{ "Event": { "analysis": "0", "date": "2016-09-06", "extends_uuid": "", "info": "Malspam 2016-09-06 (.js in .zip) - campaign: \"August invoice\"", "publish_timestamp": "1473163769", "published": true, "threat_level_id": "3", "timestamp": "1473163484", "uuid": "57ceb0ac-a22c-4bdd-835b-4404950d210f", "Orgc": { "name": "CIRCL", "uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f" }, "Tag": [ { "colour": "#ffffff", "local": "0", "name": "tlp:white", "relationship_type": "" }, { "colour": "#3b7500", "local": "0", "name": "circl:incident-classification=\"malware\"", "relationship_type": "" } ], "Attribute": [ { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163455", "to_ids": true, "type": "ip-dst", "uuid": "57ceb0bf-86c4-4e58-b477-4ed0950d210f", "value": "216.244.68.195" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163455", "to_ids": true, "type": "domain", "uuid": "57ceb0bf-de58-44dc-a63e-4327950d210f", "value": "bookinghotworld.ws" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163455", "to_ids": true, "type": "domain", "uuid": "57ceb0bf-a19c-4b3e-aacd-4239950d210f", "value": "canonsupervideo4k.ws" }, { "category": "Payload delivery", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163456", "to_ids": true, "type": "filename", "uuid": "57ceb0c0-20c8-426a-8678-45c0950d210f", "value": "darkestzone2.wang" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163456", "to_ids": true, "type": "domain", "uuid": "57ceb0c0-6ea8-408a-b23d-48e3950d210f", "value": "donttouchmybaseline.ws" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163456", "to_ids": true, "type": "url", "uuid": "57ceb0c0-db48-43fe-b866-4f55950d210f", "value": "http://bookinghotworld.ws/7m35qn" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163456", "to_ids": true, "type": "url", "uuid": "57ceb0c0-8048-4536-9e05-4959950d210f", "value": "http://canonsupervideo4k.ws/87rhku3" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163456", "to_ids": true, "type": "url", "uuid": "57ceb0c0-0bac-4e67-868d-4451950d210f", "value": "http://darkestzone2.wang/9zh9my4" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163457", "to_ids": true, "type": "url", "uuid": "57ceb0c1-34c4-48c4-8726-4f01950d210f", "value": "http://donttouchmybaseline.ws/fax8x" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163457", "to_ids": true, "type": "url", "uuid": "57ceb0c1-5150-4216-ae04-4990950d210f", "value": "http://tradesmartcoin.xyz/k7w8qhi" }, { "category": "Payload delivery", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1473163457", "to_ids": true, "type": "filename", "uuid": "57ceb0c1-fe30-4fb6-a296-4113950d210f", "value": "tradesmartcoin.xyz" } ] } }