{ "type": "bundle", "id": "bundle--57860f63-fe44-4b95-b8b2-4839950d210f", "objects": [ { "type": "identity", "spec_version": "2.1", "id": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2017-05-02T13:26:55.000Z", "modified": "2017-05-02T13:26:55.000Z", "name": "CIRCL", "identity_class": "organization" }, { "type": "report", "spec_version": "2.1", "id": "report--57860f63-fe44-4b95-b8b2-4839950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2017-05-02T13:26:55.000Z", "modified": "2017-05-02T13:26:55.000Z", "name": "Malspam 2016-07-13 (Locky campaign 'Profile')", "published": "2017-05-03T08:00:26Z", "object_refs": [ "indicator--57860fdb-68f0-46aa-9330-4d1b950d210f", "indicator--57860fdc-7a04-490a-9a21-45f8950d210f", "indicator--57860fdc-8e1c-48c3-9419-4462950d210f", "indicator--57860fdd-2674-45a2-9978-4e32950d210f", "indicator--57860fdd-d8e8-407d-be8f-48d8950d210f", "indicator--57860fdd-72c8-41fa-b607-46fb950d210f", "indicator--57860fde-7c38-4a79-b402-4534950d210f", "indicator--57860fde-72d0-4637-be19-47c4950d210f", "indicator--57860fdf-8580-49f1-afdb-4874950d210f", "indicator--57860fdf-a8b4-4a1c-b516-4cd0950d210f", "indicator--57860fe0-ab34-43ac-83f6-44ba950d210f", "indicator--57860fe0-ec74-4a70-a3d0-4c4d950d210f", "indicator--57860fe1-eaa0-496b-84d2-4b30950d210f", "indicator--57860fe1-3d2c-441e-bd51-45be950d210f", "indicator--57860fe2-7c14-4964-af24-4b12950d210f", "indicator--57860fe2-d9bc-4b09-9102-4e84950d210f", "indicator--57860fe2-56e4-46b0-82e6-4a8e950d210f", "indicator--57860fe3-a5b4-46bc-ade6-4efc950d210f", "indicator--57860fe3-0cfc-44ff-a645-4f12950d210f", "indicator--57860fe4-bfa8-4118-bbed-4ea9950d210f", "indicator--57860fe4-9ac4-4acb-bb0c-49c1950d210f", "indicator--57860fe5-4c70-420a-9306-4585950d210f", "indicator--57860fe5-f1b8-4594-a533-4428950d210f", "indicator--57860fe6-16a8-48f5-96c8-4432950d210f", "indicator--57860fe6-b444-4108-beb3-4a0d950d210f", "indicator--57860fe7-721c-4387-a900-4315950d210f", "indicator--57860fe7-5de0-4785-8f97-479a950d210f", "indicator--57860fe8-4b74-4121-8568-483c950d210f", "indicator--57860fe8-7700-4547-a065-4bcb950d210f", "indicator--57860fe8-d9b0-4eb3-b8f9-4c3b950d210f", "indicator--57860fe9-46c4-4cdf-a943-4a52950d210f", "indicator--57860fe9-4774-44e2-bc40-4d1f950d210f", "indicator--57860fea-ca00-4cc6-8959-4dbb950d210f", "indicator--57860fea-042c-464f-8bd2-4442950d210f", "indicator--57860feb-08a8-43a8-ac83-40c1950d210f", "indicator--57860feb-0bb0-4afc-a429-4f55950d210f", "indicator--57860fec-5900-4f3d-986a-4777950d210f", "indicator--57860fec-82c0-40f2-b3cd-4e23950d210f", "indicator--57860fed-4c98-4472-b427-432e950d210f", "indicator--57860fed-39dc-4d79-81e7-46b1950d210f", "indicator--57860fee-36ac-47c4-9b3f-4f3e950d210f", "indicator--57860fee-5ea4-496d-a666-4c53950d210f", "indicator--57860fef-76a4-4d82-a64b-4a5d950d210f", "indicator--57860fef-a254-4a42-a19d-48ca950d210f", "indicator--57860fef-2a54-49b4-8e77-40d9950d210f", "indicator--57860ff0-28ec-4054-b03b-4ec1950d210f", "indicator--57860ff0-a4b4-4b5c-8d9c-41a3950d210f", "indicator--57860ff1-7478-456f-b0a2-4657950d210f", "indicator--57860ff1-9c5c-423c-9cdb-4119950d210f", "indicator--57860ff2-bdc8-4aee-a78f-4020950d210f", "indicator--57860ff2-7264-4613-9ff5-4a41950d210f", "indicator--57860ff3-464c-4fba-8e8b-4b00950d210f", "indicator--57860ff3-6f9c-4561-a69d-475f950d210f", "indicator--57860ff4-0ed0-41dd-aef5-4c64950d210f", "indicator--57860ff4-7a2c-4e77-8c61-4862950d210f", "indicator--57860ff4-8404-4815-b034-4a83950d210f", "indicator--57860ff5-cd48-43c9-ba51-4aef950d210f", "indicator--57860ff5-6278-4b76-adf4-4c95950d210f", "indicator--57860ff6-8fb8-40f5-aee8-49b8950d210f", "indicator--57860ff6-c7ec-4537-a97b-4446950d210f", "indicator--57860ff7-0260-45c7-ba8d-4420950d210f", "indicator--57860ff7-c390-4974-b53c-4f90950d210f", "indicator--57860ff8-64f8-4527-8b7b-4b95950d210f", "indicator--57860ff8-789c-4972-9f09-4bfe950d210f", "indicator--57860ff9-6318-4a7c-bac3-4074950d210f", "indicator--57860ff9-8d38-4066-a09a-4193950d210f", "indicator--57860ffa-9630-48de-ab40-43f1950d210f", "indicator--57860ffa-5eb0-456e-a715-4901950d210f", "indicator--57860ffa-44e0-4f1e-8be8-4b78950d210f", "indicator--57860ffb-c580-4263-9974-4f21950d210f", "indicator--57860ffb-a598-46be-8024-46c7950d210f", "indicator--57860ffc-54d0-4144-a065-479e950d210f", "indicator--57860ffc-f560-4cca-ada9-4be3950d210f", "indicator--57860ffd-dd3c-4fee-ab06-416f950d210f", "indicator--57860ffd-0da4-4f42-887b-4c30950d210f", "indicator--57860ffe-e450-4acc-8543-43ef950d210f", "indicator--57860ffe-04d8-46ea-949e-4ed7950d210f", "indicator--57860fff-0d0c-4528-8ae9-4853950d210f", "indicator--57860fff-c0f4-49be-be5b-41ae950d210f", "indicator--57860fff-d2f8-4151-b16c-48e3950d210f", "indicator--57861000-91f4-4941-8725-4be4950d210f", "indicator--57861000-7310-46c2-bed2-4703950d210f", "indicator--57861001-b76c-447c-ae6f-400f950d210f", "indicator--57861001-6f90-4e05-b5e1-4316950d210f", "indicator--57861002-4d2c-490a-8ee8-4ad4950d210f", "indicator--57861002-3300-4ba8-bb52-4666950d210f", "indicator--57861002-e9dc-4526-82f9-49d2950d210f", "indicator--57861003-7ca4-42d0-a11c-454b950d210f", "indicator--57861003-d2e4-4f5a-9930-4c09950d210f", "indicator--57861003-61c8-4914-aae4-4514950d210f", "indicator--57861004-5574-449c-bf46-456b950d210f", "indicator--57861004-3ab0-404e-97e8-46fe950d210f", "indicator--57861005-8bdc-403d-8cf5-48d5950d210f", "indicator--57861005-7674-4a28-9c7f-48be950d210f", "indicator--57861005-2bec-4478-a9d5-4933950d210f", "indicator--57861006-4c54