr--6c913421-5949-492d-bafc-8895027431c1", "observed-data--45e35989-b850-4f36-80a1-b8cc1b3b239c", "network-traffic--45e35989-b850-4f36-80a1-b8cc1b3b239c", "ipv4-addr--45e35989-b850-4f36-80a1-b8cc1b3b239c", "observed-data--547a0ad8-ecb8-440f-99aa-3849fd42f3b5", "network-traffic--547a0ad8-ecb8-440f-99aa-3849fd42f3b5", "ipv4-addr--547a0ad8-ecb8-440f-99aa-3849fd42f3b5", "observed-data--61164945-d81f-4d25-8970-c98d44aa0b07", "network-traffic--61164945-d81f-4d25-8970-c98d44aa0b07", "ipv4-addr--61164945-d81f-4d25-8970-c98d44aa0b07", "observed-data--6533ca87-423d-423f-bc70-93187ccf8b32", "network-traffic--6533ca87-423d-423f-bc70-93187ccf8b32", "ipv4-addr--6533ca87-423d-423f-bc70-93187ccf8b32" ], "labels": [ "Threat-Report", "misp:tool=\"MISP-STIX-Converter\"", "misp-galaxy:tool=\"Emotet\"" ], "object_marking_refs": [ "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--c695e058-ae6b-4b14-aaf9-b970ceef7172", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:10:56.000Z", "modified": "2018-05-11T14:10:56.000Z", "pattern": "[file:hashes.MD5 = 'a32e1eb8dcd4093525287de2b424c5a9']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:10:56Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Payload delivery" } ], "labels": [ "misp:type=\"md5\"", "misp:category=\"Payload delivery\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--44e80590-a0f1-4bc7-b077-a801bb70f4cf", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:10:59.000Z", "modified": "2018-05-11T14:10:59.000Z", "pattern": "[domain-name:value = 'beton.de']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:10:59Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--d8f8b4f9-c450-430d-9578-6db6f9151d22", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:02.000Z", "modified": "2018-05-11T14:11:02.000Z", "pattern": "[url:value = 'http://equilibreocupacional.com.br/4MEfSSwuuI/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:02Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--95c15d64-1df6-4184-ab74-8fd856542a7a", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:05.000Z", "modified": "2018-05-11T14:11:05.000Z", "pattern": "[domain-name:value = 'equilibreocupacional.com.br']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:05Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--dc819b9d-c67b-4782-aae3-5a24ff795b6e", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:08.000Z", "modified": "2018-05-11T14:11:08.000Z", "pattern": "[url:value = 'http://die3t.de/0L7WojLqP/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:08Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--11ee6bcd-d8e0-44c5-9ae9-3911db3d497d", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:11.000Z", "modified": "2018-05-11T14:11:11.000Z", "pattern": "[domain-name:value = 'die3t.de']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:11Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--04e7b369-6287-4dd5-9443-2539116d576b", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:14.000Z", "modified": "2018-05-11T14:11:14.000Z", "pattern": "[url:value = 'http://chuckblier.com/cgi8B8BT/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:14Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--dcbe53ce-80b6-44c4-9359-4ec4d1d30ff1", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:17.000Z", "modified": "2018-05-11T14:11:17.000Z", "pattern": "[domain-name:value = 'chuckblier.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:17Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--465b2446-dc98-4f97-b513-b9d5f4e96039", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:20.000Z", "modified": "2018-05-11T14:11:20.000Z", "pattern": "[url:value = 'http://candacejean.com/1cQoc0VkUhT1U2/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:20Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--316096c9-71d5-4b53-a5e0-37d7548af1a1", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:23.000Z", "modified": "2018-05-11T14:11:23.000Z", "pattern": "[domain-name:value = 'candacejean.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:23Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--776d5031-c1fc-4ab1-bc99-ae1bc748f66f", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:26.000Z", "modified": "2018-05-11T14:11:26.000Z", "pattern": "[url:value = 'http://agridron.com/IVJyv3fqg/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:26Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--a08de967-2d1c-4161-bc07-244ac80e75b4", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:29.000Z", "modified": "2018-05-11T14:11:29.000Z", "pattern": "[domain-name:value = 'agridron.