{ "Event": { "analysis": "0", "date": "2016-10-03", "extends_uuid": "", "info": "Malspam 2016-10-03 (.xls) - campaign: \"[Scan]\"", "publish_timestamp": "1475507101", "published": true, "threat_level_id": "3", "timestamp": "1475500804", "uuid": "57f239a3-9ac0-4261-8678-73f0950d210f", "Orgc": { "name": "CIRCL", "uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f" }, "Tag": [ { "colour": "#ffffff", "name": "tlp:white" }, { "colour": "#3b7500", "name": "circl:incident-classification=\"malware\"" } ], "Attribute": [ { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492275", "to_ids": true, "type": "ip-dst", "uuid": "57f239b3-f598-4937-8ce8-ef38950d210f", "value": "162.253.225.88" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492276", "to_ids": true, "type": "ip-dst", "uuid": "57f239b4-da1c-4ae7-bc49-ef38950d210f", "value": "68.65.120.207" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492276", "to_ids": true, "type": "ip-dst", "uuid": "57f239b4-56bc-437c-9ef0-ef38950d210f", "value": "77.79.239.195" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492276", "to_ids": true, "type": "ip-dst", "uuid": "57f239b4-fb34-4eb1-90c1-ef38950d210f", "value": "96.0.130.2" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492276", "to_ids": true, "type": "domain", "uuid": "57f239b4-3214-449d-bc43-ef38950d210f", "value": "bluewaterappco.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492277", "to_ids": true, "type": "domain", "uuid": "57f239b5-88e4-43c5-82b2-ef38950d210f", "value": "boservice.info" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492277", "to_ids": true, "type": "domain", "uuid": "57f239b5-af9c-4e71-82da-ef38950d210f", "value": "cedrussauna.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492277", "to_ids": true, "type": "domain", "uuid": "57f239b5-b614-4c95-b880-ef38950d210f", "value": "far-infraredsaunas.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492277", "to_ids": true, "type": "domain", "uuid": "57f239b5-de0c-4cbf-945a-ef38950d210f", "value": "golfnauvoo.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492277", "to_ids": true, "type": "url", "uuid": "57f239b5-20dc-4c78-bd5e-ef38950d210f", "value": "http://bluewaterappco.com/jhg45s" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492278", "to_ids": true, "type": "url", "uuid": "57f239b6-5e54-4592-96b7-ef38950d210f", "value": "http://boservice.info/jhg45s" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492278", "to_ids": true, "type": "url", "uuid": "57f239b6-5214-4557-a34d-ef38950d210f", "value": "http://cedrussauna.com/jhg45s" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492278", "to_ids": true, "type": "url", "uuid": "57f239b6-5114-46be-ba1a-ef38950d210f", "value": "http://far-infraredsaunas.com/jhg45s" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492278", "to_ids": true, "type": "url", "uuid": "57f239b6-8310-4692-8276-ef38950d210f", "value": "http://golfnauvoo.com/jhg45s" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492279", "to_ids": true, "type": "url", "uuid": "57f239b7-40bc-4494-81c1-ef38950d210f", "value": "http://mmm2.aaomg.com/jhg45s" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475492279", "to_ids": true, "type": "hostname", "uuid": "57f239b7-f428-4f3a-91f9-ef38950d210f", "value": "mmm2.aaomg.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475500797", "to_ids": true, "type": "url", "uuid": "57f25259-adac-4f62-874a-73ea950d210f", "value": "http://foe-2.com/jhg45s" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475500794", "to_ids": true, "type": "url", "uuid": "57f25293-13c4-46e9-bb76-e444950d210f", "value": "http://icdsarch.com/jhg45s" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475500800", "to_ids": true, "type": "url", "uuid": "57f2527d-c534-4925-bca3-4376950d210f", "value": "http://inmopromo.com/jhg45s" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475500804", "to_ids": true, "type": "url", "uuid": "57f252ac-31a8-45e6-a291-73ea950d210f", "value": "http://denvertracy.com/jhg45s" } ] } }