misp-circl-feed/feeds/circl/misp/5c7e29f1-3930-4e14-8f67-4b6f950d210f.json

{"Event": {"info": "OSINT - Operation Kabar Cobra", "Tag": [{"colour": "#004646", "exportable": true, "name": "type:OSINT"}, {"colour": "#0071c3", "exportable": true, "name": "osint:lifetime=\"perpetual\""}, {"colour": "#0087e8", "exportable": true, "name": "osint:certainty=\"50\""}, {"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#990053", "exportable": true, "name": "workflow:todo=\"add-context\""}, {"colour": "#72003d", "exportable": true, "name": "workflow:todo=\"add-missing-misp-galaxy-cluster-values\""}, {"colour": "#89004a", "exportable": true, "name": "workflow:todo=\"create-missing-misp-galaxy\""}], "publish_timestamp": "0", "timestamp": "1552028603", "Object": [{"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e2b22-7908-4172-a737-49ad950d210f", "sharing_group_id": "0", "timestamp": "1551772450", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e2b22-480c-46bf-97dc-49ad950d210f", "timestamp": "1551772450", "to_ids": true, "value": "2019 \uc0ac\uc5c5\uacc4\ud68d\uc11c.hwp{\uacf5\ubc31}.exe", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e2b22-e288-439e-8f9c-49ad950d210f", "timestamp": "1551772450", "to_ids": true, "value": "0eb739c8faf77dae0546ff447ad06038", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e2b24-f548-4f63-8fa4-49ad950d210f", "timestamp": "1551772452", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e2b7b-c49c-4a49-90ee-4927950d210f", "sharing_group_id": "0", "timestamp": "1551772539", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e2b7c-db74-461e-9e41-4927950d210f", "timestamp": "1551772540", "to_ids": true, "value": "\ubbf8\ub514\uc5b4\uad8c\ub825\uc774\ub3d9\u2465-\ub137\ud50c\ub809\uc2a4, \uc720\ud29c\ube0c.hwp{\uacf5\ubc31}.exe", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e2b7c-bc24-443f-87ea-4927950d210f", "timestamp": "1551772540", "to_ids": true, "value": "9c3396aa94083916227201bf1396a2ca", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e2b7c-e848-43ea-9a78-4927950d210f", "timestamp": "1551772540", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e2ba9-6c4c-4a31-8d9c-4d1a950d210f", "sharing_group_id": "0", "timestamp": "1551772585", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e2ba9-615c-4505-a57e-4d1a950d210f", "timestamp": "1551772632", "to_ids": true, "value": "\uc911\uad6d-\uc5f0\uad6c\uc790\ub8cc.hwp{\uacf5\ubc31}.scr", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e2baa-ff30-4f68-98c8-4d1a950d210f", "timestamp": "1551772586", "to_ids": true, "value": "20301fdd013c836039b8cfe0d100a1d7", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e2baa-0f48-4f09-a774-4d1a950d210f", "timestamp": "1551772586", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e2bce-4910-48fe-aa4e-4927950d210f", "sharing_group_id": "0", "timestamp": "1551772622", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e2bce-2678-4b59-9e5f-4927950d210f", "timestamp": "1551772622", "to_ids": true, "value": "AR.xls{\uacf5\ubc31}.exe", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e2bce-8eb8-4ca3-9c79-4927950d210f", "timestamp": "1551772622", "to_ids": true, "value": "dc1196876d9a59ab477ebc62d07a255e", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e2bce-4ce4-4c06-a66b-4927950d210f", "timestamp": "1551772622", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e2c07-eba0-430f-b440-4931950d210f", "sharing_group_id": "0", "timestamp": "1551772679", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e2c07-1fa8-4cd5-af30-4931950d210f", "timestamp": "1551772679", "to_ids": true, "value": "{\ubbf8\uc0c1}.exe", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e2c07-5a98-4695-b139-4931950d210f", "timestamp": "1551772679", "to_ids": true, "value": "cd705902ea42d0de2a8456b055c3bb87", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e2c07-d838-4a39-b8b7-4931950d210f", "timestamp": "1551772679", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e2e42-91e8-49ac-a360-c3e6950d210f", "sharing_group_id": "0", "timestamp": "1551773250", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e2e42-25c8-43c3-9d87-c3e6950d210f", "timestamp": "1551773250", "to_ids": true, "value": "Freedom.dll", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e2e42-a028-44c9-ad33-c3e6950d210f", "timestamp": "1551773250", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e2e6e-d32c-4334-b8b7-4f0e950d210f", "sharing_group_id": "0", "timestamp": "1551773294", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e2e6f-f030-4551-b56c-4f0e950d210f", "timestamp": "1551773295", "to_ids": true, "value": "AhnLabMon.dll", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e2e6f-b708-4549-94d6-4f0e950d210f", "timestamp": "1551773295", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e2e81-8b38-4f9a-ad23-4b59950d210f", "sharing_group_id": "0", "timestamp": "1551773313", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e2e81-3ec8-4bb7-b249-4b59950d210f", "timestamp": "1551773313", "to_ids": true, "value": "AlyacMonitor.db", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e2e81-6cc8-4b5d-9d93-4b59950d210f", "timestamp": "1551773313", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e46be-947c-48d5-877b-f41b950d210f", "sharing_group_id": "0", "timestamp": "1551779518", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e46be-f03c-453c-bfd9-f41b950d210f", "timestamp": "1551779518", "to_ids": true, "value": "Cobra.dll", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e46c0-fe8c-4d90-8dcb-f41b950d210f", "timestamp": "1551779520", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e4700-9af0-44e7-a36c-f148950d210f", "sharing_group_id": "0", "timestamp": "1551779584", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e4700-e580-4174-a9d5-f148950d210f", "timestamp": "1551779584", "to_ids": true, "value": "secu32_init.inf", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e4700-f254-4804-ac9e-f148950d210f", "timestamp": "1551779584", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e4ad1-d824-4532-95f7-4e6b950d210f", "sharing_group_id": "0", "timestamp": "1551780561", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e4ad1-27ec-450e-9263-4b70950d210f", "timestamp": "1551780561", "to_ids": true, "value": "private32.db", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e4ad1-aec4-43df-a31f-45b4950d210f", "timestamp": "1551780561", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e514e-efa8-491c-9c0a-43e3950d210f", "sharing_group_id": "0", "timestamp": "1551782222", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e514f-9940-480d-bd2d-4062950d210f", "timestamp": "1551782223", "to_ids": true, "value": "242c31d0ce2109fdface788663e90f49", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5150-d864-42de-a8d6-4c48950d210f", "timestamp": "1551782224", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e542e-485c-45ff-bcd6-f277950d210f", "sharing_group_id": "0", "timestamp": "1551782958", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e542e-048c-4e65-84ba-f277950d210f", "timestamp": "1551782958", "to_ids": true, "value": "6106449779d453be4ae28d89f207e921", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e542e-d5a0-4c03-a8be-f277950d210f", "timestamp": "1551782958", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e5469-59fc-4c21-a5ce-4c36950d210f", "sharing_group_id": "0", "timestamp": "1551783017", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e5469-1ee0-488a-90fc-436a950d210f", "timestamp": "1551783017", "to_ids": true, "value": "66b73fba4e47b3184edd75b0ce9cf928", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5469-7298-4f33-988f-4c7c950d210f", "timestamp": "1551783017", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e5477-a6dc-4af2-ad88-48b6950d210f", "sharing_group_id": "0", "timestamp": "1551783031", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e5477-99c8-495e-8cdb-4cf7950d210f", "timestamp": "1551783031", "to_ids": true, "value": "1dfe826f71c20ff04987a9160c177e46", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5477-baac-4218-add5-4cca950d210f", "timestamp": "1551783031", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e5488-bb10-475f-9f11-40f0950d210f", "sharing_group_id": "0", "timestamp": "1551783048", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e5489-4f58-4313-84fd-4d16950d210f", "timestamp": "1551783049", "to_ids": true, "value": "b994bd755e034d2218f8a3f70e91a165", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5489-9a1c-4a24-8339-40a9950d210f", "timestamp": "1551783049", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e5498-80f0-4e8f-949e-43ab950d210f", "sharing_group_id": "0", "timestamp": "1551783064", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e5498-2240-425d-b134-4895950d210f", "timestamp": "1551783064", "to_ids": true, "value": "1a082a388a285e7fc4541124794f3910", