{ "type": "bundle", "id": "bundle--57d283a1-9528-4be3-9553-46e5950d210f", "objects": [ { "type": "identity", "spec_version": "2.1", "id": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:12.000Z", "modified": "2016-09-09T12:47:12.000Z", "name": "CIRCL", "identity_class": "organization" }, { "type": "report", "spec_version": "2.1", "id": "report--57d283a1-9528-4be3-9553-46e5950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:12.000Z", "modified": "2016-09-09T12:47:12.000Z", "name": "Malspam 2016-09-09 (.hta in .dzip) - campaign: \"Order confirmation\"", "published": "2016-09-09T12:47:22Z", "object_refs": [ "indicator--57d283dc-e80c-496c-a0af-4fdf950d210f", "indicator--57d283dc-c764-4d52-8777-4845950d210f", "indicator--57d283dc-0bb4-4ee8-9bde-47f4950d210f", "indicator--57d283dc-b700-4006-acd0-4b93950d210f", "indicator--57d283dd-2d84-41fc-94fa-4fe7950d210f", "indicator--57d283dd-7480-453c-a5c7-4a83950d210f", "indicator--57d283dd-9544-4b21-9c34-47ee950d210f", "indicator--57d283dd-bfa8-48ff-912a-41ae950d210f", "indicator--57d283de-7cd0-4c0a-8cf0-40dd950d210f", "indicator--57d283de-cea0-4abb-83c7-4702950d210f", "indicator--57d283de-9c8c-4fcb-bea4-4073950d210f", "indicator--57d283de-370c-4328-bc60-4ad3950d210f", "indicator--57d283de-e540-4245-b0ae-4d9f950d210f", "indicator--57d283df-9ee4-42ca-8835-4480950d210f", "indicator--57d283df-c480-4dac-9868-4252950d210f", "indicator--57d283df-b4bc-42da-9336-45e1950d210f", "indicator--57d283df-f860-4a0e-9bc9-4e16950d210f", "indicator--57d283df-64f8-4422-9f6e-4ee2950d210f", "indicator--57d283e0-ca6c-4c0d-9f80-44df950d210f", "indicator--57d283e0-f410-40b0-8d7b-450b950d210f", "indicator--57d283e0-1a04-40e4-816c-46ef950d210f", "indicator--57d283e0-99ec-463e-9f48-4af2950d210f", "indicator--57d283e1-89a0-4044-90b9-4efe950d210f", "indicator--57d283e1-ec8c-40e1-9d71-4eac950d210f", "indicator--57d283e1-e714-4de9-867e-4c7a950d210f", "indicator--57d283e1-cbd0-4e88-8aab-4a82950d210f", "indicator--57d283e2-6d08-4b7a-81d2-4ed4950d210f", "indicator--57d283e2-1ecc-4e55-9f6b-4c5d950d210f", "indicator--57d283e2-21ac-4505-bb4d-4c9f950d210f", "indicator--57d283e2-438c-4072-94c8-483a950d210f", "indicator--57d283e3-e190-4875-b55a-4a13950d210f", "indicator--57d283e3-06b4-45bd-abc5-4882950d210f", "indicator--57d283e3-ad54-43e8-bc1f-4e66950d210f", "indicator--57d283e3-cf58-4493-97f1-4a4e950d210f", "indicator--57d283e4-3a3c-47fb-90f2-42b1950d210f", "indicator--57d283e4-c02c-4ec9-ac4e-45ca950d210f", "indicator--57d283e4-0ab0-4344-adeb-4766950d210f", "indicator--57d283e4-45e0-4c75-8a02-4af7950d210f", "indicator--57d283e4-6090-4873-b756-4918950d210f", "indicator--57d283e5-1c8c-4863-a821-4f81950d210f", "indicator--57d283e5-9f54-4876-a0f8-4c9f950d210f", "indicator--57d283e5-6540-4759-bce6-4c84950d210f", "indicator--57d283e5-d0a8-4118-8873-4ce9950d210f", "indicator--57d283e6-40b8-43d9-9fed-43ec950d210f", "indicator--57d283e6-c18c-4318-aa78-4024950d210f", "indicator--57d283e6-33dc-4648-bb18-4cec950d210f", "indicator--57d283e6-82d4-4ff0-962f-409f950d210f", "indicator--57d28499-cea0-4293-82b4-4cbe950d210f", "indicator--57d28499-6ebc-473f-8d7b-465d950d210f", "indicator--57d2849a-cc10-4fbf-b20b-4c54950d210f", "indicator--57d2849a-f638-4f76-befd-43ad950d210f", "indicator--57d2877c-c814-4c83-9112-48b2950d210f", "indicator--57d2877c-314c-436c-8a1e-4d50950d210f", "indicator--57d2877c-5c6c-4a63-af41-438a950d210f", "indicator--57d2877d-69e0-442f-a387-463a950d210f", "indicator--57d2877d-3e30-460c-aa40-4945950d210f", "indicator--57d2af4d-4e40-47a1-82fa-463c950d210f", "indicator--57d2af4d-fda8-4f40-96ee-4206950d210f", "indicator--57d2af4d-1800-4259-9e75-4edd950d210f", "indicator--57d2af4d-125c-48f0-a5eb-45f9950d210f", "indicator--57d2af4e-2aa4-4c87-9633-4b57950d210f", "indicator--57d2af4e-f4f8-4c5c-9a7c-4c58950d210f", "indicator--57d2af4e-8904-42fb-8c77-4ea5950d210f", "indicator--57d2af4e-3a78-4061-8ad0-4d52950d210f", "indicator--57d2af4f-1c2c-4844-b527-4511950d210f", "indicator--57d2af4f-d590-46f2-99d4-4903950d210f", "indicator--57d2af4f-c15c-449f-b55e-4ce1950d210f", "indicator--57d2af4f-be20-44d5-8c77-4fb0950d210f", "indicator--57d2af4f-dbe0-46d3-b91b-4d4a950d210f", "indicator--57d2af50-64dc-4966-9b76-40a4950d210f", "indicator--57d2af50-0090-452b-8918-483e950d210f", "indicator--57d2af50-a528-42ef-946c-42e9950d210f", "indicator--57d2af50-dd80-4685-80ed-41a8950d210f" ], "labels": [ "Threat-Report", "misp:tool=\"MISP-STIX-Converter\"", "circl:incident-classification=\"malware\"" ], "object_marking_refs": [ "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283dc-e80c-496c-a0af-4fdf950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:48.000Z", "modified": "2016-09-09T09:41:48.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '103.231.41.127']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:48Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283dc-c764-4d52-8777-4845950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:48.000Z", "modified": "2016-09-09T09:41:48.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '174.142.55.229']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:48Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283dc-0bb4-4ee8-9bde-47f4950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:48.000Z", "modified": "2016-09-09T09:41:48.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '181.224.135.58']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:48Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283dc-b700-4006-acd0-4b93950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:48.000Z", "modified": "2016-09-09T09:41:48.