{ "Event": { "analysis": "0", "date": "2016-09-30", "extends_uuid": "", "info": "Malspam 2016-09-29 (.xls) - campaign: \"Receipt\"", "publish_timestamp": "1475221812", "published": true, "threat_level_id": "3", "timestamp": "1475221787", "uuid": "57ee18f8-a0c4-433a-b4fa-4e72950d210f", "Orgc": { "name": "CIRCL", "uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f" }, "Tag": [ { "colour": "#ffffff", "local": false, "name": "tlp:white", "relationship_type": "" }, { "colour": "#3a7300", "local": false, "name": "circl:incident-classification=\"malware\"", "relationship_type": "" } ], "Attribute": [ { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221781", "to_ids": true, "type": "ip-dst", "uuid": "57ee1915-9fc0-4f0f-8121-4f59950d210f", "value": "103.47.193.75" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221781", "to_ids": true, "type": "ip-dst", "uuid": "57ee1915-d94c-430e-9cee-4c33950d210f", "value": "107.180.0.85" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221782", "to_ids": true, "type": "ip-dst", "uuid": "57ee1916-3228-4528-b5a8-4a6c950d210f", "value": "107.180.29.172" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221782", "to_ids": true, "type": "ip-dst", "uuid": "57ee1916-d730-4149-a874-427e950d210f", "value": "107.180.51.252" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221782", "to_ids": true, "type": "ip-dst", "uuid": "57ee1916-228c-4d27-9485-4c53950d210f", "value": "108.179.200.174" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221782", "to_ids": true, "type": "ip-dst", "uuid": "57ee1916-896c-4ddc-9df1-4c4d950d210f", "value": "141.138.204.64" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221782", "to_ids": true, "type": "domain", "uuid": "57ee1916-e364-49b9-acec-4c60950d210f", "value": "81millstreet.nl" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221783", "to_ids": true, "type": "ip-dst", "uuid": "57ee1917-d8fc-4bef-9823-4701950d210f", "value": "89.37.120.230" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221783", "to_ids": true, "type": "ip-dst", "uuid": "57ee1917-26b0-4486-8e03-48f0950d210f", "value": "94.76.210.52" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221783", "to_ids": true, "type": "domain", "uuid": "57ee1917-0e1c-4776-95a9-4bc6950d210f", "value": "anhsaodem.info" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221783", "to_ids": true, "type": "domain", "uuid": "57ee1917-cf70-4d43-9e6c-4a73950d210f", "value": "bandbcreuse.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221784", "to_ids": true, "type": "domain", "uuid": "57ee1918-23e4-4fe1-8918-4e35950d210f", "value": "globalremoteservices.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221784", "to_ids": true, "type": "domain", "uuid": "57ee1918-8458-424d-8aec-42c2950d210f", "value": "hollywoodjesus.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221784", "to_ids": true, "type": "url", "uuid": "57ee1918-c6d4-4f67-82f5-4f59950d210f", "value": "http://81millstreet.nl/g76ub76" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221784", "to_ids": true, "type": "url", "uuid": "57ee1918-e298-4cef-80cd-4ae6950d210f", "value": "http://anhsaodem.info/g76ub76" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221785", "to_ids": true, "type": "url", "uuid": "57ee1919-a698-4aca-abc1-4611950d210f", "value": "http://bandbcreuse.com/g76ub76" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221785", "to_ids": true, "type": "url", "uuid": "57ee1919-1694-4fc9-9f43-438b950d210f", "value": "http://globalremoteservices.com/g76ub76" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221785", "to_ids": true, "type": "url", "uuid": "57ee1919-172c-496b-9830-4639950d210f", "value": "http://hollywoodjesus.com/g76ub76" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221785", "to_ids": true, "type": "url", "uuid": "57ee1919-fff8-42d8-b3ba-40c1950d210f", "value": "http://sonajp.com/g76ub76" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221786", "to_ids": true, "type": "url", "uuid": "57ee191a-70c4-4f7f-ad2c-4467950d210f", "value": "http://techsilicon.com/g76ub76" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221786", "to_ids": true, "type": "url", "uuid": "57ee191a-82a4-4987-993d-427a950d210f", "value": "http://unionathletica.com/g76ub76" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221786", "to_ids": true, "type": "domain", "uuid": "57ee191a-66b4-4921-8d15-4f2b950d210f", "value": "sonajp.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221786", "to_ids": true, "type": "domain", "uuid": "57ee191a-5af4-4113-be71-463f950d210f", "value": "techsilicon.com" }, { "category": "Network activity", "comment": "download location", "deleted": false, "disable_correlation": false, "timestamp": "1475221787", "to_ids": true, "type": "domain", "uuid": "57ee191b-fa84-4000-b9e0-4716950d210f", "value": "unionathletica.com" } ] } }