{ "Event": { "analysis": "0", "date": "2016-06-28", "extends_uuid": "", "info": "Malspam 2016-06-28 (Locky campaign subject: 'Updated')", "publish_timestamp": "1467096112", "published": true, "threat_level_id": "3", "timestamp": "1467093772", "uuid": "57721299-5610-4220-97b0-4329950d210f", "Orgc": { "name": "CIRCL", "uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f" }, "Tag": [ { "colour": "#ffffff", "local": false, "name": "tlp:white", "relationship_type": "" }, { "colour": "#3a7300", "local": false, "name": "circl:incident-classification=\"malware\"", "relationship_type": "" } ], "Attribute": [ { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093727", "to_ids": true, "type": "ip-dst", "uuid": "577212df-70ac-4292-805b-40ed950d210f", "value": "104.152.168.29" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093728", "to_ids": true, "type": "ip-dst", "uuid": "577212e0-e35c-4005-b5f2-40f6950d210f", "value": "107.180.24.238" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093728", "to_ids": true, "type": "ip-dst", "uuid": "577212e0-a564-4af6-8d45-432b950d210f", "value": "107.6.169.61" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093728", "to_ids": true, "type": "ip-dst", "uuid": "577212e0-40a0-4b6e-ab50-44c5950d210f", "value": "112.140.178.249" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093728", "to_ids": true, "type": "ip-dst", "uuid": "577212e0-bac4-4e2a-bdd5-4406950d210f", "value": "166.63.125.135" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093729", "to_ids": true, "type": "ip-dst", "uuid": "577212e1-7e80-47ad-b7d3-4039950d210f", "value": "175.45.184.160" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093729", "to_ids": true, "type": "ip-dst", "uuid": "577212e1-41c8-4083-82d9-43d0950d210f", "value": "176.62.167.160" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093729", "to_ids": true, "type": "ip-dst", "uuid": "577212e1-658c-466b-80cf-42cb950d210f", "value": "184.171.252.26" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093729", "to_ids": true, "type": "ip-dst", "uuid": "577212e1-b270-42ce-a9d7-48d7950d210f", "value": "192.185.225.43" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093729", "to_ids": true, "type": "ip-dst", "uuid": "577212e1-ecd4-4f76-bfbc-43ab950d210f", "value": "192.186.246.134" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093729", "to_ids": true, "type": "ip-dst", "uuid": "577212e1-c378-40f5-8d03-47b6950d210f", "value": "192.186.246.98" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093730", "to_ids": true, "type": "ip-dst", "uuid": "577212e2-3ab0-4ce2-9ee2-44a9950d210f", "value": "195.208.1.146" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093730", "to_ids": true, "type": "ip-dst", "uuid": "577212e2-5780-47f9-a08a-4dd4950d210f", "value": "198.54.115.218" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093730", "to_ids": true, "type": "ip-dst", "uuid": "577212e2-5490-4c0d-9b00-42cb950d210f", "value": "199.241.184.10" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093730", "to_ids": true, "type": "ip-dst", "uuid": "577212e2-0b50-47f9-bc5c-41e5950d210f", "value": "207.210.108.162" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093730", "to_ids": true, "type": "ip-dst", "uuid": "577212e2-0868-4459-940f-4685950d210f", "value": "210.171.0.30" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093730", "to_ids": true, "type": "ip-dst", "uuid": "577212e2-456c-460d-a242-48e2950d210f", "value": "213.160.76.117" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093731", "to_ids": true, "type": "ip-dst", "uuid": "577212e3-0210-40e7-a0ac-48da950d210f", "value": "216.218.93.172" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093731", "to_ids": true, "type": "ip-dst", "uuid": "577212e3-7450-4a2f-a3c9-49fc950d210f", "value": "217.172.226.2" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093731", "to_ids": true, "type": "ip-dst", "uuid": "577212e3-96b8-4b12-b872-49aa950d210f", "value": "217.73.226.220" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