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:29Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--676c0164-90cc-4ec5-acd1-1d63930cd9f7", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:32.000Z", "modified": "2018-05-11T14:11:32.000Z", "pattern": "[url:value = 'http://clickdeal.us/TXvVSYUYasoPT6/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:32Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--6588ca8d-baf2-423a-9a8e-5f143b8c47df", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:35.000Z", "modified": "2018-05-11T14:11:35.000Z", "pattern": "[domain-name:value = 'clickdeal.us']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:35Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--ca2c98f9-2968-412e-bd58-3656946538f9", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:38.000Z", "modified": "2018-05-11T14:11:38.000Z", "pattern": "[url:value = 'http://n3rdz.com/oftHLj8LC/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:38Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--62b1d801-aafa-4f87-9f12-401d306c2c60", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:41.000Z", "modified": "2018-05-11T14:11:41.000Z", "pattern": "[domain-name:value = 'n3rdz.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:41Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--17358ae3-0fee-457d-8ac7-1c00e7ea40c5", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:44.000Z", "modified": "2018-05-11T14:11:44.000Z", "pattern": "[url:value = 'http://cninin.com/app/2zxBimojWmD1NNX/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:44Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--fccf2413-43b9-4ded-a61b-7924930a7ef2", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:47.000Z", "modified": "2018-05-11T14:11:47.000Z", "pattern": "[domain-name:value = 'cninin.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:47Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--32bf3446-f9e5-4481-80e0-d1a3e3cec01d", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:50.000Z", "modified": "2018-05-11T14:11:50.000Z", "pattern": "[url:value = 'http://hydrocarbonreports.com/9ZUPGfuBm8RS5X/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:50Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--fdfac100-16bd-4121-88f5-7fd2f3dd3fea", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:53.000Z", "modified": "2018-05-11T14:11:53.000Z", "pattern": "[domain-name:value = 'hydrocarbonreports.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:53Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--5ff2a5f7-5510-451f-8971-8bbfbdee56e9", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:56.000Z", "modified": "2018-05-11T14:11:56.000Z", "pattern": "[url:value = 'http://amazingmike.net/70vl32a/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:56Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--4b3c3165-520a-4d86-810f-db8084c48dfe", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:11:59.000Z", "modified": "2018-05-11T14:11:59.000Z", "pattern": "[domain-name:value = 'amazingmike.net']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:11:59Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--6837e7d6-c227-40be-af43-1e1f547e31f4", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:02.000Z", "modified": "2018-05-11T14:12:02.000Z", "pattern": "[url:value = 'http://pchost-aeronet.hu/UH4XNeRkct9pw/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:02Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--fac3c165-d8f4-4c1a-a7ea-9ba4d3bf42c7", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:06.000Z", "modified": "2018-05-11T14:12:06.000Z", "pattern": "[domain-name:value = 'pchost-aeronet.hu']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:06Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--0818affb-6231-4ed8-94cf-7c2bf444dae6", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:09.000Z", "modified": "2018-05-11T14:12:09.000Z", "pattern": "[url:value = 'http://cripliver.com/KgqyGXc/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:09Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--53ce7e29-0fb7-4f37-a3d2-91bc67fb3e30", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:12.000Z", "modified": "2018-05-11T14:12:12.000Z", "pattern": "[domain-name:value = 'cripliver.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:12Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--4aaeabb2-5e2f-4dd5-8315-7006fe13758f", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:15.000Z", "modified": "2018-05-11T14:12:15.000Z", "pattern": "[url:value = 'http://davehale.co.uk/hdKwEZlx9TFo/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:15Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--82426562-9dcb-4ae8-99a0-dd160a4710a4", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:18.000Z", "modified": "2018-05-11T14:12:18.000Z", "pattern": "[domain-name:value = 'davehale.co.uk']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:18Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--e12ffd2c-dd46-4f80-a8d4-25fca65a5825", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:21.000Z", "modified": "2018-05-11T14:12:21.000Z", "pattern": "[url:value = 'http://carlotrhy.cz/ZLy2tPiEAZcWXyI/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:21Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--96b22acb-588f-4257-b114-11358e9762db", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:24.000Z", "modified": "2018-05-11T14:12:24.000Z", "pattern": "[domain-name:value = 'carlotrhy.cz']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:24Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--2ad95171-0f12-475a-b343-ab69e80dc920", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:27.000Z", "modified": "2018-05-11T14:12:27.000Z", "pattern": "[url:value = 'http://amborzasco.it/foto/sagra2009/nKo6BtjKK/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:27Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--b4fd4cfa-7e8b-47cc-a5f0-739581a6e2b3", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:30.000Z", "modified": "2018-05-11T14:12:30.000Z", "pattern": "[domain-name:value = 'amborzasco.it']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:30Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--f3f20da0-2f3f-46dc-879d-4e033ec81f89", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:33.000Z", "modified": "2018-05-11T14:12:33.000Z", "pattern": "[url:value = 'http://bobcook.ca/03neOjHto/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:33Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--c1d1c456-5d73-4286-a0fa-068f8844b2ed", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:36.000Z", "modified": "2018-05-11T14:12:36.000Z", "pattern": "[domain-name:value = 'bobcook.ca']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:36Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--903ca4e6-c48d-47f6-a3f2-8a26f51b88d5", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:39.000Z", "modified": "2018-05-11T14:12:39.000Z", "pattern": "[url:value = 'http://aussiescanners.com/inJ8OR3z6JCp5r/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:39Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--e91dd2cb-55d3-4ea4-8e1a-2c05ef4d0de0", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:42.000Z", "modified": "2018-05-11T14:12:42.000Z", "pattern": "[domain-name:value = 'aussiescanners.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:42Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--6272b98f-fab7-4949-869f-bb45586d6c47", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:45.000Z", "modified": "2018-05-11T14:12:45.000Z", "pattern": "[url:value = 'http://crazy-systems.com/1VtpMEB/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:45Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--acc6ed47-b6c1-4e8a-bc72-c21141b09670", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:48.000Z", "modified": "2018-05-11T14:12:48.000Z", "pattern": "[domain-name:value = 'crazy-systems.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:48Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--2e26029d-cdd7-4d43-aa56-f5019b637149", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:51.000Z", "modified": "2018-05-11T14:12:51.000Z", "pattern": "[url:value = 'http://limitedwisdom.com/yOVlSpGAzc2hEnp/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:51Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--36e060a5-cdfd-4033-8e36-06cd6c76fc1b", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:54.000Z", "modified": "2018-05-11T14:12:54.000Z", "pattern": "[domain-name:value = 'limitedwisdom.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:54Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--fa1bc5bc-9949-4833-8172-3cd198476298", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:12:57.000Z", "modified": "2018-05-11T14:12:57.000Z", "pattern": "[url:value = 'http://cmeaststar.de/mYB2NNQrOx5RRe/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:12:57Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--fc683a62-0a13-4eea-bdc7-0fb1d9353512", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:00.000Z", "modified": "2018-05-11T14:13:00.000Z", "pattern": "[domain-name:value = 'cmeaststar.de']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:00Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--54848155-818d-41fe-98e1-b0847dedad68", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:03.000Z", "modified": "2018-05-11T14:13:03.000Z", "pattern": "[url:value = 'http://bluemirage.com/DtQMtqnPLPxF/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:03Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--6767c5c1-7516-4dcc-aa15-f4d74730cf81", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:06.000Z", "modified": "2018-05-11T14:13:06.000Z", "pattern": "[domain-name:value = 'bluemirage.