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '181.224.136.120']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:48Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283dd-2d84-41fc-94fa-4fe7950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:49.000Z", "modified": "2016-09-09T09:41:49.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '192.185.156.157']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:49Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283dd-7480-453c-a5c7-4a83950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:49.000Z", "modified": "2016-09-09T09:41:49.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '213.142.143.183']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:49Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283dd-9544-4b21-9c34-47ee950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:49.000Z", "modified": "2016-09-09T09:41:49.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '27.123.26.34']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:49Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283dd-bfa8-48ff-912a-41ae950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:49.000Z", "modified": "2016-09-09T09:41:49.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '43.242.215.197']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:49Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283de-7cd0-4c0a-8cf0-40dd950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:50.000Z", "modified": "2016-09-09T09:41:50.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '50.87.145.92']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:50Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283de-cea0-4abb-83c7-4702950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:50.000Z", "modified": "2016-09-09T09:41:50.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '69.163.194.248']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:50Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283de-9c8c-4fcb-bea4-4073950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:50.000Z", "modified": "2016-09-09T09:41:50.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '74.124.210.105']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:50Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283de-370c-4328-bc60-4ad3950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:50.000Z", "modified": "2016-09-09T09:41:50.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '94.73.151.85']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:50Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283de-e540-4245-b0ae-4d9f950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:50.000Z", "modified": "2016-09-09T09:41:50.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '95.130.171.45']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:50Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283df-9ee4-42ca-8835-4480950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:51.000Z", "modified": "2016-09-09T09:41:51.000Z", "description": "download location", "pattern": "[domain-name:value = 'anatoliamaket.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:51Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283df-c480-4dac-9868-4252950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:51.000Z", "modified": "2016-09-09T09:41:51.000Z", "description": "download location", "pattern": "[domain-name:value = 'annurmaheshphotography.in']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:51Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283df-b4bc-42da-9336-45e1950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:51.000Z", "modified": "2016-09-09T09:41:51.000Z", "description": "download location", "pattern": "[domain-name:value = 'aycilinsaat.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:51Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283df-f860-4a0e-9bc9-4e16950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:51.000Z", "modified": "2016-09-09T09:41:51.000Z", "description": "download location", "pattern": "[domain-name:value = 'dashingleather.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:51Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283df-64f8-4422-9f6e-4ee2950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:51.000Z", "modified": "2016-09-09T09:41:51.000Z", "description": "download location", "pattern": "[url:value = 'http://anatoliamaket.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:51Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e0-ca6c-4c0d-9f80-44df950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:52.000Z", "modified": "2016-09-09T09:41:52.000Z", "description": "download location", "pattern": "[url:value = 'http://annurmaheshphotography.in/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:52Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e0-f410-40b0-8d7b-450b950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:52.000Z", "modified": "2016-09-09T09:41:52.000Z", "description": "download location", "pattern": "[url:value = 'http://aycilinsaat.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:52Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e0-1a04-40e4-816c-46ef950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:52.000Z", "modified": "2016-09-09T09:41:52.000Z", "description": "download location", "pattern": "[url:value = 'http://dashingleather.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:52Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e0-99ec-463e-9f48-4af2950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:52.000Z", "modified": "2016-09-09T09:41:52.000Z", "description": "download location", "pattern": "[url:value = 'http://iandiinternational.