093731", "to_ids": true, "type": "ip-dst", "uuid": "577212e3-5124-487e-b9eb-4222950d210f", "value": "217.76.156.98" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093731", "to_ids": true, "type": "ip-dst", "uuid": "577212e3-9a88-4f4b-a8ca-4bcc950d210f", "value": "23.229.131.128" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093731", "to_ids": true, "type": "domain", "uuid": "577212e3-e5fc-4d34-bdd0-40ab950d210f", "value": "3141592.ru" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093732", "to_ids": true, "type": "domain", "uuid": "577212e4-0d90-473f-820e-42f1950d210f", "value": "4k18.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093732", "to_ids": true, "type": "ip-dst", "uuid": "577212e4-7e4c-4d5b-a9d8-4721950d210f", "value": "69.195.124.97" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093732", "to_ids": true, "type": "ip-dst", "uuid": "577212e4-e2d0-47f9-9291-4fbf950d210f", "value": "80.244.134.169" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093732", "to_ids": true, "type": "ip-dst", "uuid": "577212e4-2f14-4c8a-81fe-470e950d210f", "value": "81.177.140.141" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093732", "to_ids": true, "type": "ip-dst", "uuid": "577212e4-42cc-4cef-b5f5-4ec9950d210f", "value": "82.140.32.172" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093732", "to_ids": true, "type": "ip-dst", "uuid": "577212e4-8d2c-4434-8b77-483a950d210f", "value": "83.96.159.64" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093733", "to_ids": true, "type": "ip-dst", "uuid": "577212e5-00a8-4469-971f-4eee950d210f", "value": "85.118.237.109" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093733", "to_ids": true, "type": "ip-dst", "uuid": "577212e5-24b4-4709-8ef3-4c77950d210f", "value": "86.106.30.71" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093733", "to_ids": true, "type": "ip-dst", "uuid": "577212e5-765c-45c1-8010-49aa950d210f", "value": "89.42.39.67" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093733", "to_ids": true, "type": "ip-dst", "uuid": "577212e5-9004-4dfd-b142-40ee950d210f", "value": "92.53.126.193" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093733", "to_ids": true, "type": "hostname", "uuid": "577212e5-c81c-4570-a0ed-4aba950d210f", "value": "adbm.co.uk" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093733", "to_ids": true, "type": "domain", "uuid": "577212e5-f940-47ef-8405-4f6a950d210f", "value": "addonworks.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093734", "to_ids": true, "type": "domain", "uuid": "577212e6-d6f8-4ce1-a31e-4f76950d210f", "value": "asliaypak.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093734", "to_ids": true, "type": "hostname", "uuid": "577212e6-bcac-4ce4-89c6-47b8950d210f", "value": "atlantaelectronics.co.id" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093734", "to_ids": true, "type": "hostname", "uuid": "577212e6-46b0-4288-acd7-4636950d210f", "value": "beautifulhosting.com.au" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093734", "to_ids": true, "type": "domain", "uuid": "577212e6-0f18-4c56-b971-4051950d210f", "value": "bisericaromaneasca.ro" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093734", "to_ids": true, "type": "domain", "uuid": "577212e6-77cc-492c-b328-4834950d210f", "value": "bobbysinghwpg.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093734", "to_ids": true, "type": "hostname", "uuid": "577212e6-f3e8-4a29-a17a-4c89950d210f", "value": "camera-test.hi2.ro" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093735", "to_ids": true, "type": "domain", "uuid": "577212e7-5280-405c-b7be-4a48950d210f", "value": "cameramartusa.info" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093735", "to_ids": true, "type": "domain", "uuid": "577212e7-ff6c-4c9f-8e31-477b950d210f", "value": "certifiedbanker.org" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093735", "to_ids": true, "type": "hostname", "uuid": "577212e7-a6b4-4c42-b31d-4337950d210f", "value": "clients.seospell.co.in" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093735", "to_ids": true, "type": "domain", "uuid": "577212e7-af64-4ab4-a311-4ca6950d210f", "value": "climairuk.