{ "Event": { "analysis": "0", "date": "2016-07-14", "extends_uuid": "", "info": "Malspam 2016-07-14 .wsf campaign", "publish_timestamp": "1468826108", "published": true, "threat_level_id": "3", "timestamp": "1468489592", "uuid": "57874883-feb8-4538-9f4c-472c950d210f", "Orgc": { "name": "CIRCL", "uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f" }, "Tag": [ { "colour": "#ffffff", "name": "tlp:white" }, { "colour": "#3b7500", "name": "circl:incident-classification=\"malware\"" } ], "Attribute": [ { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483737", "to_ids": true, "type": "url", "uuid": "57874899-afe4-481d-9e15-417e950d210f", "value": "http://wineroutes.ru/x66rf" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483738", "to_ids": true, "type": "domain", "uuid": "5787489a-9290-4573-a40b-4499950d210f", "value": "wineroutes.ru" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483739", "to_ids": true, "type": "ip-dst", "uuid": "5787489b-9d0c-48d9-8fac-4081950d210f", "value": "77.222.56.73" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483739", "to_ids": true, "type": "url", "uuid": "5787489b-1aec-4608-9ea8-4445950d210f", "value": "http://bani-shehr.org/t01zda9" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483740", "to_ids": true, "type": "domain", "uuid": "5787489c-e1f4-48d4-963f-4b9a950d210f", "value": "bani-shehr.org" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483740", "to_ids": true, "type": "ip-dst", "uuid": "5787489c-6b90-48be-b4a4-4915950d210f", "value": "23.229.210.130" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483740", "to_ids": true, "type": "url", "uuid": "5787489c-d200-449e-a12c-43f3950d210f", "value": "http://933666.net/o4da1506" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483741", "to_ids": true, "type": "domain", "uuid": "5787489d-23d8-42d2-903c-4452950d210f", "value": "933666.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483741", "to_ids": true, "type": "ip-dst", "uuid": "5787489d-9398-4644-96b7-42cb950d210f", "value": "91.223.223.155" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483742", "to_ids": true, "type": "url", "uuid": "5787489e-7218-47cd-8a48-4ae4950d210f", "value": "http://perfectpackagecons.com/8xgo0" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483742", "to_ids": true, "type": "domain", "uuid": "5787489e-f660-4153-922c-4934950d210f", "value": "perfectpackagecons.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483743", "to_ids": true, "type": "ip-dst", "uuid": "5787489f-c384-46a0-839f-4b18950d210f", "value": "180.240.134.89" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483743", "to_ids": true, "type": "url", "uuid": "5787489f-d188-4569-9456-430a950d210f", "value": "http://fuji-mig.com/rpan7d7d" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483744", "to_ids": true, "type": "domain", "uuid": "578748a0-84f8-47a8-97fd-4672950d210f", "value": "fuji-mig.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483744", "to_ids": true, "type": "ip-dst", "uuid": "578748a0-beb4-4956-a852-49df950d210f", "value": "93.190.41.97" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483834", "to_ids": true, "type": "url", "uuid": "578748fa-30d0-4fb1-936b-47bc950d210f", "value": "http://upyourpic.org/haylti36" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483835", "to_ids": true, "type": "domain", "uuid": "578748fb-a8fc-451c-95b8-4e79950d210f", "value": "upyourpic.org" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483835", "to_ids": true, "type": "ip-dst", "uuid": "578748fb-cae8-4be5-aa25-4c6e950d210f", "value": "193.0.61.237" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483836", "to_ids": true, "type": "url", "uuid": "578748fc-6314-4788-b1d5-4bc7950d210f", "value": "http://samrhamburg.com/78gz11on" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483836", "to_ids": true, "type": "domain", "uuid": "578748fc-74f4-44f9-bc84-4500950d210f", "value": "samrhamburg.