{ "Event": { "analysis": "0", "date": "2016-09-27", "extends_uuid": "", "info": "Malspam 2016-09-27 (.wsf in .zip) - campaign: \"{integer}.zip\"", "publish_timestamp": "1474980116", "published": true, "threat_level_id": "3", "timestamp": "1474979611", "uuid": "57ea66db-7dd0-4c43-823f-4d2a950d210f", "Orgc": { "name": "CIRCL", "uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f" }, "Tag": [ { "colour": "#ffffff", "local": "0", "name": "tlp:white", "relationship_type": "" }, { "colour": "#3b7500", "local": "0", "name": "circl:incident-classification=\"malware\"", "relationship_type": "" } ], "Attribute": [ { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979591", "to_ids": true, "type": "ip-dst", "uuid": "57ea6707-67c8-4859-98d4-4f9c950d210f", "value": "103.6.196.13" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979591", "to_ids": true, "type": "ip-dst", "uuid": "57ea6707-1668-4ce4-821e-4976950d210f", "value": "109.203.104.133" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979592", "to_ids": true, "type": "ip-dst", "uuid": "57ea6708-b834-4722-8961-451c950d210f", "value": "122.114.108.176" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979592", "to_ids": true, "type": "ip-dst", "uuid": "57ea6708-c090-4438-8aaf-4438950d210f", "value": "143.95.33.61" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979592", "to_ids": true, "type": "ip-dst", "uuid": "57ea6708-72e4-496f-a82e-4834950d210f", "value": "151.80.185.209" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979592", "to_ids": true, "type": "ip-dst", "uuid": "57ea6708-62fc-42b7-bf5f-48b7950d210f", "value": "160.153.32.93" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979593", "to_ids": true, "type": "ip-dst", "uuid": "57ea6709-44fc-46c9-946b-46d9950d210f", "value": "173.255.131.109" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979593", "to_ids": true, "type": "ip-dst", "uuid": "57ea6709-3d88-400a-a31e-4d0e950d210f", "value": "174.127.105.121" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979593", "to_ids": true, "type": "ip-dst", "uuid": "57ea6709-eecc-427e-8ce9-4440950d210f", "value": "185.119.173.48" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979593", "to_ids": true, "type": "ip-dst", "uuid": "57ea6709-3d18-40ce-8cf5-4532950d210f", "value": "200.122.128.189" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979594", "to_ids": true, "type": "ip-dst", "uuid": "57ea670a-6554-467a-aa49-4a9e950d210f", "value": "202.150.213.222" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979594", "to_ids": true, "type": "ip-dst", "uuid": "57ea670a-6c1c-4caa-9f92-4365950d210f", "value": "207.32.188.45" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979594", "to_ids": true, "type": "ip-dst", "uuid": "57ea670a-d7b8-4da0-9671-48a7950d210f", "value": "216.144.240.190" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979594", "to_ids": true, "type": "ip-dst", "uuid": "57ea670a-8028-436a-9ef3-4a4a950d210f", "value": "216.239.140.24" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979595", "to_ids": true, "type": "ip-dst", "uuid": "57ea670b-b338-426a-bcdd-485c950d210f", "value": "217.195.193.38" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979595", "to_ids": true, "type": "ip-dst", "uuid": "57ea670b-462c-4096-b882-4eda950d210f", "value": "23.227.132.71" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979595", "to_ids": true, "type": "ip-dst", "uuid": "57ea670b-c0e8-41c2-828a-4f2a950d210f", "value": "41.220.216.254" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979595", "to_ids": true, "type": "ip-dst", "uuid": "57ea670b-d4d4-4b78-aa94-4c12950d210f", "value": "45.32.233.222" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979596", "to_ids": true, "type": "ip-dst", "uuid": "57ea670c-e144-49ac-9583-45db950d210f", "value": "46.183.167.29" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979596", "to_ids": true, "type": "ip-dst", "uuid": "57ea670c-5364-446d-ab17-4e2c950d210f", "value": "46.19.218.68" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979596", "to_ids": true, "type": "ip-dst", "uuid": "57ea670c-12cc-4c20-939e-4ffb950d210f", "value": "64.15.152.254" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979596", "to_ids": true, "type": "ip-dst", "uuid": "57ea670c-ffbc-4906-a14f-49a1950d210f", "value": "69.90.163.117" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979597", "to_ids": true, "type": "ip-dst", "uuid": "57ea670d-13e0-40cb-a808-40be950d210f", "value": "75.102.25.148" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979597", "to_ids": true, "type": "ip-dst", "uuid": "57ea670d-d390-4f9b-9262-46e2950d210f", "value": "77.245.155.239" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979597", "to_ids": true, "type": "ip-dst", "uuid": "57ea670d-89c8-4376-a1fd-429b950d210f", "value": "81.0.217.3" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979597", "to_ids": true, "type": "ip-dst", "uuid": "57ea670d-7974-4a19-8fb2-44c1950d210f", "value": "92.43.113.68" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979597", "to_ids": true, "type": "ip-dst", "uuid": "57ea670e-14b4-48fb-b18f-4503950d210f", "value": "96.30.36.212" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979598", "to_ids": true, "type": "domain", "uuid": "57ea670e-de34-4482-9d29-4141950d210f", "value": "amsterdamrent.