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:52Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e1-89a0-4044-90b9-4efe950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:53.000Z", "modified": "2016-09-09T09:41:53.000Z", "description": "download location", "pattern": "[url:value = 'http://linosys.info/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:53Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e1-ec8c-40e1-9d71-4eac950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:53.000Z", "modified": "2016-09-09T09:41:53.000Z", "description": "download location", "pattern": "[url:value = 'http://moko-2.wptemplate.net/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:53Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e1-e714-4de9-867e-4c7a950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:53.000Z", "modified": "2016-09-09T09:41:53.000Z", "description": "download location", "pattern": "[url:value = 'http://perfectfixuae.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:53Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e1-cbd0-4e88-8aab-4a82950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:53.000Z", "modified": "2016-09-09T09:41:53.000Z", "description": "download location", "pattern": "[url:value = 'http://platformarchitects.com.au/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:53Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e2-6d08-4b7a-81d2-4ed4950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:54.000Z", "modified": "2016-09-09T09:41:54.000Z", "description": "download location", "pattern": "[url:value = 'http://stylecode.co.in/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:54Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e2-1ecc-4e55-9f6b-4c5d950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:54.000Z", "modified": "2016-09-09T09:41:54.000Z", "description": "download location", "pattern": "[url:value = 'http://tipsforall.in/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:54Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e2-21ac-4505-bb4d-4c9f950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:54.000Z", "modified": "2016-09-09T09:41:54.000Z", "description": "download location", "pattern": "[url:value = 'http://tscbearings.in/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:54Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e2-438c-4072-94c8-483a950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:54.000Z", "modified": "2016-09-09T09:41:54.000Z", "description": "download location", "pattern": "[url:value = 'http://ungelie.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:54Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e3-e190-4875-b55a-4a13950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:55.000Z", "modified": "2016-09-09T09:41:55.000Z", "description": "download location", "pattern": "[url:value = 'http://www.alfajerdecor.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:55Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e3-06b4-45bd-abc5-4882950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:55.000Z", "modified": "2016-09-09T09:41:55.000Z", "description": "download location", "pattern": "[url:value = 'http://www.mehrabtech.ae/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:55Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e3-ad54-43e8-bc1f-4e66950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:55.000Z", "modified": "2016-09-09T09:41:55.000Z", "description": "download location", "pattern": "[url:value = 'http://www.thegurukulians.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:55Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e3-cf58-4493-97f1-4a4e950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:55.000Z", "modified": "2016-09-09T09:41:55.000Z", "description": "download location", "pattern": "[url:value = 'http://yesiloglugrup.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:55Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e4-3a3c-47fb-90f2-42b1950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:56.000Z", "modified": "2016-09-09T09:41:56.000Z", "description": "download location", "pattern": "[domain-name:value = 'iandiinternational.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:56Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e4-c02c-4ec9-ac4e-45ca950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:56.000Z", "modified": "2016-09-09T09:41:56.000Z", "description": "download location", "pattern": "[domain-name:value = 'linosys.info']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:56Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e4-0ab0-4344-adeb-4766950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:56.000Z", "modified": "2016-09-09T09:41:56.000Z", "description": "download location", "pattern": "[domain-name:value = 'moko-2.wptemplate.net']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:56Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e4-45e0-4c75-8a02-4af7950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:56.000Z", "modified": "2016-09-09T09:41:56.000Z", "description": "download location", "pattern": "[domain-name:value = 'perfectfixuae.