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5498-0c54-4f15-8ddf-46ee950d210f", "timestamp": "1551783064", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e54ad-da34-42f0-b08f-466d950d210f", "sharing_group_id": "0", "timestamp": "1551783085", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e54ad-674c-41b6-a369-4afe950d210f", "timestamp": "1551783085", "to_ids": true, "value": "71ec829db01818d305552ec4ebb1c258", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e54ad-d64c-489f-8a83-4252950d210f", "timestamp": "1551783085", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e54c3-8e14-4e41-a2dd-4c10950d210f", "sharing_group_id": "0", "timestamp": "1551783107", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e54c3-491c-42cc-8849-4942950d210f", "timestamp": "1551783107", "to_ids": true, "value": "2fdf23367c604511d019a6914c50bc0b", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e54c3-2554-488c-9bc7-4bf8950d210f", "timestamp": "1551783107", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e54e0-1720-481b-929d-454d950d210f", "sharing_group_id": "0", "timestamp": "1551783136", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e54e1-0708-42c9-b630-42ba950d210f", "timestamp": "1551783137", "to_ids": true, "value": "566cc6129dc887629a7131821c7547e5", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e54e1-9d7c-449c-a176-4bba950d210f", "timestamp": "1551783137", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e55b4-f100-4e76-bc1d-f26c950d210f", "sharing_group_id": "0", "timestamp": "1551783348", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e55b4-65dc-40cf-b55f-f26c950d210f", "timestamp": "1551783348", "to_ids": true, "value": "9d685308d3125e14287ecb7fbe5fcd37", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e55b6-c150-43f5-9c94-f26c950d210f", "timestamp": "1551783350", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e55c5-54dc-4108-9d87-48be950d210f", "sharing_group_id": "0", "timestamp": "1551783365", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e55c5-23d4-4e56-a1dc-4555950d210f", "timestamp": "1551783365", "to_ids": true, "value": "core.dll", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e55c6-c9e0-4a92-b2a3-4055950d210f", "timestamp": "1551783366", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e55da-5c2c-463a-b42c-f26c950d210f", "sharing_group_id": "0", "timestamp": "1551783386", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e55da-aa94-4fed-bb19-f26c950d210f", "timestamp": "1551783386", "to_ids": true, "value": "tvengine.dll", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e55dd-c168-4a6d-928f-f26c950d210f", "timestamp": "1551783389", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e55f0-2de8-4f66-a93c-430b950d210f", "sharing_group_id": "0", "timestamp": "1551783408", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e55f0-4224-4081-94a8-481b950d210f", "timestamp": "1551783408", "to_ids": true, "value": "ariaK.dll", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e55f1-e260-4ef4-b888-4df6950d210f", "timestamp": "1551783409", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e5605-4ad0-42ee-a555-4eb0950d210f", "sharing_group_id": "0", "timestamp": "1551783429", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e5606-8648-42d9-92f9-4fb5950d210f", "timestamp": "1551783430", "to_ids": true, "value": "bb42e6649d927899c816cc04c2bffc06", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5606-055c-4224-b07f-4b96950d210f", "timestamp": "1551783430", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e5613-1488-48e3-8453-f2c7950d210f", "sharing_group_id": "0", "timestamp": "1551783443", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e5613-fe58-4a74-93b0-f2c7950d210f", "timestamp": "1551783443", "to_ids": true, "value": "95410a32a76aecb099af53255bb90737", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5613-c758-409e-8318-f2c7950d210f", "timestamp": "1551783443", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e5621-2a28-4889-a03a-4928950d210f", "sharing_group_id": "0", "timestamp": "1551783457", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e5621-79ac-4408-b49d-4d05950d210f", "timestamp": "1551783457", "to_ids": true, "value": "0a50827a4897a43a882c8d3c691d943d", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5622-f304-4881-a2f9-430e950d210f", "timestamp": "1551783458", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e5633-89d8-49e7-bc35-c3ea950d210f", "sharing_group_id": "0", "timestamp": "1551783475", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e5633-c420-4378-8f12-c3ea950d210f", "timestamp": "1551783475", "to_ids": true, "value": "IECheck.dll", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e5633-0100-4a72-8909-c3ea950d210f", "timestamp": "1551783475", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e565f-2878-40b3-8d84-492d950d210f", "sharing_group_id": "0", "timestamp": "1551783519", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e5660-48dc-496f-a47a-492d950d210f", "timestamp": "1551783520", "to_ids": true, "value": "874c0ec36be15fe3403f3abad6ecea75", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5660-3f28-44f0-96ac-492d950d210f", "timestamp": "1551783520", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e566f-eff0-424d-a55a-409b950d210f", "sharing_group_id": "0", "timestamp": "1551783535", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e566f-cbb0-496a-a2ad-4f5d950d210f", "timestamp": "1551783535", "to_ids": true, "value": "4de21c3af64b3b605446278de92dfff4", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e566f-a268-4ca7-8d15-419c950d210f", "timestamp": "1551783535", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e567e-4720-4fbf-b524-4324950d210f", "sharing_group_id": "0", "timestamp": "1551783550", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e567e-8a64-4eb1-9325-4b3f950d210f", "timestamp": "1551783550", "to_ids": true, "value": "a45ba001c3abee03bda49c6816d9a17c", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5680-5378-42bc-aec1-4b41950d210f", "timestamp": "1551783552", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e56a0-c8cc-4d14-88b4-4ddc950d210f", "sharing_group_id": "0", "timestamp": "1551783584", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e56a0-1274-4b75-acef-4e04950d210f", "timestamp": "1551783584", "to_ids": true, "value": "45D3.tmp", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e56a0-a320-480e-9989-4768950d210f", "timestamp": "1551783584", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e56c3-80c0-4f6a-9601-4caf950d210f", "sharing_group_id": "0", "timestamp": "1551783619", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e56c3-8b14-4599-b69f-4ddf950d210f", "timestamp": "1551783619", "to_ids": true, "value": "02dae3046d1669a55785ba935b0e3f0b", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e56c3-5a84-4458-9349-472e950d210f", "timestamp": "1551783619", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e56d5-01b8-4a68-8c44-43ab950d210f", "sharing_group_id": "0", "timestamp": "1551783637", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e56d5-6050-414a-b285-4474950d210f", "timestamp": "1551783637", "to_ids": true, "value": "ba89337af43f0b07a35cc892ac95112a", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e56d5-3a14-4382-a5e2-4ffe950d210f", "timestamp": "1551783637", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e56eb-5344-47b1-aa41-f277950d210f", "sharing_group_id": "0", "timestamp": "1551783659", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e56ec-f3e0-49fe-9a8a-f277950d210f", "timestamp": "1551783660", "to_ids": true, "value": "74c3011b6980bea23d119822d979a364", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e56ec-a890-4130-acef-f277950d210f", "timestamp": "1551783660", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e56fd-99d4-4830-914d-4f38950d210f", "sharing_group_id": "0", "timestamp": "1551783677", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e56fd-08c0-419c-b8d3-4375950d210f", "timestamp": "1551783677", "to_ids": true, "value": "MsMpQhp.exe", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Other", "uuid": "5c7e56fe-c744-43df-a20d-4d0c950d210f", "timestamp": "1551783678", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "TeamViewer ", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e579b-edc0-47c2-88e4-424d950d210f", "sharing_group_id": "0", "timestamp": "1551783835", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e579c-37dc-4cba-9dd5-4be1950d210f", "timestamp": "1551783836", "to_ids": true, "value": "ab73b1395938c48d62b7eeb5c9f3409d", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e579c-84b0-4d25-a9fa-4ffe950d210f", "timestamp": "1551783836", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "TeamViewer", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e582c-76a8-4a87-936b-46c9950d210f", "sharing_group_id": "0", "timestamp": "1551783980", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e582c-3550-42a5-a95f-4282950d210f", "timestamp": "1551783980", "to_ids": true, "value": "b02f3881321f0912b2ae3f27498c448f", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e582c-5e78-4bf7-9816-4c89950d210f", "timestamp": "1551783980", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "TeamViewer", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e585e-b924-48a5-a659-490d950d210f", "sharing_group_id": "0", "timestamp": "1551784030", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e585f-a268-4c8f-86f3-4c3a950d210f", "timestamp": "1551784031", "to_ids": true, "value": "11fc4829c2fff9fb240acbd71c60fc67", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e585f-e068-4713-b278-4452950d210f", "timestamp": "1551784031", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e5887-b2b4-4e72-988f-4c83950d210f", "sharing_group_id": "0", "timestamp": "1551784071", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e5887-4fb4-4511-96ac-46db950d210f", "timestamp": "1551784071", "to_ids": true, "value": "2014 \ud55c\uc6b81,2 \ud638\uae30\uc124\uacc4\ubcc0\uacbd\uc0ac\ud56d.hwp", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e5887-d144-431d-a326-4485950d210f", "timestamp": "1551784071", "to_ids": true, "value": "54783422cfd7029a26a3f3f5e9087d8a", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e5887-b4a4-4395-9e1b-44a4950d210f", "timestamp": "1551784071", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e63c1-19e8-4619-a253-4730950d210f", "sharing_group_id": "0", "timestamp": "1551786945", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e63c2-c25c-4006-94da-41ca950d210f", "timestamp": "1551786946", "to_ids": true, "value": "2018 \uc885\uc804\uc5b8.hwp", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e63c2-3058-49a1-8a46-4ea5950d210f", "timestamp": "1551786946", "to_ids": true, "value": "8332be776617364c16868c1ad6b4efe7", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e63c2-12f0-421c-be0e-44a4950d210f", "timestamp": "1551786946", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e6479-92b0-468e-a85c-47aa950d210f", "sharing_group_id": "0", "timestamp": "1551787129", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e6479-37cc-4e4d-8f79-4719950d210f", "timestamp": "1551787129", "to_ids": true, "value": "fontchk.jse", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e6479-7548-4f53-b11f-4536950d210f", "timestamp": "1551787129", "to_ids": true, "value": "f22db1e3ea74af791e34ad5aa0297664", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e6479-f9b0-4b0f-b921-4f7e950d210f", "timestamp": "1551787129", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e6497-2f04-471f-b48e-401b950d210f", "sharing_group_id": "0", "timestamp": "1551787159", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e6497-55a4-43b0-bbf0-4e1e950d210f", "timestamp": "1551787159", "to_ids": true, "value": "2\uc6d41\uc8fc\ucc28\uad6d\uc81c\uc548\ubcf4\uad70\uc0ac\uc815\uc138.hwp", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e6498-4710-4d6d-82fc-45f2950d210f", "timestamp": "1551787160", "to_ids": true, "value": "48d9e625ea3efbcbef3963c8714544a7", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e6498-f554-41ce-9a3b-4d05950d210f", "timestamp": "1551787160", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e64c2-bc88-401b-bfc6-4504950d210f", "sharing_group_id": "0", "timestamp": "1551787252", "description": "File object describing a file with meta-information", "template_version": "16", "ObjectReference": [{"comment": "", "object_uuid": "5c7e64c2-bc88-401b-bfc6-4504950d210f", "uuid": "5c7e64f4-df6c-428c-b581-4417950d210f", "timestamp": "1551787252", "referenced_uuid": "5c7e64dd-0470-4556-9dfa-41fc950d210f", "relationship_type": "related-to"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e64c2-58bc-4681-b9d1-48f6950d210f", "timestamp": "1551787202", "to_ids": true, "value": "IE \ucde8\uc57d\uc810", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e64c2-f1f0-4094-8cdb-43f4950d210f", "timestamp": "1551787202", "to_ids": true, "value": "b49bbc11ed000211a5af7eb35f596886", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e64c2-a9b8-409c-96e5-43ec950d210f", "timestamp": "1551787202", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "81650945-f186-437b-8945-9f31715d32da", "uuid": "5c7e64dd-0470-4556-9dfa-41fc950d210f", "sharing_group_id": "0", "timestamp": "1551787229", "description": "Vulnerability object describing a common vulnerability enumeration which can describe published, unpublished, under review or embargo vulnerability for software, equipments or hardware.", "template_version": "5", "Attribute": [{"comment": "", "category": "Other", "uuid": "5c7e64dd-c7fc-43c3-9e83-4672950d210f", "timestamp": "1551787229", "to_ids": false, "value": "Published", "disable_correlation": true, "object_relation": "state", "type": "text"}, {"comment": "", "category": "Other", "uuid": "5c7e64dd-1f08-4d07-bac6-46bd950d210f", "timestamp": "1551787229", "to_ids": false, "value": "CVE-2018-8174", "disable_correlation": false, "object_relation": "id", "type": "text"}], "distribution": "5", "meta-category": "vulnerability", "name": "vulnerability"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e6523-60a0-4a28-adeb-47c4950d210f", "sharing_group_id": "0", "timestamp": "1551787299", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e6524-c2ac-4645-9e89-422d950d210f", "timestamp": "1551787300", "to_ids": true, "value": "2016\ub144\uc81c46\ucc28\uc6d0\ub0b4\ub300\ucc45\ud68c\uc758\ubaa8\ub450\ubc1c\uc5b8.hwp", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e6524-19a4-4222-9674-47d5950d210f", "timestamp": "1551787300", "to_ids": true, "value": "aea8d3002132094a58d5189a8e886cf8", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e6524-404c-45ff-9a88-4ee4950d210f", "timestamp": "1551787300", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e653a-edc4-4389-850b-4a91950d210f", "sharing_group_id": "0", "timestamp": "1551787322", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e653a-5580-401b-84bb-488f950d210f", "timestamp": "1551787322", "to_ids": true, "value": "0x0ED6D109-0xED81000.mem.pe.exe", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e653a-9fac-4b02-be4f-440d950d210f", "timestamp": "1551787322", "to_ids": true, "value": "08523230e221246bb59cde7c3e8363c7", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e653a-8034-448b-a560-4fa3950d210f", "timestamp": "1551787322", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5c7e6556-1f7c-440e-ad46-43c2950d210f", "sharing_group_id": "0", "timestamp": "1551787350", "description": "File object describing a file with meta-information", "template_version": "16", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5c7e6556-7d98-4cdd-b036-4c2c950d210f", "timestamp": "1551787350", "to_ids": true, "value": "hwpkor.dll", "disable_correlation": true, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5c7e6556-a124-4ea9-8b32-431a950d210f", "timestamp": "1551787350", "to_ids": true, "value": "2f26f3a883aeca9a11769664fc7d4750", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Other", "uuid": "5c7e6556-7264-4241-a41c-4a6d950d210f", "timestamp": "1551787350", "to_ids": false, "value": "Malicious", "disable_correlation": true, "object_relation": "state", "type": "text"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "689ecef6-f10d-439a-a27a-95d1d4c95f99", "sharing_group_id": "0", "timestamp": "1551999384", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "689ecef6-f10d-439a-a27a-95d1d4c95f99", "uuid": "5c81a19e-00c0-4593-95bb-40f602de0b81", "timestamp": "1551999390", "referenced_uuid": "63188ca3-d4a3-439d-9b01-b9ec4a029584", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "cd755ca4-7cc8-4ac9-9d52-06b570b32302", "timestamp": "1551783520", "to_ids": true, "value": "874c0ec36be15fe3403f3abad6ecea75", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "032402db-db59-428b-a1e9-ba7d8860580a", "timestamp": "1551783520", "to_ids": true, "value": "17b4e8bf763a6e5c4f04f5c98eb780894140e7b1", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "a47f1da1-1d8e-41cb-9897-6b3f48ccba56", "timestamp": "1551783520", "to_ids": true, "value": "520056eedfaf9d3445ecf8d7aefa0b93d7c35f9a8a2a5da0999530280a9a6438", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "63188ca3-d4a3-439d-9b01-b9ec4a029584", "sharing_group_id": "0", "timestamp": "1551999385", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "ea02193f-258f-4063-808b-da8045437f52", "timestamp": "1551783520", "to_ids": false, "value": "2019-03-06 