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979598", "to_ids": true, "type": "domain", "uuid": "57ea670e-3c88-48b2-a8c5-4e22950d210f", "value": "bezdeals.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979598", "to_ids": true, "type": "domain", "uuid": "57ea670e-fc80-45e4-b535-48b9950d210f", "value": "brambory.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979598", "to_ids": true, "type": "domain", "uuid": "57ea670e-feac-4a19-9cd7-4ce5950d210f", "value": "ccaglobal.org" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979599", "to_ids": true, "type": "domain", "uuid": "57ea670f-398c-4b4d-91d5-4a9e950d210f", "value": "cg3dstudio.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979599", "to_ids": true, "type": "domain", "uuid": "57ea670f-8200-4494-b488-4ac1950d210f", "value": "cimetieremontroyal.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979599", "to_ids": true, "type": "domain", "uuid": "57ea670f-f2b0-4a93-948e-4c89950d210f", "value": "dashandling.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979599", "to_ids": true, "type": "domain", "uuid": "57ea670f-5cf8-4dd4-bd89-4a81950d210f", "value": "deadly-city.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979600", "to_ids": true, "type": "domain", "uuid": "57ea6710-bacc-4e0b-8858-4a6c950d210f", "value": "dealerjoin.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979600", "to_ids": true, "type": "domain", "uuid": "57ea6710-f1ac-47b6-9288-4b6f950d210f", "value": "fixturesexpress.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979600", "to_ids": true, "type": "domain", "uuid": "57ea6710-05f4-4468-a6d1-4677950d210f", "value": "gouri-gouri.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979600", "to_ids": true, "type": "domain", "uuid": "57ea6710-8f6c-4d03-a5f6-4a86950d210f", "value": "grijspaardt.nl" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979601", "to_ids": true, "type": "domain", "uuid": "57ea6711-4cfc-4402-82c8-45c9950d210f", "value": "homemadebakeryindonesia.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979601", "to_ids": true, "type": "url", "uuid": "57ea6711-3fdc-4309-9487-4667950d210f", "value": "http://amsterdamrent.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979601", "to_ids": true, "type": "url", "uuid": "57ea6711-7fe0-45cb-9d8c-4115950d210f", "value": "http://bezdeals.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979601", "to_ids": true, "type": "url", "uuid": "57ea6711-34a4-47aa-8890-4dd4950d210f", "value": "http://brambory.net/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979602", "to_ids": true, "type": "url", "uuid": "57ea6712-bef8-4879-a409-4c7a950d210f", "value": "http://ccaglobal.org/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979602", "to_ids": true, "type": "url", "uuid": "57ea6712-50f8-4557-b179-4557950d210f", "value": "http://cg3dstudio.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979602", "to_ids": true, "type": "url", "uuid": "57ea6712-c534-4d7b-80a4-45e9950d210f", "value": "http://cimetieremontroyal.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979602", "to_ids": true, "type": "url", "uuid": "57ea6712-3ea0-4803-9dd3-457e950d210f", "value": "http://dashandling.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979603", "to_ids": true, "type": "url", "uuid": "57ea6713-5968-42bc-a2f6-4562950d210f", "value": "http://deadly-city.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979603", "to_ids": true, "type": "url", "uuid": "57ea6713-1ea8-45bc-99ec-49ab950d210f", "value": "http://dealerjoin.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979603", "to_ids": true, "type": "url", "uuid": "57ea6713-45ac-41b5-8fa3-4bf4950d210f", "value": "http://fixturesexpress.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979603", "to_ids": true, "type": "url", "uuid": "57ea6713-ea64-4d18-8e80-478a950d210f", "value": "http://gouri-gouri.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979604", "to_ids": true, "type": "url", "uuid": "57ea6714-0148-43f4-a584-4464950d210f", "value": "http://grijspaardt.nl/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979604", "to_ids": true, "type": "url", "uuid": "57ea6714-e87c-47ae-9704-4c68950d210f", "value": "http://homemadebakeryindonesia.