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:56Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e4-6090-4873-b756-4918950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:56.000Z", "modified": "2016-09-09T09:41:56.000Z", "description": "download location", "pattern": "[domain-name:value = 'platformarchitects.com.au']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:56Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e5-1c8c-4863-a821-4f81950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:57.000Z", "modified": "2016-09-09T09:41:57.000Z", "description": "download location", "pattern": "[domain-name:value = 'stylecode.co.in']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:57Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e5-9f54-4876-a0f8-4c9f950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:57.000Z", "modified": "2016-09-09T09:41:57.000Z", "description": "download location", "pattern": "[domain-name:value = 'tipsforall.in']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:57Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e5-6540-4759-bce6-4c84950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:57.000Z", "modified": "2016-09-09T09:41:57.000Z", "description": "download location", "pattern": "[domain-name:value = 'tscbearings.in']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:57Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e5-d0a8-4118-8873-4ce9950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:57.000Z", "modified": "2016-09-09T09:41:57.000Z", "description": "download location", "pattern": "[domain-name:value = 'ungelie.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:57Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e6-40b8-43d9-9fed-43ec950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:58.000Z", "modified": "2016-09-09T09:41:58.000Z", "description": "download location", "pattern": "[domain-name:value = 'www.alfajerdecor.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:58Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e6-c18c-4318-aa78-4024950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:58.000Z", "modified": "2016-09-09T09:41:58.000Z", "description": "download location", "pattern": "[domain-name:value = 'www.mehrabtech.ae']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:58Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e6-33dc-4648-bb18-4cec950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:58.000Z", "modified": "2016-09-09T09:41:58.000Z", "description": "download location", "pattern": "[domain-name:value = 'www.thegurukulians.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:58Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d283e6-82d4-4ff0-962f-409f950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:41:58.000Z", "modified": "2016-09-09T09:41:58.000Z", "description": "download location", "pattern": "[domain-name:value = 'yesiloglugrup.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:41:58Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d28499-cea0-4293-82b4-4cbe950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:44:57.000Z", "modified": "2016-09-09T09:44:57.000Z", "description": "download location", "pattern": "[url:value = 'http://onlinepurohit.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:44:57Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d28499-6ebc-473f-8d7b-465d950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:44:57.000Z", "modified": "2016-09-09T09:44:57.000Z", "description": "download location", "pattern": "[url:value = 'http://shagunproperty.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:44:57Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2849a-cc10-4fbf-b20b-4c54950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:44:58.000Z", "modified": "2016-09-09T09:44:58.000Z", "description": "download location", "pattern": "[domain-name:value = 'onlinepurohit.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:44:58Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2849a-f638-4f76-befd-43ad950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:44:58.000Z", "modified": "2016-09-09T09:44:58.000Z", "description": "download location", "pattern": "[domain-name:value = 'shagunproperty.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:44:58Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2877c-c814-4c83-9112-48b2950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:57:16.000Z", "modified": "2016-09-09T09:57:16.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '213.142.130.107']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:57:16Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2877c-314c-436c-8a1e-4d50950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:57:16.000Z", "modified": "2016-09-09T09:57:16.000Z", "description": "download location", "pattern": "[url:value = 'http://jmetalloysllp.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:57:16Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2877c-5c6c-4a63-af41-438a950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:57:16.000Z", "modified": "2016-09-09T09:57:16.000Z", "description": "download location", "pattern": "[url:value = 'http://rapiderbariyer.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:57:16Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2877d-69e0-442f-a387-463a950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:57:17.000Z", "modified": "2016-09-09T09:57:17.000Z", "description": "download location", "pattern": "[domain-name:value = 'jmetalloysllp.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:57:17Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2877d-3e30-460c-aa40-4945950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T09:57:17.000Z", "modified": "2016-09-09T09:57:17.000Z", "description": "download location", "pattern": "[domain-name:value = 'rapiderbariyer.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T09:57:17Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4d-4e40-47a1-82fa-463c950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:09.000Z", "modified": "2016-09-09T12:47:09.