{ "Event": { "analysis": "0", "date": "2016-08-25", "extends_uuid": "", "info": "Malspam 2016-08-25 (.js in .zip) - campaign: \"Contract\"", "publish_timestamp": "1472113508", "published": true, "threat_level_id": "3", "timestamp": "1472113472", "uuid": "57bea9ac-bb00-4243-be64-bbe9950d210f", "Orgc": { "name": "CIRCL", "uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f" }, "Tag": [ { "colour": "#ffffff", "name": "tlp:white" }, { "colour": "#3b7500", "name": "circl:incident-classification=\"malware\"" } ], "Attribute": [ { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113117", "to_ids": true, "type": "url", "uuid": "57bea9dd-3d0c-43b7-a1d6-bec6950d210f", "value": "http://161.184.245.22/~bignanc/lmlox" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113118", "to_ids": true, "type": "ip-dst", "uuid": "57bea9de-b478-4502-aa8b-bec6950d210f", "value": "161.184.245.22" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113118", "to_ids": true, "type": "url", "uuid": "57bea9de-311c-47db-a9eb-bec6950d210f", "value": "http://slivki.tritiumnet.org/ionki" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113118", "to_ids": true, "type": "hostname", "uuid": "57bea9de-21f0-4e6e-b478-bec6950d210f", "value": "slivki.tritiumnet.org" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113118", "to_ids": true, "type": "ip-dst", "uuid": "57bea9de-4268-4f36-aa09-bec6950d210f", "value": "195.230.109.4" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113119", "to_ids": true, "type": "url", "uuid": "57bea9df-ff90-4c43-a249-bec6950d210f", "value": "http://bck.srtec.net/i0mw0s" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113119", "to_ids": true, "type": "hostname", "uuid": "57bea9df-b808-42b4-aae6-bec6950d210f", "value": "bck.srtec.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113119", "to_ids": true, "type": "ip-dst", "uuid": "57bea9df-1038-4d72-b23d-bec6950d210f", "value": "37.46.73.162" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113119", "to_ids": true, "type": "url", "uuid": "57bea9df-a784-4e06-be7b-bec6950d210f", "value": "http://250ooo.web.fc2.com/jor7you4" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113119", "to_ids": true, "type": "hostname", "uuid": "57bea9df-ce40-4a97-ba6a-bec6950d210f", "value": "250ooo.web.fc2.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113120", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e0-1b38-4e59-bd51-bec6950d210f", "value": "208.71.106.37" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113120", "to_ids": true, "type": "url", "uuid": "57bea9e0-ec70-4bc9-af84-bec6950d210f", "value": "http://foodbiz-net.com/wf7x3lc" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113120", "to_ids": true, "type": "domain", "uuid": "57bea9e0-7b0c-4281-b89d-bec6950d210f", "value": "foodbiz-net.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113120", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e0-1b20-44a7-b968-bec6950d210f", "value": "211.13.196.136" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113121", "to_ids": true, "type": "url", "uuid": "57bea9e1-ad90-4ea3-a3a3-bec6950d210f", "value": "http://sopranolady7.wang/31t8j59" }, { "category": "Payload delivery", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113472", "to_ids": true, "type": "url", "uuid": "57bea9e1-6160-422e-92e4-bec6950d210f", "value": "sopranolady7.wang" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113121", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e1-2bb4-4cab-9122-bec6950d210f", "value": "213.229.74.92" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113121", "to_ids": true, "type": "url", "uuid": "57bea9e1-2a98-4ac1-bf32-bec6950d210f", "value": "http://79.96.61.206/atow9crh" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113121", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e2-7670-4be3-8a62-bec6950d210f", "value": "79.96.61.206" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113122", "to_ids": true, "type": "url", "uuid": "57bea9e2-9510-44d3-9304-bec6950d210f", "value": "http://psrsa.freehost.pl/b8mo5st" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113122", "to_ids": true, "type": "hostname", "uuid": "57bea9e2-d6a4-470c-8edd-bec6950d210f", "value": "psrsa.freehost.pl" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113122", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e2-f9d8-49d0-acaf-bec6950d210f", "value": "195.114.0.64" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113122", "to_ids": true, "type": "url", "uuid": "57bea9e2-da84-45b2-b425-bec6950d210f", "value": "http://www.cmt.ro/cjpqr4" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113123", "to_ids": true, "type": "hostname", "uuid": "57bea9e3-d024-4660-9437-bec6950d210f", "value": "www.cmt.ro" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113123", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e3-9058-4251-9f38-bec6950d210f", "value": "91.136.8.9" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