-45a2-8369-4966950d210f", "indicator--57861006-e52c-4c7c-9a0b-4731950d210f", "indicator--57861006-986c-499f-bd36-40e8950d210f", "indicator--57861007-6338-4d33-ae8d-4384950d210f", "indicator--57861007-7054-4677-8203-4499950d210f", "indicator--57861008-9218-49f4-9962-4a98950d210f", "indicator--57861008-8cf4-4716-a401-4b20950d210f", "indicator--57861008-1184-4929-9ee9-42ab950d210f", "indicator--57861009-0858-41db-86f5-468a950d210f", "indicator--57861009-b4f4-4b3c-8c48-4d27950d210f", "indicator--5786100a-5e3c-4d0e-968a-4fec950d210f", "indicator--5786100a-fe98-492e-97f6-49e0950d210f", "indicator--5786100a-3734-40ab-a3af-4e5d950d210f", "indicator--57862ba9-2b2c-489b-8c87-4915950d210f", "indicator--57862ba9-5fdc-48d4-a579-4e01950d210f", "indicator--57862baa-0294-4917-906f-4487950d210f", "indicator--57862baa-0314-459f-8663-40bf950d210f", "indicator--57862baa-79f0-4220-92ca-4517950d210f" ], "labels": [ "Threat-Report", "misp:tool=\"MISP-STIX-Converter\"", "circl:incident-classification=\"malware\"" ], "object_marking_refs": [ "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fdb-68f0-46aa-9330-4d1b950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:35.000Z", "modified": "2016-07-13T09:54:35.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '112.137.162.118']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:35Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fdc-7a04-490a-9a21-45f8950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:36.000Z", "modified": "2016-07-13T09:54:36.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '112.171.173.157']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:36Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fdc-8e1c-48c3-9419-4462950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:36.000Z", "modified": "2016-07-13T09:54:36.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '119.59.104.26']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:36Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fdd-2674-45a2-9978-4e32950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:37.000Z", "modified": "2016-07-13T09:54:37.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '157.7.144.96']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:37Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fdd-d8e8-407d-be8f-48d8950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:37.000Z", "modified": "2016-07-13T09:54:37.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '169.55.8.36']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:37Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fdd-72c8-41fa-b607-46fb950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:37.000Z", "modified": "2016-07-13T09:54:37.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '181.41.221.184']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:37Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fde-7c38-4a79-b402-4534950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:38.000Z", "modified": "2016-07-13T09:54:38.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '187.45.190.58']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:38Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fde-72d0-4637-be19-47c4950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:38.000Z", "modified": "2016-07-13T09:54:38.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '187.45.190.82']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:38Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fdf-8580-49f1-afdb-4874950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:39.000Z", "modified": "2016-07-13T09:54:39.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '191.252.51.21']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:39Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fdf-a8b4-4a1c-b516-4cd0950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:39.000Z", "modified": "2016-07-13T09:54:39.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '192.145.239.20']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:39Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe0-ab34-43ac-83f6-44ba950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:40.000Z", "modified": "2016-07-13T09:54:40.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '192.185.209.37']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:40Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe0-ec74-4a70-a3d0-4c4d950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:40.000Z", "modified": "2016-07-13T09:54:40.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '195.208.0.109']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:40Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe1-eaa0-496b-84d2-4b30950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:41.000Z", "modified": "2016-07-13T09:54:41.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '195.208.0.118']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:41Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe1-3d2c-441e-bd51-45be950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:41.000Z", "modified": "2016-07-13T09:54:41.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '195.208.0.16']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:41Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe2-7c14-4964-af24-4b12950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:42.000Z", "modified": "2016-07-13T09:54:42.