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483837", "to_ids": true, "type": "ip-dst", "uuid": "578748fd-d3d0-456f-93d3-463c950d210f", "value": "149.115.19.219" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483837", "to_ids": true, "type": "url", "uuid": "578748fd-23a0-45cc-a5f9-4a4c950d210f", "value": "http://digitacaoveloz.com.br/h4pimoos" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483837", "to_ids": true, "type": "hostname", "uuid": "578748fd-b518-4b02-8409-4ba9950d210f", "value": "digitacaoveloz.com.br" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483838", "to_ids": true, "type": "ip-dst", "uuid": "578748fe-773c-483d-953a-4549950d210f", "value": "191.252.51.6" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483838", "to_ids": true, "type": "url", "uuid": "578748fe-c838-440e-8f19-4583950d210f", "value": "http://infocuscreative.net/25bvqjw" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483839", "to_ids": true, "type": "domain", "uuid": "578748ff-f42c-4c0d-b1cc-4b16950d210f", "value": "infocuscreative.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483839", "to_ids": true, "type": "ip-dst", "uuid": "578748ff-a10c-42e0-a2dd-44d2950d210f", "value": "192.186.200.134" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483840", "to_ids": true, "type": "url", "uuid": "57874900-d63c-4397-b8d6-40b0950d210f", "value": "http://delaemvkusnoe.ru/xzu375f" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483840", "to_ids": true, "type": "domain", "uuid": "57874900-22e4-4e1b-932e-4b0b950d210f", "value": "delaemvkusnoe.ru" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483841", "to_ids": true, "type": "ip-dst", "uuid": "57874901-155c-4b29-a53c-4939950d210f", "value": "195.208.1.129" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483841", "to_ids": true, "type": "url", "uuid": "57874901-45fc-4cde-b276-4679950d210f", "value": "http://innatesynergy.com/9nlgxfnr" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483842", "to_ids": true, "type": "domain", "uuid": "57874902-2258-4069-81c2-4dad950d210f", "value": "innatesynergy.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483842", "to_ids": true, "type": "ip-dst", "uuid": "57874902-89f4-41a2-8ad3-47f7950d210f", "value": "103.6.198.219" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483843", "to_ids": true, "type": "url", "uuid": "57874903-8eb4-4163-a428-4ac9950d210f", "value": "http://natural-anxiety-remedies.com/hyyfz9" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483843", "to_ids": true, "type": "domain", "uuid": "57874903-e604-43ac-92da-4337950d210f", "value": "natural-anxiety-remedies.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483844", "to_ids": true, "type": "ip-dst", "uuid": "57874904-23d8-4606-b8f2-4ac3950d210f", "value": "174.127.104.112" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483844", "to_ids": true, "type": "url", "uuid": "57874904-1fe8-4afa-9e36-4ade950d210f", "value": "http://aloprint.com/s8j34t" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483845", "to_ids": true, "type": "domain", "uuid": "57874905-0bdc-4ce6-8574-4fd4950d210f", "value": "aloprint.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468483845", "to_ids": true, "type": "ip-dst", "uuid": "57874905-89b0-4bee-a1de-42af950d210f", "value": "123.242.226.30" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489584", "to_ids": true, "type": "ip-dst", "uuid": "57875f70-203c-492b-89c0-4bd3950d210f", "value": "107.180.50.238" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489585", "to_ids": true, "type": "ip-dst", "uuid": "57875f71-c658-4ac6-bef4-45dd950d210f", "value": "110.45.143.148" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489586", "to_ids": true, "type": "ip-dst", "uuid": "57875f72-b0ac-4dfe-8b22-486a950d210f", "value": "153.122.18.175" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489586", "to_ids": true, "type": "ip-dst", "uuid": "57875f72-a014-42df-a52c-4931950d210f", "value": "175.206.240.94" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489586", "to_ids": true, "type": "ip-dst", "uuid": "57875f72-23ec-4d4e-8c7f-41d8950d210f", "value": "192.185.209.37" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489586", "to_ids": true, "type": "ip-dst", "uuid": "57875f72-cfa4-4fc0-87c5-477e950d210f", "value": "194.38.104.131" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489586", "to_ids": true, "type": "ip-dst", "uuid": "57875f72-b648-48f8-9655-4e9d950d210f", "value": "212.159.9.91" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489587", "to_ids": true, "type": "ip-dst", "uuid": "57875f73-889c-4568-abb0-424d950d210f", "value": "216.110.144.157" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