113123", "to_ids": true, "type": "url", "uuid": "57bea9e3-9d80-4ef5-a34d-bec6950d210f", "value": "http://www.iperlatino.it/e6tbmma0" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113123", "to_ids": true, "type": "hostname", "uuid": "57bea9e3-308c-4a6b-81e1-bec6950d210f", "value": "www.iperlatino.it" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113124", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e4-e6fc-42dc-ab1c-bec6950d210f", "value": "213.205.40.169" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113124", "to_ids": true, "type": "url", "uuid": "57bea9e4-bc30-4cba-806f-bec6950d210f", "value": "http://ventkanal.ru/kwdl38g" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113124", "to_ids": true, "type": "domain", "uuid": "57bea9e4-022c-496f-848d-bec6950d210f", "value": "ventkanal.ru" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113124", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e4-770c-4486-b2b3-bec6950d210f", "value": "90.156.201.118" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113124", "to_ids": true, "type": "url", "uuid": "57bea9e4-e438-4f0f-8e15-bec6950d210f", "value": "http://rejoincomp2.in/143igszv" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113125", "to_ids": true, "type": "domain", "uuid": "57bea9e5-2668-4546-960e-bec6950d210f", "value": "rejoincomp2.in" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113125", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e5-8ed4-480f-b98a-bec6950d210f", "value": "91.223.89.200" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113125", "to_ids": true, "type": "url", "uuid": "57bea9e5-b0f4-45a5-9076-bec6950d210f", "value": "http://travoxsb.com/z5rweh" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113125", "to_ids": true, "type": "domain", "uuid": "57bea9e5-c7e4-4d88-ab09-bec6950d210f", "value": "travoxsb.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113126", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e6-bf54-4583-a872-bec6950d210f", "value": "110.4.45.235" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113126", "to_ids": true, "type": "url", "uuid": "57bea9e6-3088-46fc-96e2-bec6950d210f", "value": "http://video9211.getenjoyment.net/31t8j59" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113126", "to_ids": true, "type": "hostname", "uuid": "57bea9e6-3868-4f8b-a18e-bec6950d210f", "value": "video9211.getenjoyment.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113126", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e6-6770-4820-8ed2-bec6950d210f", "value": "83.125.22.186" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113127", "to_ids": true, "type": "url", "uuid": "57bea9e7-adbc-4c2d-abb7-bec6950d210f", "value": "http://cbactive.com/ygpd7aom" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113127", "to_ids": true, "type": "domain", "uuid": "57bea9e7-4470-449e-aea0-bec6950d210f", "value": "cbactive.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113127", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e7-ac3c-41ad-b0bb-bec6950d210f", "value": "23.229.171.33" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113127", "to_ids": true, "type": "url", "uuid": "57bea9e7-eacc-42b3-940d-bec6950d210f", "value": "http://brothermalw.ws/06qbbzy7" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113127", "to_ids": true, "type": "domain", "uuid": "57bea9e7-1d40-4f66-868c-bec6950d210f", "value": "brothermalw.ws" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113128", "to_ids": true, "type": "url", "uuid": "57bea9e8-98ac-4b91-b096-bec6950d210f", "value": "http://wangmewang.name/467pbl" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113128", "to_ids": true, "type": "domain", "uuid": "57bea9e8-9898-41d1-b991-bec6950d210f", "value": "wangmewang.name" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113128", "to_ids": true, "type": "url", "uuid": "57bea9e8-7a40-4563-a21c-bec6950d210f", "value": "http://baysigorta.com/143igszv" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113128", "to_ids": true, "type": "domain", "uuid": "57bea9e8-b094-47f6-9a01-bec6950d210f", "value": "baysigorta.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113128", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e8-4670-4b73-938d-bec6950d210f", "value": "81.8.0.22" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113129", "to_ids": true, "type": "url", "uuid": "57bea9e9-2860-440f-99a8-bec6950d210f", "value": "http://www.nadelaur.com/ww4pgc9" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113129", "to_ids": true, "type": "hostname", "uuid": "57bea9e9-fbc8-4411-bc27-bec6950d210f", "value": "www.nadelaur.