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:06Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--50750f6b-f746-4055-81e2-7123be6c0d65", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:09.000Z", "modified": "2018-05-11T14:13:09.000Z", "pattern": "[url:value = 'http://bgba-visser.de/waVoapzdQTMlt4d/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:09Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--3eb4cba2-3f09-4619-b294-576a383ffbf3", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:12.000Z", "modified": "2018-05-11T14:13:12.000Z", "pattern": "[domain-name:value = 'bgba-visser.de']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:12Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--1e8c9f08-b701-4391-a923-dff8bf7c2cc8", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:15.000Z", "modified": "2018-05-11T14:13:15.000Z", "pattern": "[url:value = 'http://ccsweb.com.br/8PFNndSkq9cIsx/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:15Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--9ccc2c51-83bb-41db-ac32-d1460a2afa47", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:18.000Z", "modified": "2018-05-11T14:13:18.000Z", "pattern": "[domain-name:value = 'ccsweb.com.br']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:18Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--d44c0c6c-4bc1-4c22-9378-f4c57ad7237c", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:21.000Z", "modified": "2018-05-11T14:13:21.000Z", "pattern": "[url:value = 'http://beamdream.de/jNjOK/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:21Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--9aae2214-66f8-4041-8d25-40f263f058e8", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:24.000Z", "modified": "2018-05-11T14:13:24.000Z", "pattern": "[domain-name:value = 'beamdream.de']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:24Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--62a32a48-3265-4994-94e3-d7544fd0b4ba", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:27.000Z", "modified": "2018-05-11T14:13:27.000Z", "pattern": "[url:value = 'http://boomer75.de/vIfiK/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:27Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--4b3a84ed-0f9b-48ef-94e4-e3bf43eeebee", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:30.000Z", "modified": "2018-05-11T14:13:30.000Z", "pattern": "[domain-name:value = 'boomer75.de']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:30Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--78041a53-cf47-4d69-8fd7-92958c4dadee", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:33.000Z", "modified": "2018-05-11T14:13:33.000Z", "pattern": "[url:value = 'https://buschwein.de/UOgKvV/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:33Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--460d4aa4-4ada-43ac-9433-a15d8c0cccdf", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:36.000Z", "modified": "2018-05-11T14:13:36.000Z", "pattern": "[domain-name:value = 'buschwein.de']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:36Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--9dbf09b1-e260-4d41-af1c-b59c36822c91", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:39.000Z", "modified": "2018-05-11T14:13:39.000Z", "pattern": "[url:value = 'https://chergo.es/9feiuN/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:39Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--ece4e2f2-e147-4a38-8d6a-585819d9598f", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:42.000Z", "modified": "2018-05-11T14:13:42.000Z", "pattern": "[domain-name:value = 'chergo.es']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:42Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--8c4e7f5f-6ee9-47ff-9696-ab16fe3ca168", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:45.000Z", "modified": "2018-05-11T14:13:45.000Z", "pattern": "[url:value = 'http://awas.ws/Fzz7/']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:45Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--9d4fd432-ad0e-4827-b1f5-4531de4b3c27", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-11T14:13:48.000Z", "modified": "2018-05-11T14:13:48.000Z", "pattern": "[domain-name:value = 'awas.ws']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2018-05-11T14:13:48Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--8cfba633-3aac-43e4-8c0a-14a9607bad03", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--8cfba633-3aac-43e4-8c0a-14a9607bad03", "ipv4-addr--8cfba633-3aac-43e4-8c0a-14a9607bad03" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--8cfba633-3aac-43e4-8c0a-14a9607bad03", "dst_ref": "ipv4-addr--8cfba633-3aac-43e4-8c0a-14a9607bad03", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--8cfba633-3aac-43e4-8c0a-14a9607bad03", "value": "50.37.10.78" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--0e1da33e-065e-4e59-80cc-b4cbd8027de9", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--0e1da33e-065e-4e59-80cc-b4cbd8027de9", "ipv4-addr--0e1da33e-065e-4e59-80cc-b4cbd8027de9" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--0e1da33e-065e-4e59-80cc-b4cbd8027de9", "dst_ref": "ipv4-addr--0e1da33e-065e-4e59-80cc-b4cbd8027de9", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--0e1da33e-065e-4e59-80cc-b4cbd8027de9", "value": "75.128.208.218" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593", "ipv4-addr--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593", "dst_ref": "ipv4-addr--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593", "value": "70.167.17.7" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--3338fb06-339b-408d-9e9c-1f1d3521648a", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