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093735", "to_ids": true, "type": "domain", "uuid": "577212e7-02e8-497f-9a2a-4601950d210f", "value": "delicious-doughnuts.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093736", "to_ids": true, "type": "domain", "uuid": "577212e8-a90c-47a3-b0e0-4ea0950d210f", "value": "empiredeckandfence.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093736", "to_ids": true, "type": "domain", "uuid": "577212e8-39b4-46fb-8c60-491b950d210f", "value": "euro-support.be" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093736", "to_ids": true, "type": "domain", "uuid": "577212e8-9fc8-47f4-a3ca-4d74950d210f", "value": "focolareostuni.it" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093736", "to_ids": true, "type": "url", "uuid": "577212e8-0ef4-454e-b14c-45dc950d210f", "value": "http://192.186.246.134/~advancedptr/4kw2yb" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093736", "to_ids": true, "type": "url", "uuid": "577212e8-4f94-4706-82a2-45c9950d210f", "value": "http://210.171.0.30/~akfa8701/76p9su" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093736", "to_ids": true, "type": "url", "uuid": "577212e8-e474-4e7b-aac9-4ff0950d210f", "value": "http://216.218.93.172/~thelma2/7a4q7knx" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093737", "to_ids": true, "type": "url", "uuid": "577212e9-ac70-4591-919b-4976950d210f", "value": "http://217.172.226.2/~redpaluch/8ji21s5" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093737", "to_ids": true, "type": "url", "uuid": "577212e9-2ba8-4756-a546-4368950d210f", "value": "http://217.172.226.2/~vikolor/3pdqsh" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093737", "to_ids": true, "type": "url", "uuid": "577212e9-e3c4-406f-a2bc-4afc950d210f", "value": "http://3141592.ru/rvhijql" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093737", "to_ids": true, "type": "url", "uuid": "577212e9-97b0-4e31-9610-4a67950d210f", "value": "http://4k18.com/lpschs" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093737", "to_ids": true, "type": "url", "uuid": "577212e9-b5d0-4269-99e0-4792950d210f", "value": "http://80.244.134.169/x4jzt5" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093737", "to_ids": true, "type": "url", "uuid": "577212e9-9028-4046-a6b7-4804950d210f", "value": "http://82.140.32.172/~hoddl/4etb1e1" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093738", "to_ids": true, "type": "url", "uuid": "577212ea-0d90-4bb7-85ef-4a79950d210f", "value": "http://adbm.co.uk/104ky" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093738", "to_ids": true, "type": "url", "uuid": "577212ea-7488-4c1e-9f6d-47ab950d210f", "value": "http://addonworks.com/aaotksj" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093738", "to_ids": true, "type": "url", "uuid": "577212ea-8548-417e-93c6-474e950d210f", "value": "http://asliaypak.com/zcubi7" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093738", "to_ids": true, "type": "url", "uuid": "577212ea-8c5c-4bba-a4dd-4a07950d210f", "value": "http://atlantaelectronics.co.id/kjdfbm" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093738", "to_ids": true, "type": "url", "uuid": "577212ea-3b18-45c1-986a-43be950d210f", "value": "http://beautifulhosting.com.au/ljtxwrr4" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093738", "to_ids": true, "type": "url", "uuid": "577212ea-63cc-4d8a-bedb-452b950d210f", "value": "http://bisericaromaneasca.ro/amfcy" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093739", "to_ids": true, "type": "url", "uuid": "577212eb-74f0-444b-8ed2-486d950d210f", "value": "http://bobbysinghwpg.com/fx1jpyt" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093739", "to_ids": true, "type": "url", "uuid": "577212eb-1f3c-4485-8297-4b38950d210f", "value": "http://camera-test.hi2.ro/