489587", "to_ids": true, "type": "ip-dst", "uuid": "57875f73-cebc-48af-b68c-4b4b950d210f", "value": "5.152.192.220" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489587", "to_ids": true, "type": "ip-dst", "uuid": "57875f73-760c-44d1-965f-4576950d210f", "value": "80.244.168.29" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489587", "to_ids": true, "type": "ip-dst", "uuid": "57875f73-b914-4b74-94d7-4d6d950d210f", "value": "85.252.49.19" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489587", "to_ids": true, "type": "hostname", "uuid": "57875f73-1534-494e-8042-46bb950d210f", "value": "control3.com.br" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489587", "to_ids": true, "type": "hostname", "uuid": "57875f73-a5c8-4fcf-b0dd-490a950d210f", "value": "heonybaby.synology.me" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489588", "to_ids": true, "type": "url", "uuid": "57875f74-8a00-433e-a7ca-46b4950d210f", "value": "http://control3.com.br/1mvl9hcm" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489588", "to_ids": true, "type": "url", "uuid": "57875f74-96ac-4330-8853-48eb950d210f", "value": "http://heonybaby.synology.me/0qbd9" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489588", "to_ids": true, "type": "url", "uuid": "57875f74-6b1c-47aa-9eca-4dc7950d210f", "value": "http://iddaatahmin.com/~test123/uu12h" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489588", "to_ids": true, "type": "url", "uuid": "57875f74-9624-40c2-9512-4efe950d210f", "value": "http://jem-111.com/stwxldg" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489588", "to_ids": true, "type": "url", "uuid": "57875f74-32d0-4de4-af25-4e9d950d210f", "value": "http://kveldeil.no/0pp3p5x" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489589", "to_ids": true, "type": "url", "uuid": "57875f75-5d34-44c5-bc35-4213950d210f", "value": "http://lifecare-hc.com/8v4jr" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489589", "to_ids": true, "type": "url", "uuid": "57875f75-4374-4000-9253-4e97950d210f", "value": "http://myphychoice.com/qz3eppp" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489589", "to_ids": true, "type": "url", "uuid": "57875f75-a650-4bc5-903d-4582950d210f", "value": "http://pernelkul.hu/9vjw6hak" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489589", "to_ids": true, "type": "url", "uuid": "57875f75-f820-4322-98c7-4690950d210f", "value": "http://sejinfurnace.com/~test1/dt0pl5" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489590", "to_ids": true, "type": "url", "uuid": "57875f76-c85c-4581-b454-4ee3950d210f", "value": "http://webidator.co.il/cv1gujj" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489590", "to_ids": true, "type": "url", "uuid": "57875f76-e15c-42bb-a63f-4d01950d210f", "value": "http://www.jruffle.plus.com/vk9rm12" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489590", "to_ids": true, "type": "domain", "uuid": "57875f76-a644-4477-86be-4922950d210f", "value": "iddaatahmin.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489590", "to_ids": true, "type": "domain", "uuid": "57875f76-b104-4f32-ac8a-47f0950d210f", "value": "jem-111.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489590", "to_ids": true, "type": "domain", "uuid": "57875f76-f868-40d0-a0af-411a950d210f", "value": "kveldeil.no" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489591", "to_ids": true, "type": "domain", "uuid": "57875f77-896c-4905-a1b0-4535950d210f", "value": "lifecare-hc.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489591", "to_ids": true, "type": "domain", "uuid": "57875f77-4b60-49c5-ab3e-4d61950d210f", "value": "myphychoice.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489591", "to_ids": true, "type": "domain", "uuid": "57875f77-0c1c-4942-8b10-456b950d210f", "value": "pernelkul.hu" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489591", "to_ids": true, "type": "domain", "uuid": "57875f77-fbf0-44b5-a7d2-46e0950d210f", "value": "sejinfurnace.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489591", "to_ids": true, "type": "hostname", "uuid": "57875f77-a854-45f3-9603-41bd950d210f", "value": "webidator.co.il" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1468489592", "to_ids": true, "type": "hostname", "uuid": "57875f78-1924-4170-b679-4cb4950d210f", "value": "www.jruffle.plus.com" } ] } }