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '195.208.1.123']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:42Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe2-d9bc-4b09-9102-4e84950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:42.000Z", "modified": "2016-07-13T09:54:42.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '197.221.10.206']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:42Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe2-56e4-46b0-82e6-4a8e950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:42.000Z", "modified": "2016-07-13T09:54:42.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '198.27.74.207']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:42Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe3-a5b4-46bc-ade6-4efc950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:43.000Z", "modified": "2016-07-13T09:54:43.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '203.189.109.227']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:43Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe3-0cfc-44ff-a645-4f12950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:43.000Z", "modified": "2016-07-13T09:54:43.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '210.188.201.167']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:43Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe4-bfa8-4118-bbed-4ea9950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:44.000Z", "modified": "2016-07-13T09:54:44.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '210.188.201.42']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:44Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe4-9ac4-4acb-bb0c-49c1950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:44.000Z", "modified": "2016-07-13T09:54:44.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '216.172.172.187']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:44Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe5-4c70-420a-9306-4585950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:45.000Z", "modified": "2016-07-13T09:54:45.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '31.170.165.187']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:45Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe5-f1b8-4594-a533-4428950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:45.000Z", "modified": "2016-07-13T09:54:45.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '31.170.165.33']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:45Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe6-16a8-48f5-96c8-4432950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:46.000Z", "modified": "2016-07-13T09:54:46.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '31.170.165.95']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:46Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe6-b444-4108-beb3-4a0d950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:46.000Z", "modified": "2016-07-13T09:54:46.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '46.30.213.188']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:46Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe7-721c-4387-a900-4315950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:47.000Z", "modified": "2016-07-13T09:54:47.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '5.56.34.14']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:47Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe7-5de0-4785-8f97-479a950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:47.000Z", "modified": "2016-07-13T09:54:47.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '66.147.244.138']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:47Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe8-4b74-4121-8568-483c950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:48.000Z", "modified": "2016-07-13T09:54:48.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '69.90.66.130']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:48Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe8-7700-4547-a065-4bcb950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:48.000Z", "modified": "2016-07-13T09:54:48.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '77.222.56.73']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:48Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe8-d9b0-4eb3-b8f9-4c3b950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:48.000Z", "modified": "2016-07-13T09:54:48.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '77.93.211.244']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:48Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe9-46c4-4cdf-a943-4a52950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:49.000Z", "modified": "2016-07-13T09:54:49.