--3338fb06-339b-408d-9e9c-1f1d3521648a", "ipv4-addr--3338fb06-339b-408d-9e9c-1f1d3521648a" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--3338fb06-339b-408d-9e9c-1f1d3521648a", "dst_ref": "ipv4-addr--3338fb06-339b-408d-9e9c-1f1d3521648a", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--3338fb06-339b-408d-9e9c-1f1d3521648a", "value": "72.49.55.42" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--3a4db54d-6c15-46da-a66d-c685dc147d0e", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--3a4db54d-6c15-46da-a66d-c685dc147d0e", "ipv4-addr--3a4db54d-6c15-46da-a66d-c685dc147d0e" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--3a4db54d-6c15-46da-a66d-c685dc147d0e", "dst_ref": "ipv4-addr--3a4db54d-6c15-46da-a66d-c685dc147d0e", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--3a4db54d-6c15-46da-a66d-c685dc147d0e", "value": "65.25.17.131" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--c94ccb79-d1b5-481b-b6dc-fa7024739417", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--c94ccb79-d1b5-481b-b6dc-fa7024739417", "ipv4-addr--c94ccb79-d1b5-481b-b6dc-fa7024739417" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--c94ccb79-d1b5-481b-b6dc-fa7024739417", "dst_ref": "ipv4-addr--c94ccb79-d1b5-481b-b6dc-fa7024739417", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--c94ccb79-d1b5-481b-b6dc-fa7024739417", "value": "173.78.254.86" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--466d4ca1-5838-484c-9d36-7480a35e55ba", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--466d4ca1-5838-484c-9d36-7480a35e55ba", "ipv4-addr--466d4ca1-5838-484c-9d36-7480a35e55ba" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--466d4ca1-5838-484c-9d36-7480a35e55ba", "dst_ref": "ipv4-addr--466d4ca1-5838-484c-9d36-7480a35e55ba", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--466d4ca1-5838-484c-9d36-7480a35e55ba", "value": "105.228.39.7" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--6c913421-5949-492d-bafc-8895027431c1", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--6c913421-5949-492d-bafc-8895027431c1", "ipv4-addr--6c913421-5949-492d-bafc-8895027431c1" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--6c913421-5949-492d-bafc-8895027431c1", "dst_ref": "ipv4-addr--6c913421-5949-492d-bafc-8895027431c1", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--6c913421-5949-492d-bafc-8895027431c1", "value": "179.52.46.11" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--45e35989-b850-4f36-80a1-b8cc1b3b239c", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--45e35989-b850-4f36-80a1-b8cc1b3b239c", "ipv4-addr--45e35989-b850-4f36-80a1-b8cc1b3b239c" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--45e35989-b850-4f36-80a1-b8cc1b3b239c", "dst_ref": "ipv4-addr--45e35989-b850-4f36-80a1-b8cc1b3b239c", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--45e35989-b850-4f36-80a1-b8cc1b3b239c", "value": "192.227.112.57" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--547a0ad8-ecb8-440f-99aa-3849fd42f3b5", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--547a0ad8-ecb8-440f-99aa-3849fd42f3b5", "ipv4-addr--547a0ad8-ecb8-440f-99aa-3849fd42f3b5" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--547a0ad8-ecb8-440f-99aa-3849fd42f3b5", "dst_ref": "ipv4-addr--547a0ad8-ecb8-440f-99aa-3849fd42f3b5", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--547a0ad8-ecb8-440f-99aa-3849fd42f3b5", "value": "70.183.98.85" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--61164945-d81f-4d25-8970-c98d44aa0b07", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--61164945-d81f-4d25-8970-c98d44aa0b07", "ipv4-addr--61164945-d81f-4d25-8970-c98d44aa0b07" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--61164945-d81f-4d25-8970-c98d44aa0b07", "dst_ref": "ipv4-addr--61164945-d81f-4d25-8970-c98d44aa0b07", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--61164945-d81f-4d25-8970-c98d44aa0b07", "value": "69.129.91.38" }, { "type": "observed-data", "spec_version": "2.1", "id": "observed-data--6533ca87-423d-423f-bc70-93187ccf8b32", "created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a", "created": "2018-05-14T11:54:48.000Z", "modified": "2018-05-14T11:54:48.000Z", "first_observed": "2018-05-14T11:54:48Z", "last_observed": "2018-05-14T11:54:48Z", "number_observed": 1, "object_refs": [ "network-traffic--6533ca87-423d-423f-bc70-93187ccf8b32", "ipv4-addr--6533ca87-423d-423f-bc70-93187ccf8b32" ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"" ] }, { "type": "network-traffic", "spec_version": "2.1", "id": "network-traffic--6533ca87-423d-423f-bc70-93187ccf8b32", "dst_ref": "ipv4-addr--6533ca87-423d-423f-bc70-93187ccf8b32", "protocols": [ "tcp" ] }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--6533ca87-423d-423f-bc70-93187ccf8b32", "value": "82.211.30.202" }, { "type": "marking-definition", "spec_version": "2.1", "id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9", "created": "2017-01-20T00:00:00.000Z", "definition_type": "tlp", "name": "TLP:WHITE", "definition": { "tlp": "white" } } ] }