00:08:18", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "af3bb3c4-5117-41f6-a400-b1331dba4474", "timestamp": "1551783520", "to_ids": false, "value": "https://www.virustotal.com/file/520056eedfaf9d3445ecf8d7aefa0b93d7c35f9a8a2a5da0999530280a9a6438/analysis/1551830898/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "d9947682-2fc1-432f-b192-14b4895af3f8", "timestamp": "1551783520", "to_ids": false, "value": "6/68", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "8f9b8272-3ef4-4ed8-ac44-98a8bd9f8ac9", "sharing_group_id": "0", "timestamp": "1551999385", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "8f9b8272-3ef4-4ed8-ac44-98a8bd9f8ac9", "uuid": "5c81a19f-1dc0-44bc-a25b-4c4a02de0b81", "timestamp": "1551999391", "referenced_uuid": "f1e4e0de-7aa4-4d61-bc50-d9850e25c9fd", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "1191a44a-0ec1-4f1c-81bd-057f6bc3dc3d", "timestamp": "1551772679", "to_ids": true, "value": "cd705902ea42d0de2a8456b055c3bb87", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "1ba09899-88a2-4129-8ee1-09f874bc42e5", "timestamp": "1551772679", "to_ids": true, "value": "d945db08bacd1c2e06ad29c207c7da34edacf965", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "3acefe46-c9d5-4515-ae01-e4691dde7439", "timestamp": "1551772679", "to_ids": true, "value": "04b28c594e96703ed11481847aab936e5ba06280ce947a436e0b64752c86bd14", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "f1e4e0de-7aa4-4d61-bc50-d9850e25c9fd", "sharing_group_id": "0", "timestamp": "1551999385", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "3679c946-dbf4-446f-845d-278dfbdc0724", "timestamp": "1551772679", "to_ids": false, "value": "2019-03-06 00:08:17", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "7f45ee46-b0ed-4656-b7a0-b09313f1b51f", "timestamp": "1551772679", "to_ids": false, "value": "https://www.virustotal.com/file/04b28c594e96703ed11481847aab936e5ba06280ce947a436e0b64752c86bd14/analysis/1551830897/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "9f9a329a-139f-41bf-a10a-27db6d9e7df6", "timestamp": "1551772679", "to_ids": false, "value": "32/66", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "92b9f0a3-acd0-4e49-a789-d100f0e9a3f4", "sharing_group_id": "0", "timestamp": "1551999385", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "92b9f0a3-acd0-4e49-a789-d100f0e9a3f4", "uuid": "5c81a19f-63a0-47c2-86c3-4cc302de0b81", "timestamp": "1551999391", "referenced_uuid": "cdd4af57-0253-4178-9b16-26b9169ebaaf", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "0bdd0dac-874a-4f0b-ac0a-20ed62c578ef", "timestamp": "1551783637", "to_ids": true, "value": "ba89337af43f0b07a35cc892ac95112a", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "658ed031-6169-4410-8b77-c5e2f5fb34b8", "timestamp": "1551783637", "to_ids": true, "value": "f8834840c73a944394c26b3b71b9627a2a0c385a", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "b917b49a-92ba-4dea-8576-147881660416", "timestamp": "1551783637", "to_ids": true, "value": "cd152e2c4796dd4cf82e2824ad6ca6e64ef42ab2ca79cf3417354d6b2e999fb9", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "cdd4af57-0253-4178-9b16-26b9169ebaaf", "sharing_group_id": "0", "timestamp": "1551999385", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "46129aee-9ce2-40e5-8cdd-9855bf6268e6", "timestamp": "1551783637", "to_ids": false, "value": "2019-03-06 04:40:29", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "9cac1422-04e3-493a-aeac-18a155eabdc4", "timestamp": "1551783637", "to_ids": false, "value": "https://www.virustotal.com/file/cd152e2c4796dd4cf82e2824ad6ca6e64ef42ab2ca79cf3417354d6b2e999fb9/analysis/1551847229/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "a3052011-844c-43e6-9772-08d421387a65", "timestamp": "1551783637", "to_ids": false, "value": "18/66", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "77fb245c-d880-4b58-a4a1-3c79e3429fd5", "sharing_group_id": "0", "timestamp": "1551999385", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "77fb245c-d880-4b58-a4a1-3c79e3429fd5", "uuid": "5c81a19f-f69c-4aeb-b108-483502de0b81", "timestamp": "1551999391", "referenced_uuid": "c5c06cde-e106-4432-a2d5-4d1f4c2d6af3", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5b7caae2-c639-4f91-a601-85702a0e791e", "timestamp": "1551783660", "to_ids": true, "value": "74c3011b6980bea23d119822d979a364", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "cfa1a617-6e0d-40fb-ad61-82f28f99efc3", "timestamp": "1551783660", "to_ids": true, "value": "447f08c1fd35a517004987dcbae264cf744a5721", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "a47f8a8d-3373-48bf-8735-634a09e7858b", "timestamp": "1551783660", "to_ids": true, "value": "c9507551a16afacdd8a5dda69c2b4b924cebe97c0ebaae955c6f446a7061f744", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "c5c06cde-e106-4432-a2d5-4d1f4c2d6af3", "sharing_group_id": "0", "timestamp": "1551999386", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "4716d971-3868-4ca4-9a44-6b9017b6be31", "timestamp": "1551783660", "to_ids": false, "value": "2019-03-06 00:08:26", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "785c801a-5b42-4ec3-a5c8-4f117de68396", "timestamp": "1551783660", "to_ids": false, "value": "https://www.virustotal.com/file/c9507551a16afacdd8a5dda69c2b4b924cebe97c0ebaae955c6f446a7061f744/analysis/1551830906/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "f227a142-d12e-435d-a4a2-9013f27d8f9c", "timestamp": "1551783660", "to_ids": false, "value": "30/67", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "00c34c0b-95aa-4d40-b8f6-462c2a9f4c73", "sharing_group_id": "0", "timestamp": "1551999386", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "00c34c0b-95aa-4d40-b8f6-462c2a9f4c73", "uuid": "5c81a19f-8978-4c15-96ca-494902de0b81", "timestamp": "1551999391", "referenced_uuid": "2790778c-6796-474b-a65f-c47b1f092552", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "ddacb270-66c4-46b9-97d7-96d9796749b6", "timestamp": "1551783085", "to_ids": true, "value": "71ec829db01818d305552ec4ebb1c258", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "6ccf98c8-35ec-44e8-b167-447136dde4b5", "timestamp": "1551783085", "to_ids": true, "value": "d1a9dad0b7b1face9869216c863b743bc2b1e3a4", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "bb1c31fd-232a-4089-b737-13f6c455b3d2", "timestamp": "1551783085", "to_ids": true, "value": "d9746224143010adada9989bf6b1014bb10e8165615e1ef6b58fd429cd2aa20a", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "2790778c-6796-474b-a65f-c47b1f092552", "sharing_group_id": "0", "timestamp": "1551999386", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "70fb6240-1fd0-4be8-b94f-ea3f7ae2f14e", "timestamp": "1551783085", "to_ids": false, "value": "2019-02-20 00:37:01", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "738fd47a-6aa7-487e-bdbe-24f82b3dafb5", "timestamp": "1551783085", "to_ids": false, "value": "https://www.virustotal.com/file/d9746224143010adada9989bf6b1014bb10e8165615e1ef6b58fd429cd2aa20a/analysis/1550623021/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "aa9fdbe7-b77c-4b57-b90d-b5003630f724", "timestamp": "1551783085", "to_ids": false, "value": "35/67", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "c4234048-c767-46e0-b00b-23d614a98173", "sharing_group_id": "0", "timestamp": "1551999386", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "c4234048-c767-46e0-b00b-23d614a98173", "uuid": "5c81a19f-5b5c-4bea-a04a-481802de0b81", "timestamp": "1551999391", "referenced_uuid": "ef19ab7e-b5d8-412e-92bc-9122218f90e4", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "46356057-134b-48e6-83fd-d7f8269a6bb8", "timestamp": "1551772450", "to_ids": true, "value": "0eb739c8faf77dae0546ff447ad06038", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "19fe9662-c1b1-4a11-9a22-bc5d3f02edff", "timestamp": "1551772450", "to_ids": true, "value": "12262afd366b6d123508ef79d5cfc49251f5e368", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "a40f6c49-204d-485c-91be-f78c8d663b95", "timestamp": "1551772450", "to_ids": true, "value": "9505ee1c9b92390e6f1404648686c524681874e6986bdf6236ca7e0ca5c2693a", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "ef19ab7e-b5d8-412e-92bc-9122218f90e4", "sharing_group_id": "0", "timestamp": "1551999386", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "d8b0fa1f-c414-4d70-8ff6-a6b37e927e78", "timestamp": "1551772450", "to_ids": false, "value": "2019-03-06 