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '85.252.49.19']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:49Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fe9-4774-44e2-bc40-4d1f950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:49.000Z", "modified": "2016-07-13T09:54:49.000Z", "description": "download location", "pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '88.198.13.104']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:49Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"ip-dst\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fea-ca00-4cc6-8959-4dbb950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:50.000Z", "modified": "2016-07-13T09:54:50.000Z", "description": "download location", "pattern": "[domain-name:value = 'agbiz.co.za']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:50Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fea-042c-464f-8bd2-4442950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:50.000Z", "modified": "2016-07-13T09:54:50.000Z", "description": "download location", "pattern": "[domain-name:value = 'aslink.mods.jp']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:50Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860feb-08a8-43a8-ac83-40c1950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:51.000Z", "modified": "2016-07-13T09:54:51.000Z", "description": "download location", "pattern": "[domain-name:value = 'bastidoresderondonia.com.br']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:51Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860feb-0bb0-4afc-a429-4f55950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:51.000Z", "modified": "2016-07-13T09:54:51.000Z", "description": "download location", "pattern": "[domain-name:value = 'choogo.net']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:51Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fec-5900-4f3d-986a-4777950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:52.000Z", "modified": "2016-07-13T09:54:52.000Z", "description": "download location", "pattern": "[domain-name:value = 'control3.com.br']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:52Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fec-82c0-40f2-b3cd-4e23950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:52.000Z", "modified": "2016-07-13T09:54:52.000Z", "description": "download location", "pattern": "[domain-name:value = 'correiodenoticiasonline.com.br']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:52Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fed-4c98-4472-b427-432e950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:53.000Z", "modified": "2016-07-13T09:54:53.000Z", "description": "download location", "pattern": "[domain-name:value = 'diablitos.no']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:53Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fed-39dc-4d79-81e7-46b1950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:53.000Z", "modified": "2016-07-13T09:54:53.000Z", "description": "download location", "pattern": "[domain-name:value = 'eskuvotervezo.hu']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:53Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fee-36ac-47c4-9b3f-4f3e950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:54.000Z", "modified": "2016-07-13T09:54:54.000Z", "description": "download location", "pattern": "[domain-name:value = 'hanaweb.xsrv.jp']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:54Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fee-5ea4-496d-a666-4c53950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:54.000Z", "modified": "2016-07-13T09:54:54.000Z", "description": "download location", "pattern": "[domain-name:value = 'hiramteran.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:54Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fef-76a4-4d82-a64b-4a5d950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:55.000Z", "modified": "2016-07-13T09:54:55.000Z", "description": "download location", "pattern": "[url:value = 'http://agbiz.co.za/i1d82l']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:55Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fef-a254-4a42-a19d-48ca950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:55.000Z", "modified": "2016-07-13T09:54:55.000Z", "description": "download location", "pattern": "[url:value = 'http://aslink.mods.jp/0zn0r1m']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:55Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fef-2a54-49b4-8e77-40d9950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:55.000Z", "modified": "2016-07-13T09:54:55.000Z", "description": "download location", "pattern": "[url:value = 'http://bastidoresderondonia.com.br/aluerxf']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:55Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff0-28ec-4054-b03b-4ec1950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:56.000Z", "modified": "2016-07-13T09:54:56.000Z", "description": "download location", "pattern": "[url:value = 'http://choogo.net/pbx9i']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:56Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff0-a4b4-4b5c-8d9c-41a3950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:56.000Z", "modified": "2016-07-13T09:54:56.000Z", "description": "download location", "pattern": "[url:value = 'http://control3.com.br/u8lb5']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:56Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff1-7478-456f-b0a2-4657950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:57.000Z", "modified": "2016-07-13T09:54:57.000Z", "description": "download location", "pattern": "[url:value = 'http://control3.com.br/vnw51']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:57Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff1-9c5c-423c-9cdb-4119950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:57.000Z", "modified": "2016-07-13T09:54:57.000Z", "description": "download location", "pattern": "[url:value = 'http://control3.com.br/xc30bv8']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:57Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff2-bdc8-4aee-a78f-4020950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:58.000Z", "modified": "2016-07-13T09:54:58.000Z", "description": "download