5w9tcm" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093739", "to_ids": true, "type": "url", "uuid": "577212eb-2910-4813-821d-45a7950d210f", "value": "http://cameramartusa.info/qaghx" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093739", "to_ids": true, "type": "url", "uuid": "577212eb-3450-4e32-9ab7-45b9950d210f", "value": "http://certifiedbanker.org/faplav8m" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093739", "to_ids": true, "type": "url", "uuid": "577212eb-82bc-4873-8fdc-4b91950d210f", "value": "http://clients.seospell.co.in/8jq6cu" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093740", "to_ids": true, "type": "url", "uuid": "577212ec-6f40-416e-a6eb-4827950d210f", "value": "http://climairuk.com/bv7haqcm" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093740", "to_ids": true, "type": "url", "uuid": "577212ec-40e4-4202-ba61-48bc950d210f", "value": "http://delicious-doughnuts.net/t81of0k" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093740", "to_ids": true, "type": "url", "uuid": "577212ec-5a58-42e5-b00b-4afc950d210f", "value": "http://empiredeckandfence.com/8wytfp" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093740", "to_ids": true, "type": "url", "uuid": "577212ec-d518-4e15-beb1-4a09950d210f", "value": "http://euro-support.be/jo1s8r3k" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093740", "to_ids": true, "type": "url", "uuid": "577212ec-7f54-49c0-9db9-4075950d210f", "value": "http://focolareostuni.it/1tl199rq" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093740", "to_ids": true, "type": "url", "uuid": "577212ec-8674-4617-9d62-4402950d210f", "value": "http://hudebiah.net/vyz44p8" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093741", "to_ids": true, "type": "url", "uuid": "577212ed-3b38-403d-8d02-4475950d210f", "value": "http://jd-products.nl/msjswnn" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093741", "to_ids": true, "type": "url", "uuid": "577212ed-acf0-4155-8f8c-4acf950d210f", "value": "http://potolok-profit.ru/w9oyt" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093741", "to_ids": true, "type": "url", "uuid": "577212ed-22c0-4012-8a6a-431d950d210f", "value": "http://sherlock.uvishere.com/2ujlndd" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093741", "to_ids": true, "type": "url", "uuid": "577212ed-a5a4-4729-9a88-4ea3950d210f", "value": "http://staffsolut.nichost.ru/wif31sug" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093741", "to_ids": true, "type": "url", "uuid": "577212ed-3f90-4713-98b6-4e0a950d210f", "value": "http://tip.ub.ac.id/bzrnweoo" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093741", "to_ids": true, "type": "url", "uuid": "577212ed-1bdc-4eb2-b3ec-493c950d210f", "value": "http://www.centroinfantilelmolino.com/2sgw0ch" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093742", "to_ids": true, "type": "domain", "uuid": "577212ee-7e88-45ee-bdd0-43cd950d210f", "value": "hudebiah.net" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093742", "to_ids": true, "type": "domain", "uuid": "577212ee-ed2c-4aa4-8a84-425d950d210f", "value": "jd-products.nl" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093742", "to_ids": true, "type": "domain", "uuid": "577212ee-c7f8-4c42-881d-45ee950d210f", "value": "potolok-profit.ru" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093742", "to_ids": true, "type": "hostname", "uuid": "577212ee-5804-4422-b0b6-474d950d210f", "value": "sherlock.uvishere.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093742", "to_ids": true, "type": "hostname", "uuid": "577212ee-f35c-4e1a-ace2-472b950d210f", "value": "staffsolut.nichost.ru" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093743", "to_ids": true, "type": "hostname", "uuid": "577212ef-29bc-46c1-803f-47a0950d210f", "value": "tip.ub.ac.id" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1467093743", "to_ids": true, "type": "hostname", "uuid": "577212ef-56a8-439a-ba50-48fe950d210f", "value": "www.centroinfantilelmolino.com" } ] } }