00:08:22", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "3cb88750-c8d6-49dd-a9e9-9e4f5631836b", "timestamp": "1551772450", "to_ids": false, "value": "https://www.virustotal.com/file/9505ee1c9b92390e6f1404648686c524681874e6986bdf6236ca7e0ca5c2693a/analysis/1551830902/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "cd3b7425-7563-4cd3-86a4-ddc0666c7852", "timestamp": "1551772450", "to_ids": false, "value": "35/67", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "7dbe5bfc-d541-4179-a365-3f274ec85c97", "sharing_group_id": "0", "timestamp": "1551999386", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "7dbe5bfc-d541-4179-a365-3f274ec85c97", "uuid": "5c81a19f-1c14-4aa1-a40f-4de702de0b81", "timestamp": "1551999391", "referenced_uuid": "a13db91c-a587-4810-ae35-81ad538a42aa", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "cdcc150c-bac1-4e8f-a75c-73b34ff52170", "timestamp": "1551787300", "to_ids": true, "value": "aea8d3002132094a58d5189a8e886cf8", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "b0de6fa7-fb9e-4212-941d-2eceb64badbb", "timestamp": "1551787300", "to_ids": true, "value": "c6b6f203225d102fe8173500dd74ab9b3c4b4a13", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "116243be-d708-4eeb-b7d5-f66389bb3241", "timestamp": "1551787300", "to_ids": true, "value": "8dc6e8eccaaa9ebe77b60ab364e7a56ba81bb00664485d3090b58286df0ca37c", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "a13db91c-a587-4810-ae35-81ad538a42aa", "sharing_group_id": "0", "timestamp": "1551999386", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "49179a2f-4b82-4bd0-a84a-b4541c23e2bc", "timestamp": "1551787300", "to_ids": false, "value": "2019-03-03 05:10:17", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "9692eb2e-5956-4c0a-9fa4-54fe57ba02ca", "timestamp": "1551787300", "to_ids": false, "value": "https://www.virustotal.com/file/8dc6e8eccaaa9ebe77b60ab364e7a56ba81bb00664485d3090b58286df0ca37c/analysis/1551589817/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "8cddcab6-c166-4b67-936f-a23f10ba57ef", "timestamp": "1551787300", "to_ids": false, "value": "20/52", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "198efd3b-e179-4498-bab8-22187889eeb5", "sharing_group_id": "0", "timestamp": "1551999386", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "198efd3b-e179-4498-bab8-22187889eeb5", "uuid": "5c81a19f-9f74-4194-a2c9-420b02de0b81", "timestamp": "1551999391", "referenced_uuid": "1a13e62a-1e04-4b73-af40-e077849ad7fa", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "e17c1be7-2db4-4541-9712-7d763e4f84a4", "timestamp": "1551772540", "to_ids": true, "value": "9c3396aa94083916227201bf1396a2ca", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "6af2773b-6305-499c-aaa5-905c105fea24", "timestamp": "1551772540", "to_ids": true, "value": "02133960eeb5dbf136e37d1b1b317306eae85036", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "b4c83cbb-9383-447f-939f-4891032a4ec9", "timestamp": "1551772540", "to_ids": true, "value": "c6c332ae1ccb580ac621d3cf667ce9c017be41f8ad04a94c0c0ea37c4789dd14", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "1a13e62a-1e04-4b73-af40-e077849ad7fa", "sharing_group_id": "0", "timestamp": "1551999386", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "c40a38b6-590e-4041-8d4a-b3a970a97ae0", "timestamp": "1551772540", "to_ids": false, "value": "2019-02-20 00:41:42", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "fbbeda9f-8f2a-4afb-9aca-5cda517239f7", "timestamp": "1551772540", "to_ids": false, "value": "https://www.virustotal.com/file/c6c332ae1ccb580ac621d3cf667ce9c017be41f8ad04a94c0c0ea37c4789dd14/analysis/1550623302/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "2aee7374-ecdc-4da4-8929-0a19b36404a7", "timestamp": "1551772540", "to_ids": false, "value": "36/64", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "056a71eb-527f-47c6-bb7c-3e38f615ea86", "sharing_group_id": "0", "timestamp": "1551999386", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "056a71eb-527f-47c6-bb7c-3e38f615ea86", "uuid": "5c81a19f-28ec-4d5a-b202-495202de0b81", "timestamp": "1551999391", "referenced_uuid": "dbef32c7-cd7d-4324-a1ac-22c6838b047e", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "776e2cc6-29fb-4bf7-b10c-9e249148147c", "timestamp": "1551784031", "to_ids": true, "value": "11fc4829c2fff9fb240acbd71c60fc67", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "bffb0b05-9fb3-4843-a3ed-a7f2f84d0469", "timestamp": "1551784031", "to_ids": true, "value": "63282c2399bde7558163421d624f1d5c0f08010e", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "912c7af7-a66b-40fa-998a-ed861d5ca3cf", "timestamp": "1551784031", "to_ids": true, "value": "5d91abb9519b260dfef8328fce1db4ec19db79bbe59c1f512d15f32b35db04be", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "dbef32c7-cd7d-4324-a1ac-22c6838b047e", "sharing_group_id": "0", "timestamp": "1551999386", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "853c5d4a-614a-4f32-a19a-814f37fed061", "timestamp": "1551784031", "to_ids": false, "value": "2019-03-06 00:08:20", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "6cb2a159-9bf4-43b2-8662-39d27983aa64", "timestamp": "1551784031", "to_ids": false, "value": "https://www.virustotal.com/file/5d91abb9519b260dfef8328fce1db4ec19db79bbe59c1f512d15f32b35db04be/analysis/1551830900/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "450ceaee-6c75-4748-8c80-106523eab7bb", "timestamp": "1551784031", "to_ids": false, "value": "35/70", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "94710f77-734e-4779-a517-39e9ff83c5c3", "sharing_group_id": "0", "timestamp": "1551999387", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "94710f77-734e-4779-a517-39e9ff83c5c3", "uuid": "5c81a19f-1a78-466e-a0bb-4eae02de0b81", "timestamp": "1551999391", "referenced_uuid": "43d64fc5-70dc-4429-8be4-f4d6401bac8f", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "930b20eb-b3ad-4968-b7af-0270ad6edb22", "timestamp": "1551784071", "to_ids": true, "value": "54783422cfd7029a26a3f3f5e9087d8a", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "f066e392-8718-457b-9976-70492afbfbfe", "timestamp": "1551784071", "to_ids": true, "value": "5d379e533acef24ada64dbaf275650093ec790e7", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "476ec45f-d499-448d-90ff-717462f76baa", "timestamp": "1551784071", "to_ids": true, "value": "ba08b13577eef393db69a20d9b881bfd18e86ec37690c25cc2931a7b26dbdc6f", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "43d64fc5-70dc-4429-8be4-f4d6401bac8f", "sharing_group_id": "0", "timestamp": "1551999387", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "b78fd9bb-41b4-4387-999c-90b9f90758bc", "timestamp": "1551784071", "to_ids": false, "value": "2019-03-01 03:41:39", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "e30c95bd-5e0b-4e47-bd51-b98558b96b24", "timestamp": "1551784071", "to_ids": false, "value": "https://www.virustotal.com/file/ba08b13577eef393db69a20d9b881bfd18e86ec37690c25cc2931a7b26dbdc6f/analysis/1551411699/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "86e4ed6f-0324-495f-808b-a16ccb2bd67a", "timestamp": "1551784071", "to_ids": false, "value": "24/55", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "d21b3bc0-51d3-4d83-ab29-eab87f9d72f6", "sharing_group_id": "0", "timestamp": "1551999387", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "d21b3bc0-51d3-4d83-ab29-eab87f9d72f6", "uuid": "5c81a19f-cff8-4e24-88ed-4dd602de0b81", "timestamp": "1551999391", "referenced_uuid": "7bf89ab8-38dc-4396-9ed7-ab7767e19d08", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "cf3285cc-6452-42b0-85da-71a32b9c05f3", "timestamp": "1551783017", "to_ids": true, "value": "66b73fba4e47b3184edd75b0ce9cf928", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "c7fe3736-3eb2-422b-915c-179b84978831", "timestamp": "1551783017", "to_ids": true, "value": "340b6b0370730a8344bc880c786a4e10fcd961a7", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "e381a034-ca08-4062-9543-73282b09ec91", "timestamp": "1551783017", "to_ids": true, "value": "d62bf83fb5a7b148f326908051b149b77663149d47426ce749e944f7abf5d304", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "7bf89ab8-38dc-4396-9ed7-ab7767e19d08", "sharing_group_id": "0", "timestamp": "1551999387", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "b4939e5b-d9f5-41cb-821e-0f8c57185ec2", "timestamp": "1551783017", "to_ids": false, "value": "2019-02-20 00:35:43", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "477fd8aa-292f-458e-ba07-99f738ca71e7", "timestamp": "1551783017", "to_ids": false, "value": "https://www.virustotal.com/file/d62bf83fb5a7b148f326908051b149b77663149d47426ce749e944f7abf5d304/analysis/1550622943/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "ae59882b-bc1d-406e-a45c-0cc44b6ca447", "timestamp": "1551783017", "to_ids": false, "value": "47/68", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "52839704-cde1-423b-b83b-85f3be6c94ff", "sharing_group_id": "0", "timestamp": "1551999387", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "52839704-cde1-423b-b83b-85f3be6c94ff", "uuid": "5c81a19f-6ffc-4746-93dc-4cda02de0b81", "timestamp": "1551999391", "referenced_uuid": "4676a5ec-697d-41af-88f8-1edd0b391a93", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "43c3991e-5e0b-40ef-a589-a1ebfbd39e3f", "timestamp": "1551783348", "to_ids": true, "value": "9d685308d3125e14287ecb7fbe5fcd37", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "82c1979c-ae78-456a-9fe0-063a5f0660e6", "timestamp": "1551783348", "to_ids": true, "value": "c6dfbb9ff21830fa48e2a4e831908345cab572ca", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "014fafc3-6459-476a-aea0-4e45fca01c52", "timestamp": "1551783348", "to_ids": true, "value": "71841a1b5ee1b383a9282bf513723b7f1713a0e1ee501db38d64c2db9ba08ec4", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "4676a5ec-697d-41af-88f8-1edd0b391a93", "sharing_group_id": "0", "timestamp": "1551999387", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "c84855e8-06c6-4876-a86c-3308f8c77c45", "timestamp": "1551783348", "to_ids": false, "value": "2019-02-26 