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113129", "to_ids": true, "type": "ip-dst", "uuid": "57bea9e9-8350-46b6-ae2c-bec6950d210f", "value": "195.130.132.84" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113129", "to_ids": true, "type": "url", "uuid": "57bea9e9-12e8-4ad3-a6e9-bec6950d210f", "value": "http://www.sixpack.bnet.at/n93y3t" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113129", "to_ids": true, "type": "hostname", "uuid": "57bea9e9-eddc-4ffd-8111-bec6950d210f", "value": "www.sixpack.bnet.at" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113130", "to_ids": true, "type": "ip-dst", "uuid": "57bea9ea-875c-4594-9a59-bec6950d210f", "value": "195.230.160.53" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113130", "to_ids": true, "type": "url", "uuid": "57bea9ea-8940-41be-91e1-bec6950d210f", "value": "http://www.arrotin.net/pbkpgfi" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113130", "to_ids": true, "type": "hostname", "uuid": "57bea9ea-5a34-4e0e-abe2-bec6950d210f", "value": "www.arrotin.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113130", "to_ids": true, "type": "ip-dst", "uuid": "57bea9ea-e1d4-481e-a43f-bec6950d210f", "value": "195.238.0.64" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113131", "to_ids": true, "type": "url", "uuid": "57bea9eb-f448-45f9-8c7f-bec6950d210f", "value": "http://immo.3x.ro/oirjm2" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113131", "to_ids": true, "type": "hostname", "uuid": "57bea9eb-2704-4998-91dd-bec6950d210f", "value": "immo.3x.ro" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113131", "to_ids": true, "type": "ip-dst", "uuid": "57bea9eb-9890-4519-b1c5-bec6950d210f", "value": "89.42.39.160" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113131", "to_ids": true, "type": "url", "uuid": "57bea9eb-d8ec-4dcf-97d5-bec6950d210f", "value": "http://ietern.se/97sz4o1x" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113131", "to_ids": true, "type": "domain", "uuid": "57bea9eb-cfdc-424d-804a-bec6950d210f", "value": "ietern.se" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113131", "to_ids": true, "type": "ip-dst", "uuid": "57bea9eb-c12c-4027-ae1a-bec6950d210f", "value": "195.74.38.94" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113132", "to_ids": true, "type": "url", "uuid": "57bea9ec-cb00-405b-b908-bec6950d210f", "value": "http://ilkhaberadana.com/sfh867cw" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113132", "to_ids": true, "type": "domain", "uuid": "57bea9ec-7b90-4db5-90ba-bec6950d210f", "value": "ilkhaberadana.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113132", "to_ids": true, "type": "ip-dst", "uuid": "57bea9ec-43dc-4b25-b853-bec6950d210f", "value": "159.253.46.194" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113132", "to_ids": true, "type": "url", "uuid": "57bea9ec-a328-4f47-947c-bec6950d210f", "value": "http://www.bbfreeholidays.com/10h7l4" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113132", "to_ids": true, "type": "hostname", "uuid": "57bea9ec-d4a0-42d1-a021-bec6950d210f", "value": "www.bbfreeholidays.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113132", "to_ids": true, "type": "ip-dst", "uuid": "57bea9ed-796c-40fe-9407-bec6950d210f", "value": "62.149.142.134" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113133", "to_ids": true, "type": "url", "uuid": "57bea9ed-a1cc-44ad-922a-bec6950d210f", "value": "http://www.jansen-consultancy-machines.be/q3e2x9n" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113133", "to_ids": true, "type": "hostname", "uuid": "57bea9ed-1af4-40d9-9ea1-bec6950d210f", "value": "www.jansen-consultancy-machines.be" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113133", "to_ids": true, "type": "url", "uuid": "57bea9ed-eec8-47d9-878b-bec6950d210f", "value": "http://www.fascicolodifabbricato.org/hmnwqer" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113133", "to_ids": true, "type": "hostname", "uuid": "57bea9ed-ce6c-46cd-be92-bec6950d210f", "value": "www.fascicolodifabbricato.org" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113134", "to_ids": true, "type": "url", "uuid": "57bea9ee-45a8-4a4b-8c85-bec6950d210f", "value": "http://www.fulvio77.it/uwg8a5bv" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113134", "to_ids": true, "type": "hostname", "uuid": "57bea9ee-f4f0-4fef-87db-bec6950d210f", "value": "www.fulvio77.it" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113134", "to_ids": true, "type": "url", "uuid": "57bea9ee-6c3c-4b6a-8596-bec6950d210f", "value": "http://guidemobi.onphp.net/467pbl" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113134", "to_ids": true, "type": "hostname", "uuid": "57bea9ee-f308-4454-a294-bec6950d210f", "value": "guidemobi.onphp.