location", "pattern": "[url:value = 'http://correiodenoticiasonline.com.br/fpc64i']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:58Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff2-7264-4613-9ff5-4a41950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:58.000Z", "modified": "2016-07-13T09:54:58.000Z", "description": "download location", "pattern": "[url:value = 'http://diablitos.no/oiyp9']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:58Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff3-464c-4fba-8e8b-4b00950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:59.000Z", "modified": "2016-07-13T09:54:59.000Z", "description": "download location", "pattern": "[url:value = 'http://eskuvotervezo.hu/tvwow4']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:59Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff3-6f9c-4561-a69d-475f950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:54:59.000Z", "modified": "2016-07-13T09:54:59.000Z", "description": "download location", "pattern": "[url:value = 'http://hanaweb.xsrv.jp/51txtru']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:54:59Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff4-0ed0-41dd-aef5-4c64950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:00.000Z", "modified": "2016-07-13T09:55:00.000Z", "description": "download location", "pattern": "[url:value = 'http://hiramteran.com/xi4l7wd']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:00Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff4-7a2c-4e77-8c61-4862950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:00.000Z", "modified": "2016-07-13T09:55:00.000Z", "description": "download location", "pattern": "[url:value = 'http://jaimelukaz.xyz/qm3c8v8']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:00Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff4-8404-4815-b034-4a83950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:00.000Z", "modified": "2016-07-13T09:55:00.000Z", "description": "download location", "pattern": "[url:value = 'http://jonathonbelotti.com/z4gje']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:00Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff5-cd48-43c9-ba51-4aef950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:01.000Z", "modified": "2016-07-13T09:55:01.000Z", "description": "download location", "pattern": "[url:value = 'http://jstudio.com.my/wtxyf4']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:01Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff5-6278-4b76-adf4-4c95950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:01.000Z", "modified": "2016-07-13T09:55:01.000Z", "description": "download location", "pattern": "[url:value = 'http://kveldeil.no/p83au']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:01Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff6-8fb8-40f5-aee8-49b8950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:02.000Z", "modified": "2016-07-13T09:55:02.000Z", "description": "download location", "pattern": "[url:value = 'http://lcbschool2.ac.th/5jpqx']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:02Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff6-c7ec-4537-a97b-4446950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:02.000Z", "modified": "2016-07-13T09:55:02.000Z", "description": "download location", "pattern": "[url:value = 'http://maihama.2jikai-p.net/0fyudn5']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:02Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff7-0260-45c7-ba8d-4420950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:03.000Z", "modified": "2016-07-13T09:55:03.000Z", "description": "download location", "pattern": "[url:value = 'http://mcpf.co.za/bxw05cx']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:03Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff7-c390-4974-b53c-4f90950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:03.000Z", "modified": "2016-07-13T09:55:03.000Z", "description": "download location", "pattern": "[url:value = 'http://mindfocus.com.br/xjmxg']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:03Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff8-64f8-4527-8b7b-4b95950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:04.000Z", "modified": "2016-07-13T09:55:04.000Z", "description": "download location", "pattern": "[url:value = 'http://missatridentina.esy.es/x2m6f4vl']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:04Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff8-789c-4972-9f09-4bfe950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:04.000Z", "modified": "2016-07-13T09:55:04.000Z", "description": "download location", "pattern": "[url:value = 'http://mphooseitutu.com/dqp3d']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:04Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff9-6318-4a7c-bac3-4074950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:05.000Z", "modified": "2016-07-13T09:55:05.000Z", "description": "download location", "pattern": "[url:value = 'http://mywebhost.nichost.ru/i4o5y9ms']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:05Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ff9-8d38-4066-a09a-4193950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:05.000Z", "modified": "2016-07-13T09:55:05.000Z", "description": "download location", "pattern": "[url:value = 