07:12:06", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "4b79e362-ee21-4581-b1b5-717d3e8a4c0c", "timestamp": "1551783348", "to_ids": false, "value": "https://www.virustotal.com/file/71841a1b5ee1b383a9282bf513723b7f1713a0e1ee501db38d64c2db9ba08ec4/analysis/1551165126/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "835395bd-c2d5-49ee-84aa-049b4b5ca6aa", "timestamp": "1551783348", "to_ids": false, "value": "37/67", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "8aa148ae-97d2-47ff-83d9-7fb3a2d8a4bd", "sharing_group_id": "0", "timestamp": "1551999387", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "8aa148ae-97d2-47ff-83d9-7fb3a2d8a4bd", "uuid": "5c81a19f-5824-4655-8ee2-48cc02de0b81", "timestamp": "1551999391", "referenced_uuid": "87dd8a5a-c52f-416e-885c-020efd23e62e", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "3af80cb0-4310-4109-b848-6dd2704fbe8a", "timestamp": "1551772586", "to_ids": true, "value": "20301fdd013c836039b8cfe0d100a1d7", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "d7e8ecf4-13ac-4757-9e91-691481dd6692", "timestamp": "1551772586", "to_ids": true, "value": "e8e787b2ab734d07146b48d9bf5263a0e476fb0c", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "42822e8e-3999-4de4-bed5-687ec8ea7ed2", "timestamp": "1551772586", "to_ids": true, "value": "84edc9b828de54d4bd00959fabf583a1392cb4c3eab3498c52818c96dc554b90", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "87dd8a5a-c52f-416e-885c-020efd23e62e", "sharing_group_id": "0", "timestamp": "1551999387", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "4f3c774b-504c-433a-8aae-7a5573942f44", "timestamp": "1551772586", "to_ids": false, "value": "2019-02-28 01:30:52", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "a63daba5-11a3-4a7f-a1d2-0b6aa7d1adf6", "timestamp": "1551772586", "to_ids": false, "value": "https://www.virustotal.com/file/84edc9b828de54d4bd00959fabf583a1392cb4c3eab3498c52818c96dc554b90/analysis/1551317452/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "94bc79ec-82a0-4d84-bd3c-aa37b85e599a", "timestamp": "1551772586", "to_ids": false, "value": "47/61", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "171c1ddf-7a54-489d-9684-92c88617c956", "sharing_group_id": "0", "timestamp": "1551999387", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "171c1ddf-7a54-489d-9684-92c88617c956", "uuid": "5c81a19f-6074-47ba-b7fc-497c02de0b81", "timestamp": "1551999391", "referenced_uuid": "5f3792ac-f82d-4592-88c3-ee892c828c41", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "7aa76241-137b-4a14-b039-3ee0ba8d6eaa", "timestamp": "1551783980", "to_ids": true, "value": "b02f3881321f0912b2ae3f27498c448f", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "df65d5ff-5fac-4118-aa06-55a0d0574b5f", "timestamp": "1551783980", "to_ids": true, "value": "de7212b695000dd10d3694de5a1d94348cbe464b", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "c50fe1c2-f267-4d5a-9d65-55930e6fe6cb", "timestamp": "1551783980", "to_ids": true, "value": "57224737bfc4514aa90e9ff88626ac112e8c9f80ed54616865a4cc5d7d08f36c", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "5f3792ac-f82d-4592-88c3-ee892c828c41", "sharing_group_id": "0", "timestamp": "1551999387", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "cecc8a3e-4370-4f1d-9b6d-e23907cbfa9f", "timestamp": "1551783980", "to_ids": false, "value": "2019-03-06 00:08:19", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "20cf6e1e-2727-4858-8f9d-91d3b475fd00", "timestamp": "1551783980", "to_ids": false, "value": "https://www.virustotal.com/file/57224737bfc4514aa90e9ff88626ac112e8c9f80ed54616865a4cc5d7d08f36c/analysis/1551830899/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "36c47e15-4958-4078-9661-f8148ab5f515", "timestamp": "1551783980", "to_ids": false, "value": "50/71", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "1a5e57b9-36fe-421d-a886-16026857b58f", "sharing_group_id": "0", "timestamp": "1551999388", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "1a5e57b9-36fe-421d-a886-16026857b58f", "uuid": "5c81a19f-3e94-42ce-a867-4d5202de0b81", "timestamp": "1551999391", "referenced_uuid": "04c722ce-cdee-4769-b6a8-b6f26eb83949", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "96096724-f10d-4b81-a811-ad35e92f5ddc", "timestamp": "1551783031", "to_ids": true, "value": "1dfe826f71c20ff04987a9160c177e46", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "61eb9fe7-092d-492b-b65a-5a89bad5c2d9", "timestamp": "1551783031", "to_ids": true, "value": "592f882c54bb0038d976d6c88d58757aca10e307", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "153f39a9-ccf9-47d1-9821-9be782cd2d1c", "timestamp": "1551783031", "to_ids": true, "value": "493aadefcf45642c34b4d84a84a41da9ac173b52c3217f62b3e25ece6379bd94", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "04c722ce-cdee-4769-b6a8-b6f26eb83949", "sharing_group_id": "0", "timestamp": "1551999388", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "51432af3-3f7c-4772-8140-4afe2967de9d", "timestamp": "1551783031", "to_ids": false, "value": "2019-03-01 01:36:06", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "877b148a-23e7-4d9c-9f85-ed60d2859a22", "timestamp": "1551783031", "to_ids": false, "value": "https://www.virustotal.com/file/493aadefcf45642c34b4d84a84a41da9ac173b52c3217f62b3e25ece6379bd94/analysis/1551404166/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "30b25e71-827d-4470-bd67-714a74a6f96c", "timestamp": "1551783031", "to_ids": false, "value": "35/65", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "b3177b4e-555f-4f20-9a65-a08e1d02f9fd", "sharing_group_id": "0", "timestamp": "1551999389", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "b3177b4e-555f-4f20-9a65-a08e1d02f9fd", "uuid": "5c81a19f-04c0-4351-ba1a-480b02de0b81", "timestamp": "1551999391", "referenced_uuid": "af4721d1-291a-46d2-8eb9-50fc1f8da0cb", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "39e37a10-0c00-4c00-ab7e-eabf455f014d", "timestamp": "1551782958", "to_ids": true, "value": "6106449779d453be4ae28d89f207e921", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "1909f835-2961-45d8-b5c2-b11fdd008b42", "timestamp": "1551782958", "to_ids": true, "value": "f0e5685c433ddba3a5d7b223cc738d8a7501c977", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "e199accd-7b60-4dee-bcd6-5253bcab7049", "timestamp": "1551782958", "to_ids": true, "value": "55e69e1337af0d93b5a3742d999bf805177c404e7e60e48f303509592ecd0e29", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "af4721d1-291a-46d2-8eb9-50fc1f8da0cb", "sharing_group_id": "0", "timestamp": "1551999389", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "b4808b84-09c1-4221-88a4-bf3ecfd2bbb0", "timestamp": "1551782958", "to_ids": false, "value": "2019-02-20 00:34:57", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "d3bfa2d1-5f35-423d-8267-67fcd772da76", "timestamp": "1551782958", "to_ids": false, "value": "https://www.virustotal.com/file/55e69e1337af0d93b5a3742d999bf805177c404e7e60e48f303509592ecd0e29/analysis/1550622897/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "351d3c6c-d9f5-47b8-94b2-e958bd45045e", "timestamp": "1551782958", "to_ids": false, "value": "44/68", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "173a3d42-d718-41eb-ac2a-43d4e432bb46", "sharing_group_id": "0", "timestamp": "1551999389", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "173a3d42-d718-41eb-ac2a-43d4e432bb46", "uuid": "5c81a19f-1418-49a2-99f8-486c02de0b81", "timestamp": "1551999391", "referenced_uuid": "cc17229b-13c4-40e8-887f-1d7cf5abd020", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "fb4c77dd-ab91-4057-aa17-385e067f6753", "timestamp": "1551782223", "to_ids": true, "value": "242c31d0ce2109fdface788663e90f49", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "61f9fb1a-1863-4c2c-ab5e-9eeb064e83cd", "timestamp": "1551782223", "to_ids": true, "value": "59c089f8e781f6686dc49776805697f9ad044c15", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "240649ca-e325-4dd2-ae26-989c73398875", "timestamp": "1551782223", "to_ids": true, "value": "12ee511259f7f03e8472efa8baf3e250b64f8da65fe71212cedfdac887f503f4", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "cc17229b-13c4-40e8-887f-1d7cf5abd020", "sharing_group_id": "0", "timestamp": "1551999389", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "cb4ba500-dfcf-45c0-9b5e-61eb18065266", "timestamp": "1551782223", "to_ids": false, "value": "2019-03-01 