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113134", "to_ids": true, "type": "url", "uuid": "57bea9ee-cf54-42e5-8297-bec6950d210f", "value": "http://pvdbosch.dommel.be/wyq75a" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113134", "to_ids": true, "type": "hostname", "uuid": "57bea9ee-214c-424e-a0e2-bec6950d210f", "value": "pvdbosch.dommel.be" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113135", "to_ids": true, "type": "ip-dst", "uuid": "57bea9ef-18e4-4736-aa17-bec6950d210f", "value": "193.109.184.81" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113135", "to_ids": true, "type": "url", "uuid": "57bea9ef-3de8-419b-bac6-bec6950d210f", "value": "http://210.158.149.146/~kokoro-1/nat25g3" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113135", "to_ids": true, "type": "ip-dst", "uuid": "57bea9ef-2eec-4f5d-939e-bec6950d210f", "value": "210.158.149.146" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113135", "to_ids": true, "type": "url", "uuid": "57bea9ef-4eb8-46c7-9019-bec6950d210f", "value": "http://www.richtenberg.be/g6rxssr" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113135", "to_ids": true, "type": "hostname", "uuid": "57bea9ef-7514-4367-8270-bec6950d210f", "value": "www.richtenberg.be" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113136", "to_ids": true, "type": "url", "uuid": "57bea9f0-2924-4dcc-bad1-bec6950d210f", "value": "http://oabbahs.web.fc2.com/vr22my" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113136", "to_ids": true, "type": "hostname", "uuid": "57bea9f0-f350-4cbc-ae3e-bec6950d210f", "value": "oabbahs.web.fc2.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113136", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f0-6664-4fc9-af04-bec6950d210f", "value": "208.71.106.39" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113136", "to_ids": true, "type": "url", "uuid": "57bea9f0-a12c-4fe2-8356-bec6950d210f", "value": "http://www.plastimonza.com/l0edg2" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113136", "to_ids": true, "type": "hostname", "uuid": "57bea9f0-1488-4b46-b4d3-bec6950d210f", "value": "www.plastimonza.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113137", "to_ids": true, "type": "url", "uuid": "57bea9f1-fda8-4c37-ba1c-bec6950d210f", "value": "http://psrsa.freehost.pl/b427nvfa" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113137", "to_ids": true, "type": "url", "uuid": "57bea9f1-9494-4d87-bccf-bec6950d210f", "value": "http://210.240.104.2/upp0nqa" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113137", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f1-a9b0-4542-acf4-bec6950d210f", "value": "210.240.104.2" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113137", "to_ids": true, "type": "url", "uuid": "57bea9f1-6860-41b7-94a8-bec6950d210f", "value": "http://otakaraidol.web.fc2.com/rpdgpovy" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113137", "to_ids": true, "type": "hostname", "uuid": "57bea9f1-7e74-430a-aead-bec6950d210f", "value": "otakaraidol.web.fc2.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113138", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f2-7920-4cb4-b06a-bec6950d210f", "value": "208.71.106.48" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113138", "to_ids": true, "type": "url", "uuid": "57bea9f2-6968-42db-88c6-bec6950d210f", "value": "http://brianzainformatica.it/f5t8a" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113138", "to_ids": true, "type": "domain", "uuid": "57bea9f2-19e8-422b-811f-bec6950d210f", "value": "brianzainformatica.it" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113138", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f2-160c-4f56-bfaf-bec6950d210f", "value": "79.98.45.16" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113139", "to_ids": true, "type": "url", "uuid": "57bea9f3-f648-4fd6-a9c3-bec6950d210f", "value": "http://selectron.ch/~se_robel/km51cbxx" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113139", "to_ids": true, "type": "domain", "uuid": "57bea9f3-e16c-47c7-a79a-bec6950d210f", "value": "selectron.ch" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113139", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f3-8480-44d5-8055-bec6950d210f", "value": "89.110.146.99" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113139", "to_ids": true, "type": "url", "uuid": "57bea9f3-6670-4780-9fac-bec6950d210f", "value": "http://www.elba-scaglieri.com/j1b3whi5" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113139", "to_ids": true, "type": "hostname", "uuid": "57bea9f3-9c70-4653-9525-bec6950d210f", "value": "www.elba-scaglieri.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113140", "to_ids": true, "type": "url", "uuid": "57bea9f4-0418-49cb-a503-bec6950d210f", "value": "http://cap114.fr/lb0vm08q" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113140", "to_ids": true, "type": "domain", "uuid": "57bea9f4-63fc-4147-b0b0-bec6950d210f", "value": "cap114.fr" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113140", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f4-9050-4dea-af58-bec6950d210f", "value": "213.186.33.24" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113140", "to_ids": true, "type": "url", "uuid": "57bea9f4-ae4c-4239-85ae-bec6950d210f", "value": "http://www.mbeccarini.com/xkzd7c" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113140", "to_ids": true, "type": "hostname", "uuid": "57bea9f4-c768-48cc-bb10-bec6950d210f", "value": "www.mbeccarini.