'http://nicesound.biz/qrbhx9']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:05Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffa-9630-48de-ab40-43f1950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:06.000Z", "modified": "2016-07-13T09:55:06.000Z", "description": "download location", "pattern": "[url:value = 'http://omnitask.ba/74qnbw']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:06Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffa-5eb0-456e-a715-4901950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:06.000Z", "modified": "2016-07-13T09:55:06.000Z", "description": "download location", "pattern": "[url:value = 'http://ppf.com.pk/9kg8uh']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:06Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffa-44e0-4f1e-8be8-4b78950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:06.000Z", "modified": "2016-07-13T09:55:06.000Z", "description": "download location", "pattern": "[url:value = 'http://quaint.com.br/89vxkepx']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:06Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffb-c580-4263-9974-4f21950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:07.000Z", "modified": "2016-07-13T09:55:07.000Z", "description": "download location", "pattern": "[url:value = 'http://revengeofsultans.com/49qxvzn']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:07Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffb-a598-46be-8024-46c7950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:07.000Z", "modified": "2016-07-13T09:55:07.000Z", "description": "download location", "pattern": "[url:value = 'http://richard-scissors.com/hby2yyoq']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:07Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffc-54d0-4144-a065-479e950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:08.000Z", "modified": "2016-07-13T09:55:08.000Z", "description": "download location", "pattern": "[url:value = 'http://sindsul.com/i7k87gps']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:08Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffc-f560-4cca-ada9-4be3950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:08.000Z", "modified": "2016-07-13T09:55:08.000Z", "description": "download location", "pattern": "[url:value = 'http://sollove.com.br/zaqumgg']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:08Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffd-dd3c-4fee-ab06-416f950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:09.000Z", "modified": "2016-07-13T09:55:09.000Z", "description": "download location", "pattern": "[url:value = 'http://sreinvestment.com/4qe5s5b']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:09Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffd-0da4-4f42-887b-4c30950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:09.000Z", "modified": "2016-07-13T09:55:09.000Z", "description": "download location", "pattern": "[url:value = 'http://stylespiritdubai.com/31keqz']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:09Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffe-e450-4acc-8543-43ef950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:10.000Z", "modified": "2016-07-13T09:55:10.000Z", "description": "download location", "pattern": "[url:value = 'http://tvernedra.ru/nyds9o']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:10Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860ffe-04d8-46ea-949e-4ed7950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:10.000Z", "modified": "2016-07-13T09:55:10.000Z", "description": "download location", "pattern": "[url:value = 'http://wacker-etm.ru/m8i8s']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:10Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fff-0d0c-4528-8ae9-4853950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:11.000Z", "modified": "2016-07-13T09:55:11.000Z", "description": "download location", "pattern": "[url:value = 'http://wineroutes.ru/ldpvsqlf']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:11Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fff-c0f4-49be-be5b-41ae950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:11.000Z", "modified": "2016-07-13T09:55:11.000Z", "description": "download location", "pattern": "[url:value = 'http://www.valentinos.co.il/4f0gudb']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:11Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57860fff-d2f8-4151-b16c-48e3950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:11.000Z", "modified": "2016-07-13T09:55:11.000Z", "description": "download location", "pattern": "[url:value = 'http://zachphoto.7u.cz/qjawol']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:11Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861000-91f4-4941-8725-4be4950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:12.000Z", "modified": "2016-07-13T09:55:12.000Z", "description": "download location", "pattern": "[url:value = 'http://zakagimebel.ru/nrik9xq']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:12Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861000-7310-46c2-bed2-4703950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2017-05-02T13:26:55.000Z", "modified": "2017-05-02T13:26:55.000Z", "pattern": "[domain-name:value = 'jaimelukaz.xyz']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2017-05-02T13:26:55Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Payload delivery" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Payload delivery\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861001-b76c-447c-ae6f-400f950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:13.000Z", "modified": "2016-07-13T09:55:13.000Z", "description": "download location", "pattern": "[domain-name:value = 'jonathonbelotti.