01:38:24", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "407af7e6-9b19-4f7a-b680-eb49744683cd", "timestamp": "1551782223", "to_ids": false, "value": "https://www.virustotal.com/file/12ee511259f7f03e8472efa8baf3e250b64f8da65fe71212cedfdac887f503f4/analysis/1551404304/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "1a50ab2e-1721-4573-a56b-c3a2c4d70095", "timestamp": "1551782223", "to_ids": false, "value": "37/62", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "ac2931c8-7efd-400e-a3da-9699601420cd", "sharing_group_id": "0", "timestamp": "1551999389", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "ac2931c8-7efd-400e-a3da-9699601420cd", "uuid": "5c81a19f-1174-4acb-9bc4-40c902de0b81", "timestamp": "1551999391", "referenced_uuid": "526e45f9-c018-4f26-b8ac-42a435da08c9", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "21277422-ce38-4820-9d25-2a7d15b63351", "timestamp": "1551787129", "to_ids": true, "value": "f22db1e3ea74af791e34ad5aa0297664", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "52843f7f-d458-485f-99d7-8d0d69251a1a", "timestamp": "1551787129", "to_ids": true, "value": "16cb3fa3793a57ef54c44b11f94e9b5ba32753bb", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "3af86a2f-1aba-47f2-90c5-3a283a640927", "timestamp": "1551787129", "to_ids": true, "value": "95f1a84103f789d1ae749a3f8a384a29b39d6766e8a13d450b6553c39aba4fd7", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "526e45f9-c018-4f26-b8ac-42a435da08c9", "sharing_group_id": "0", "timestamp": "1551999389", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "111443ae-f660-41eb-b7e2-b9b8b1d70c46", "timestamp": "1551787129", "to_ids": false, "value": "2019-02-08 04:38:52", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "e627347d-3d78-47ee-b1fc-c0186cfc4405", "timestamp": "1551787129", "to_ids": false, "value": "https://www.virustotal.com/file/95f1a84103f789d1ae749a3f8a384a29b39d6766e8a13d450b6553c39aba4fd7/analysis/1549600732/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "1b008812-a0dd-420d-9899-58001cb8625c", "timestamp": "1551787129", "to_ids": false, "value": "27/56", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "3a427677-7b23-40b7-9d8f-190c766ef8fe", "sharing_group_id": "0", "timestamp": "1551999389", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "3a427677-7b23-40b7-9d8f-190c766ef8fe", "uuid": "5c81a19f-efd4-4d87-81be-49db02de0b81", "timestamp": "1551999391", "referenced_uuid": "e12c9d7a-8312-437d-8b1a-c15e09ef37d6", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "621558e3-9c18-42fa-8804-b213019480e7", "timestamp": "1551783535", "to_ids": true, "value": "4de21c3af64b3b605446278de92dfff4", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "8b186702-b741-452e-8891-b88e76999a99", "timestamp": "1551783535", "to_ids": true, "value": "8180c24445b162ce3338ee2ce77053acc08cda88", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "5a97b996-a473-4393-8f9b-2012b7f90b3c", "timestamp": "1551783535", "to_ids": true, "value": "74d6b81565aeb95ee9df37ef7738d10baa9866261fb894d9ee9d67fc7c66badc", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "e12c9d7a-8312-437d-8b1a-c15e09ef37d6", "sharing_group_id": "0", "timestamp": "1551999390", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "f4a0a65a-ee63-40be-bce0-1b438cca0c15", "timestamp": "1551783535", "to_ids": false, "value": "2019-02-27 01:25:09", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "0bbebf58-9abf-437c-9279-1e177cb8b20b", "timestamp": "1551783535", "to_ids": false, "value": "https://www.virustotal.com/file/74d6b81565aeb95ee9df37ef7738d10baa9866261fb894d9ee9d67fc7c66badc/analysis/1551230709/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "4d80ad46-5ec8-4662-9430-1d7c8844a77b", "timestamp": "1551783535", "to_ids": false, "value": "37/68", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "de5147bc-03f2-4d1a-a9c6-80bf8d449e96", "sharing_group_id": "0", "timestamp": "1551999390", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "de5147bc-03f2-4d1a-a9c6-80bf8d449e96", "uuid": "5c81a19f-1a00-4e38-8c5c-48bc02de0b81", "timestamp": "1551999391", "referenced_uuid": "ecb9a5f0-73c7-4556-a7e3-9e2f4ca35fb5", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "316906e9-d9d0-43a3-ae3c-ec4b32ede39d", "timestamp": "1551786946", "to_ids": true, "value": "8332be776617364c16868c1ad6b4efe7", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "0eea15f7-01ab-41c6-91df-8790788d7d60", "timestamp": "1551786946", "to_ids": true, "value": "618500453c5488e4a2fe43d5647f46eefe01bd56", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "6cf33474-ed4d-44a3-a6e5-44041bbfcd6c", "timestamp": "1551786946", "to_ids": true, "value": "5f2ac8672e19310bd532c47d209272bd75075696dea6ffcc47d1d37f18aff141", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "ecb9a5f0-73c7-4556-a7e3-9e2f4ca35fb5", "sharing_group_id": "0", "timestamp": "1551999390", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "482d6546-9884-4c44-93de-b53a5ec26091", "timestamp": "1551786946", "to_ids": false, "value": "2019-02-06 04:53:05", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "e68b44fc-6486-4cf1-9634-53c635ca2425", "timestamp": "1551786946", "to_ids": false, "value": "https://www.virustotal.com/file/5f2ac8672e19310bd532c47d209272bd75075696dea6ffcc47d1d37f18aff141/analysis/1549428785/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "cbf3f3c6-224a-477b-9532-b8f774a6d8e8", "timestamp": "1551786946", "to_ids": false, "value": "20/57", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "163ddda1-900e-4bff-950b-0d5d1c2029c5", "sharing_group_id": "0", "timestamp": "1551999390", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "163ddda1-900e-4bff-950b-0d5d1c2029c5", "uuid": "5c81a1a0-2e04-4963-b2bd-431702de0b81", "timestamp": "1551999392", "referenced_uuid": "05fae74d-fd81-4262-9d67-eed24b685f5d", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "76391e09-5ab3-446b-a139-856161bbab49", "timestamp": "1551783836", "to_ids": true, "value": "ab73b1395938c48d62b7eeb5c9f3409d", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "81ae915d-3e6e-46db-adbb-eeb8477c6f15", "timestamp": "1551783836", "to_ids": true, "value": "ac5ae9d2cee05c08759ca970399bb8bb54fb99cf", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "cc988a84-41cd-46f9-bac0-ed22a211822d", "timestamp": "1551783836", "to_ids": true, "value": "3f30875674917b92584600a47f93a2724f11383fb03efd1ae8c2700dde97f6ac", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "05fae74d-fd81-4262-9d67-eed24b685f5d", "sharing_group_id": "0", "timestamp": "1551999390", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "f84ffdb9-7b31-48e8-9157-b1e89ae14830", "timestamp": "1551783836", "to_ids": false, "value": "2019-03-06 00:08:17", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "d517c3e4-660c-4fd8-8882-c613ac07783f", "timestamp": "1551783836", "to_ids": false, "value": "https://www.virustotal.com/file/3f30875674917b92584600a47f93a2724f11383fb03efd1ae8c2700dde97f6ac/analysis/1551830897/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "c932aff6-e6ff-4a2a-81a1-d55e0617ae61", "timestamp": "1551783836", "to_ids": false, "value": "40/66", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "52150aff-7237-412a-a493-1be95ce36e7f", "sharing_group_id": "0", "timestamp": "1551999390", "description": "File object describing a file with meta-information", "template_version": "15", "ObjectReference": [{"comment": "", "object_uuid": "52150aff-7237-412a-a493-1be95ce36e7f", "uuid": "5c81a1a0-59fc-48d1-94ce-48ed02de0b81", "timestamp": "1551999392", "referenced_uuid": "2c88a906-411b-4819-a1c3-16907c03e3f9", "relationship_type": "analysed-with"}], "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "46220ce6-7313-4f82-8965-fd1978d21511", "timestamp": "1551787160", "to_ids": true, "value": "48d9e625ea3efbcbef3963c8714544a7", "disable_correlation": false, "object_relation": "md5", "type": "md5"}, {"comment": "", "category": "Payload delivery", "uuid": "16725d24-62aa-47f6-8307-40b33d0b65d0", "timestamp": "1551787160", "to_ids": true, "value": "ad6b7c7b61d662ab653c25fe850e2406f283c919", "disable_correlation": false, "object_relation": "sha1", "type": "sha1"}, {"comment": "", "category": "Payload delivery", "uuid": "aaf23faa-d96b-4340-a1a6-ff2d4142f9ef", "timestamp": "1551787160", "to_ids": true, "value": "cd6a12cc693e98e4f47d2161e9fe99d04895472d964575c749bbdd460f0fefdc", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", "uuid": "2c88a906-411b-4819-a1c3-16907c03e3f9", "sharing_group_id": "0", "timestamp": "1551999390", "description": "VirusTotal report", "template_version": "2", "Attribute": [{"comment": "", "category": "Other", "uuid": "7d5d0569-be68-4d21-9791-d4d58c9fc61e", "timestamp": "1551787160", "to_ids": false, "value": "2019-03-05 06:01:28", "disable_correlation": false, "object_relation": "last-submission", "type": "datetime"}, {"comment": "", "category": "Payload