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113141", "to_ids": true, "type": "url", "uuid": "57bea9f5-8e30-4511-bf87-bec6950d210f", "value": "http://buntaro.web.fc2.com/yj3fiqr" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113141", "to_ids": true, "type": "hostname", "uuid": "57bea9f5-18dc-454c-be73-bec6950d210f", "value": "buntaro.web.fc2.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113141", "to_ids": true, "type": "url", "uuid": "57bea9f5-8bac-48ca-8877-bec6950d210f", "value": "http://tuduku0238.web.fc2.com/rk0r8" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113141", "to_ids": true, "type": "hostname", "uuid": "57bea9f5-894c-4e8b-9638-bec6950d210f", "value": "tuduku0238.web.fc2.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113141", "to_ids": true, "type": "url", "uuid": "57bea9f5-35f4-413b-a10a-bec6950d210f", "value": "http://www.yorkimmobiliare.it/k0itno" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113142", "to_ids": true, "type": "hostname", "uuid": "57bea9f6-5010-432e-b10e-bec6950d210f", "value": "www.yorkimmobiliare.it" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113142", "to_ids": true, "type": "url", "uuid": "57bea9f6-500c-496a-b605-bec6950d210f", "value": "http://amazingbootys.com/abf9c9sp" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113142", "to_ids": true, "type": "domain", "uuid": "57bea9f6-e054-4a1f-b707-bec6950d210f", "value": "amazingbootys.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113142", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f6-9ef0-49f0-9f44-bec6950d210f", "value": "174.138.170.171" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113142", "to_ids": true, "type": "url", "uuid": "57bea9f6-9ed8-44c3-b894-bec6950d210f", "value": "http://www.tangoshow.it/pza6j" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113143", "to_ids": true, "type": "hostname", "uuid": "57bea9f7-ce5c-49d9-9367-bec6950d210f", "value": "www.tangoshow.it" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113143", "to_ids": true, "type": "url", "uuid": "57bea9f7-5cdc-4c34-8cf2-bec6950d210f", "value": "http://miyadu.web.fc2.com/q62d4vj" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113143", "to_ids": true, "type": "hostname", "uuid": "57bea9f7-c290-413e-a02b-bec6950d210f", "value": "miyadu.web.fc2.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113143", "to_ids": true, "type": "url", "uuid": "57bea9f7-fee8-4f67-a177-bec6950d210f", "value": "http://provincialpw.com/wme3d" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113143", "to_ids": true, "type": "domain", "uuid": "57bea9f7-66d4-420f-8cb6-bec6950d210f", "value": "provincialpw.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113144", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f8-89b8-4236-ba2d-bec6950d210f", "value": "160.153.54.35" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113144", "to_ids": true, "type": "url", "uuid": "57bea9f8-fdb8-438d-8039-bec6950d210f", "value": "http://www.sashraf.plus.com/qiu0dfyb" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113144", "to_ids": true, "type": "hostname", "uuid": "57bea9f8-7b50-4987-9e1e-bec6950d210f", "value": "www.sashraf.plus.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113144", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f8-a4b4-4b0a-ad4c-bec6950d210f", "value": "212.159.9.91" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113144", "to_ids": true, "type": "url", "uuid": "57bea9f8-a650-456b-86d1-bec6950d210f", "value": "http://thecourtyardcolfaxcom.sites.qwestoffice.net/wwh3ru" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113145", "to_ids": true, "type": "hostname", "uuid": "57bea9f9-aee8-42b1-ad1f-bec6950d210f", "value": "thecourtyardcolfaxcom.sites.qwestoffice.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113145", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f9-b9e8-458e-ae3a-bec6950d210f", "value": "216.36.236.244" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113145", "to_ids": true, "type": "url", "uuid": "57bea9f9-5d9c-45f3-b0ce-bec6950d210f", "value": "http://web2.v45.ncsrv.de/kjoim" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113145", "to_ids": true, "type": "hostname", "uuid": "57bea9f9-0008-43df-80aa-bec6950d210f", "value": "web2.v45.ncsrv.de" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113145", "to_ids": true, "type": "ip-dst", "uuid": "57bea9f9-82fc-420d-8e13-bec6950d210f", "value": "89.110.144.59" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113146", "to_ids": true, "type": "url", "uuid": "57bea9fa-27c4-4c03-8639-bec6950d210f", "value": "http://www.orad.it/xollrnal" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1472113146", "to_ids": true, "type": "hostname", "uuid": "57bea9fa-5e14-48e9-97a9-bec6950d210f", "value": "www.orad.it" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1472113238", "to_ids": false, "type": "email-subject", "uuid": "57beaa56-956c-4af5-9f8f-bec9950d210f", "value": "Contract" } ] } }