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979604", "to_ids": true, "type": "url", "uuid": "57ea6714-67d0-429f-9d75-4d0c950d210f", "value": "http://idealuze.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979604", "to_ids": true, "type": "url", "uuid": "57ea6714-2ebc-439d-a0d5-410d950d210f", "value": "http://intardesign.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979605", "to_ids": true, "type": "url", "uuid": "57ea6715-17f0-4ab0-b1b3-4bac950d210f", "value": "http://johnlesterart.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979605", "to_ids": true, "type": "url", "uuid": "57ea6715-7c08-4e55-aa80-4266950d210f", "value": "http://karacanalbum.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979605", "to_ids": true, "type": "url", "uuid": "57ea6715-2840-43d6-a091-4a2c950d210f", "value": "http://maxtherm.net/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979606", "to_ids": true, "type": "url", "uuid": "57ea6716-5124-4661-a4be-460e950d210f", "value": "http://mediaalias.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979606", "to_ids": true, "type": "url", "uuid": "57ea6716-ef0c-4a9a-9551-45b2950d210f", "value": "http://minoritycounselor.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979606", "to_ids": true, "type": "url", "uuid": "57ea6716-2a0c-4351-b902-4ce9950d210f", "value": "http://nerosk.ru/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979606", "to_ids": true, "type": "url", "uuid": "57ea6716-2a00-4068-a59a-4e0b950d210f", "value": "http://peryskop.biz/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979607", "to_ids": true, "type": "url", "uuid": "57ea6717-5fdc-4ee3-939f-47c9950d210f", "value": "http://profsonstage.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979607", "to_ids": true, "type": "url", "uuid": "57ea6717-fcbc-4dff-92d7-4ac9950d210f", "value": "http://speaklifegreetings.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979607", "to_ids": true, "type": "url", "uuid": "57ea6717-2f00-4720-9aab-4c18950d210f", "value": "http://upav.org/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979607", "to_ids": true, "type": "url", "uuid": "57ea6717-c1b0-4ff7-ae88-449a950d210f", "value": "http://usedtextilemachinerylive.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979608", "to_ids": true, "type": "url", "uuid": "57ea6718-b0c8-46d4-a606-481f950d210f", "value": "http://wssunhui.com/78hceef" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979608", "to_ids": true, "type": "domain", "uuid": "57ea6718-fa68-4657-ae48-4f26950d210f", "value": "idealuze.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979608", "to_ids": true, "type": "domain", "uuid": "57ea6718-71a0-4a9f-92e5-4b9e950d210f", "value": "intardesign.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979608", "to_ids": true, "type": "domain", "uuid": "57ea6718-db6c-4b77-ad6a-4e0a950d210f", "value": "johnlesterart.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979609", "to_ids": true, "type": "domain", "uuid": "57ea6719-1610-40f6-af2c-40e3950d210f", "value": "karacanalbum.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979609", "to_ids": true, "type": "domain", "uuid": "57ea6719-d460-4d5a-a429-4157950d210f", "value": "maxtherm.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979609", "to_ids": true, "type": "domain", "uuid": "57ea6719-5fa8-48e4-8169-491f950d210f", "value": "mediaalias.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979609", "to_ids": true, "type": "domain", "uuid": "57ea6719-cb4c-4fe9-84b7-419f950d210f", "value": "minoritycounselor.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979609", "to_ids": true, "type": "domain", "uuid": "57ea6719-2e10-4099-aa9f-4815950d210f", "value": "nerosk.ru" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979610", "to_ids": true, "type": "domain", "uuid": "57ea671a-5c70-441c-a976-4d04950d210f", "value": "peryskop.biz" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979610", "to_ids": true, "type": "domain", "uuid": "57ea671a-59a4-47fb-8c97-4a5f950d210f", "value": "profsonstage.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979610", "to_ids": true, "type": "domain", "uuid": "57ea671a-6ec8-464a-b186-4d62950d210f", "value": "speaklifegreetings.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979610", "to_ids": true, "type": "domain", "uuid": "57ea671a-6cb0-4be3-b0ba-4908950d210f", "value": "upav.org" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979611", "to_ids": true, "type": "domain", "uuid": "57ea671b-8a98-4b1f-960d-4fd9950d210f", "value": "usedtextilemachinerylive.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1474979611", "to_ids": true, "type": "domain", "uuid": "57ea671b-ad60-41c4-a96b-4609950d210f", "value": "wssunhui.com" } ] } }