delivery", "uuid": "27d8cffa-c7a4-402e-90d6-4e7dd32a5e6e", "timestamp": "1551787160", "to_ids": false, "value": "https://www.virustotal.com/file/cd6a12cc693e98e4f47d2161e9fe99d04895472d964575c749bbdd460f0fefdc/analysis/1551765688/", "disable_correlation": false, "object_relation": "permalink", "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "f145872f-1e71-41af-a1ed-b2a828ca7e4f", "timestamp": "1551787160", "to_ids": false, "value": "12/57", "disable_correlation": true, "object_relation": "detection-ratio", "type": "text"}], "distribution": "5", "meta-category": "misc", "name": "virustotal-report"}], "analysis": "2", "Attribute": [{"comment": "", "category": "External analysis", "uuid": "5c7e2abc-d3f8-4127-909f-4f0e950d210f", "timestamp": "1551772348", "to_ids": false, "value": "https://www.ahnlab.com/kr/site/securityinfo/secunews/secuNewsView.do?menu_dist=2&curPage=1&seq=28102", "disable_correlation": false, "object_relation": null, "type": "link"}, {"comment": "", "category": "External analysis", "uuid": "5c7e2abc-5794-4d64-9b15-4f0e950d210f", "timestamp": "1551772348", "to_ids": false, "value": "http://download.ahnlab.com/kr/site/library/%5bAnalysis_Report%5dOperation_Kabar_Cobra.pdf", "disable_correlation": false, "object_relation": null, "type": "link"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-74e8-49d6-9c2c-45bd950d210f", "timestamp": "1551792147", "to_ids": true, "value": "185.224.138.29", "disable_correlation": false, "object_relation": null, "type": "ip-dst"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-0ca4-4610-b1ef-42f8950d210f", "timestamp": "1551792147", "to_ids": true, "value": "navem-rnail.hol.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-b568-49f9-9595-4241950d210f", "timestamp": "1551792147", "to_ids": true, "value": "navem-rnail.hol.es/est/down/msofficeupdate64", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-ff70-49ee-9597-44fb950d210f", "timestamp": "1551792147", "to_ids": true, "value": "myaccounnts-goggle.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-9b1c-42d8-ac77-4075950d210f", "timestamp": "1551792147", "to_ids": true, "value": "bmail-or-kr.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-b42c-453c-b45f-434b950d210f", "timestamp": "1551792147", "to_ids": true, "value": "aiyac-updaite.hol.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-a3b0-44e3-88a8-4f9d950d210f", "timestamp": "1551792147", "to_ids": true, "value": "rnyacount-jpadmin.hol.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-7418-4a22-9a6a-4bac950d210f", "timestamp": "1551792147", "to_ids": true, "value": "aiyac-updaite.hol.es/est/down/alyacmonitor64", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-11dc-4e5a-ae98-4514950d210f", "timestamp": "1551792147", "to_ids": true, "value": "aiyac-updaite.hol.es/est/down/msofficeupdate64", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-f9fc-49e4-8fea-467f950d210f", "timestamp": "1551792147", "to_ids": true, "value": "rnyacount-jpadmin.hol.es/est/down/msofficeupdate64", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-d40c-4bd1-9544-44cb950d210f", "timestamp": "1551792147", "to_ids": true, "value": "rnyacount-jpadmin.hol.es/est/down/fw.a", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-6f38-401a-8c56-4404950d210f", "timestamp": "1551792147", "to_ids": true, "value": "ms-performance.hol.es/mysite/down/msperformancecheck.b", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-cf04-49f6-bc73-4eed950d210f", "timestamp": "1551792147", "to_ids": true, "value": "ms-performance.hol.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-1c10-402d-89eb-42c3950d210f", "timestamp": "1551792147", "to_ids": true, "value": "ms-performance.hol.es/mysite/down/msperformancecheck64", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-2758-431d-8c04-4446950d210f", "timestamp": "1551792147", "to_ids": true, "value": "suppcrt-seourity.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-4c08-4857-8d6c-47ee950d210f", "timestamp": "1551792147", "to_ids": true, "value": "ahnniab.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-f028-4adb-8442-4631950d210f", "timestamp": "1551792147", "to_ids": true, "value": "ahnniab.esy.es/w/down/alyacmonitor.a", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-b838-46b5-b0ca-4c91950d210f", "timestamp": "1551792147", "to_ids": true, "value": "ahnniab.esy.es/w/down/tvEngine.dll", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-b71c-46ce-9a40-41fa950d210f", "timestamp": "1551792147", "to_ids": true, "value": "daum-safety-team.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-568c-4419-9b72-45cf950d210f", "timestamp": "1551792147", "to_ids": true, "value": "myacccounts-goggle.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-3864-4e46-b858-4895950d210f", "timestamp": "1551792147", "to_ids": true, "value": "myacccount-goggle.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-db10-40b6-ac51-455b950d210f", "timestamp": "1551792147", "to_ids": true, "value": "nav-mail.hol.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-eca0-435a-ae2c-4453950d210f", "timestamp": "1551792147", "to_ids": true, "value": "mail-support.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-2e50-44c6-a6ef-4679950d210f", "timestamp": "1551792147", "to_ids": true, "value": "my-homework.890m.com", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-1028-47e2-a423-42ee950d210f", "timestamp": "1551792147", "to_ids": true, "value": "my-homework.890m.com/gnu/download/tvEngine.dll", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-a188-4133-8b14-40ec950d210f", "timestamp": "1551792147", "to_ids": true, "value": "my-homework.890m.com/gnu/download/list.dll", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7813-74ac-4e42-b2c7-498c950d210f", "timestamp": "1551792147", "to_ids": true, "value": "nid-mail.hol.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-c1d4-45f9-8011-46e3950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-mail.esy.es/gnu//download/tmp.dll", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-ba78-477f-83f5-449f950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-mail.esy.es/gnu//download/notepad64.exe", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-8ec8-43de-b4f7-47f3950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-mail.esy.es/bbs/data/tmp/x64/wall.cab", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-e0e0-42b8-bdbd-4b19950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-mail.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-6a70-43ef-81a1-4164950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-mail.esy.es/bbs/data/tmp/logger/private32", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-c520-4de0-bf41-436e950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-mail.esy.es/bbs/data/tmp/logger/private64", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-df5c-4420-a125-4df3950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-mail.esy.es/bbs/data/tmp/logger/secu32_init", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-f2f4-4575-8eb7-402e950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-mail.esy.es/bbs/data/tmp/logger/secu64_init", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-1bfc-45b2-a0ac-4870950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-mail.pe.hu", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-1d9c-461a-a836-43b9950d210f", "timestamp": "1551792148", "to_ids": true, "value": "newsea36-chol.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-cadc-4705-9650-4c70950d210f", "timestamp": "1551792148", "to_ids": true, "value": "acount-qooqle.pe.hu", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-ad7c-4f8f-bb85-4588950d210f", "timestamp": "1551792148", "to_ids": true, "value": "myprofileacc.pe.hu", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-370c-4e7e-90ca-4635950d210f", "timestamp": "1551792148", "to_ids": true, "value": "customer-center.esy.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-115c-418c-9c0c-44bd950d210f", "timestamp": "1551792148", "to_ids": true, "value": "need-nver.hol.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-1384-4199-a9ba-43c3950d210f", "timestamp": "1551792148", "to_ids": true, "value": "daum-settting.hol.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-3168-44c2-92a0-49ec950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-never.pe.hu", "disable_correlation": false, "object_relation": null, "type": "hostname"}, {"comment": "", "category": "Network activity", "uuid": "5c7e7814-9d6c-4882-979d-49a6950d210f", "timestamp": "1551792148", "to_ids": true, "value": "nid-naver.hol.es", "disable_correlation": false, "object_relation": null, "type": "hostname"}], "extends_uuid": "", "published": false, "date": "2019-03-04", "Orgc": {"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f", "name": "CIRCL"}, "threat_level_id": "3", "uuid": "5c7e29f1-3930-4e14-8f67-4b6f950d210f"}}