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '192.185.103.167']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:09Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4d-fda8-4f40-96ee-4206950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:09.000Z", "modified": "2016-09-09T12:47:09.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '192.185.94.100']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:09Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4d-1800-4259-9e75-4edd950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:09.000Z", "modified": "2016-09-09T12:47:09.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '5.10.105.44']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:09Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4d-125c-48f0-a5eb-45f9950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:09.000Z", "modified": "2016-09-09T12:47:09.000Z", "description": "download location", "pattern": "[domain-name:value = 'adasurgical.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:09Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4e-2aa4-4c87-9633-4b57950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:10.000Z", "modified": "2016-09-09T12:47:10.000Z", "description": "download location", "pattern": "[domain-name:value = 'biogreentech.in']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:10Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4e-f4f8-4c5c-9a7c-4c58950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:10.000Z", "modified": "2016-09-09T12:47:10.000Z", "description": "download location", "pattern": "[domain-name:value = 'factumtech.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:10Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4e-8904-42fb-8c77-4ea5950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:10.000Z", "modified": "2016-09-09T12:47:10.000Z", "description": "download location", "pattern": "[domain-name:value = 'goldenladywedding.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:10Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4e-3a78-4061-8ad0-4d52950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:10.000Z", "modified": "2016-09-09T12:47:10.000Z", "description": "download location", "pattern": "[url:value = 'http://adasurgical.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:10Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4f-1c2c-4844-b527-4511950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:10.000Z", "modified": "2016-09-09T12:47:10.000Z", "description": "download location", "pattern": "[url:value = 'http://biogreentech.in/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:10Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4f-d590-46f2-99d4-4903950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:11.000Z", "modified": "2016-09-09T12:47:11.000Z", "description": "download location", "pattern": "[url:value = 'http://factumtech.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:11Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4f-c15c-449f-b55e-4ce1950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:11.000Z", "modified": "2016-09-09T12:47:11.000Z", "description": "download location", "pattern": "[url:value = 'http://goldenladywedding.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:11Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4f-be20-44d5-8c77-4fb0950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:11.000Z", "modified": "2016-09-09T12:47:11.000Z", "description": "download location", "pattern": "[url:value = 'http://marathazhunj.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:11Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af4f-dbe0-46d3-b91b-4d4a950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:11.000Z", "modified": "2016-09-09T12:47:11.000Z", "description": "download location", "pattern": "[url:value = 'http://webdesignselite.com/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:11Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af50-64dc-4966-9b76-40a4950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:12.000Z", "modified": "2016-09-09T12:47:12.000Z", "description": "download location", "pattern": "[url:value = 'http://webnox.in/7832ghd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:12Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af50-0090-452b-8918-483e950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:12.000Z", "modified": "2016-09-09T12:47:12.000Z", "description": "download location", "pattern": "[domain-name:value = 'marathazhunj.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:12Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af50-a528-42ef-946c-42e9950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:12.000Z", "modified": "2016-09-09T12:47:12.000Z", "description": "download location", "pattern": "[domain-name:value = 'webdesignselite.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:12Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57d2af50-dd80-4685-80ed-41a8950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-09-09T12:47:12.000Z", "modified": "2016-09-09T12:47:12.000Z", "description": "download location", "pattern": "[domain-name:value = 'webnox.in']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-09-09T12:47:12Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "marking-definition", "spec_version": "2.1", "id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9", "created": "2017-01-20T00:00:00.000Z", "definition_type": "tlp", "name": "TLP:WHITE", "definition": { "tlp": "white" } } ] }