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:13Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861001-6f90-4e05-b5e1-4316950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:13.000Z", "modified": "2016-07-13T09:55:13.000Z", "description": "download location", "pattern": "[domain-name:value = 'jstudio.com.my']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:13Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861002-4d2c-490a-8ee8-4ad4950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:14.000Z", "modified": "2016-07-13T09:55:14.000Z", "description": "download location", "pattern": "[domain-name:value = 'kveldeil.no']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:14Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861002-3300-4ba8-bb52-4666950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:14.000Z", "modified": "2016-07-13T09:55:14.000Z", "description": "download location", "pattern": "[domain-name:value = 'lcbschool2.ac.th']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:14Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861002-e9dc-4526-82f9-49d2950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:14.000Z", "modified": "2016-07-13T09:55:14.000Z", "description": "download location", "pattern": "[domain-name:value = 'maihama.2jikai-p.net']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:14Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861003-7ca4-42d0-a11c-454b950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:15.000Z", "modified": "2016-07-13T09:55:15.000Z", "description": "download location", "pattern": "[domain-name:value = 'mcpf.co.za']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:15Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861003-d2e4-4f5a-9930-4c09950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:15.000Z", "modified": "2016-07-13T09:55:15.000Z", "description": "download location", "pattern": "[domain-name:value = 'mindfocus.com.br']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:15Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861003-61c8-4914-aae4-4514950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:15.000Z", "modified": "2016-07-13T09:55:15.000Z", "description": "download location", "pattern": "[domain-name:value = 'missatridentina.esy.es']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:15Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861004-5574-449c-bf46-456b950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:16.000Z", "modified": "2016-07-13T09:55:16.000Z", "description": "download location", "pattern": "[domain-name:value = 'mphooseitutu.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:16Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861004-3ab0-404e-97e8-46fe950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:16.000Z", "modified": "2016-07-13T09:55:16.000Z", "description": "download location", "pattern": "[domain-name:value = 'mywebhost.nichost.ru']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:16Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861005-8bdc-403d-8cf5-48d5950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:17.000Z", "modified": "2016-07-13T09:55:17.000Z", "description": "download location", "pattern": "[domain-name:value = 'nicesound.biz']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:17Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861005-7674-4a28-9c7f-48be950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:17.000Z", "modified": "2016-07-13T09:55:17.000Z", "description": "download location", "pattern": "[domain-name:value = 'omnitask.ba']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:17Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861005-2bec-4478-a9d5-4933950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:17.000Z", "modified": "2016-07-13T09:55:17.000Z", "description": "download location", "pattern": "[domain-name:value = 'ppf.com.pk']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:17Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861006-4c54-45a2-8369-4966950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:18.000Z", "modified": "2016-07-13T09:55:18.000Z", "description": "download location", "pattern": "[domain-name:value = 'quaint.com.br']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:18Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861006-e52c-4c7c-9a0b-4731950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:18.000Z", "modified": "2016-07-13T09:55:18.000Z", "description": "download location", "pattern": "[domain-name:value = 'revengeofsultans.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:18Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861006-986c-499f-bd36-40e8950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:18.000Z", "modified": "2016-07-13T09:55:18.000Z", "description": "download location", "pattern": "[domain-name:value = 'richard-scissors.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:18Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861007-6338-4d33-ae8d-4384950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:19.000Z", "modified": "2016-07-13T09:55:19.000Z", "description": "download location", "pattern": "[domain-name:value = 'sindsul.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:19Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861007-7054-4677-8203-4499950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:19.000Z", "modified": "2016-07-13T09:55:19.000Z", "description": "download location", "pattern": "[domain-name:value = 'sollove.com.br']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:19Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861008-9218-49f4-9962-4a98950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:20.000Z", "modified": "2016-07-13T09:55:20.000Z", "description": "download location", "pattern": "[domain-name:value = 'sreinvestment.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:20Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861008-8cf4-4716-a401-4b20950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:20.000Z", "modified": "2016-07-13T09:55:20.000Z", "description": "download location", "pattern": "[domain-name:value = 'stylespiritdubai.com']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:20Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861008-1184-4929-9ee9-42ab950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:20.000Z", "modified": "2016-07-13T09:55:20.000Z", "description": "download location", "pattern": "[domain-name:value = 'tvernedra.ru']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:20Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861009-0858-41db-86f5-468a950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:21.000Z", "modified": "2016-07-13T09:55:21.000Z", "description": "download location", "pattern": "[domain-name:value = 'wacker-etm.ru']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:21Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57861009-b4f4-4b3c-8c48-4d27950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:21.000Z", "modified": "2016-07-13T09:55:21.000Z", "description": "download location", "pattern": "[domain-name:value = 'wineroutes.ru']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:21Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--5786100a-5e3c-4d0e-968a-4fec950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:22.000Z", "modified": "2016-07-13T09:55:22.000Z", "description": "download location", "pattern": "[domain-name:value = 'www.valentinos.co.il']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:22Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--5786100a-fe98-492e-97f6-49e0950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:22.000Z", "modified": "2016-07-13T09:55:22.000Z", "description": "download location", "pattern": "[domain-name:value = 'zachphoto.7u.cz']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:22Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"hostname\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--5786100a-3734-40ab-a3af-4e5d950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T09:55:22.000Z", "modified": "2016-07-13T09:55:22.000Z", "description": "download location", "pattern": "[domain-name:value = 'zakagimebel.ru']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T09:55:22Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"domain\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57862ba9-2b2c-489b-8c87-4915950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T11:53:13.000Z", "modified": "2016-07-13T11:53:13.000Z", "description": "download location", "pattern": "[url:value = 'http://ialri.net/dloebm9i']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T11:53:13Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57862ba9-5fdc-48d4-a579-4e01950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T11:53:13.000Z", "modified": "2016-07-13T11:53:13.000Z", "description": "download location", "pattern": "[url:value = 'http://acepipesdeli.com.br/bpgqswh6']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T11:53:13Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57862baa-0294-4917-906f-4487950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T11:53:14.000Z", "modified": "2016-07-13T11:53:14.000Z", "description": "download location", "pattern": "[url:value = 'http://heonybaby.synology.me/tzd2evtv']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T11:53:14Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57862baa-0314-459f-8663-40bf950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T11:53:14.000Z", "modified": "2016-07-13T11:53:14.000Z", "description": "download location", "pattern": "[url:value = 'http://eusekkei.co.jp/zulhnib']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T11:53:14Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "indicator", "spec_version": "2.1", "id": "indicator--57862baa-79f0-4220-92ca-4517950d210f", "created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f", "created": "2016-07-13T11:53:14.000Z", "modified": "2016-07-13T11:53:14.000Z", "description": "download location", "pattern": "[url:value = 'http://sirimba.com.br/494lp7kj']", "pattern_type": "stix", "pattern_version": "2.1", "valid_from": "2016-07-13T11:53:14Z", "kill_chain_phases": [ { "kill_chain_name": "misp-category", "phase_name": "Network activity" } ], "labels": [ "misp:type=\"url\"", "misp:category=\"Network activity\"", "misp:to_ids=\"True\"" ] }, { "type": "marking-definition", "spec_version": "2.1", "id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9", "created": "2017-01-20T00:00:00.000Z", "definition_type": "tlp", "name": "TLP:WHITE", "definition": { "tlp": "white" } } ] }