misp-circl-feed/feeds/circl/misp/5d24b8a7-5294-4ff6-8613-211f950d210f.json


			
				
				
					
						
						
						
							
							
							{"Event": {"info": "OSINT -  Anubis Android Malware Returns with Over 17,000 Samples", "Tag": [{"colour": "#004646", "exportable": true, "name": "type:OSINT"}, {"colour": "#0071c3", "exportable": true, "name": "osint:lifetime=\"perpetual\""}, {"colour": "#0087e8", "exportable": true, "name": "osint:certainty=\"50\""}, {"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#5f0077", "exportable": true, "name": "ms-caro-malware:malware-platform=\"AndroidOS\""}, {"colour": "#0088cc", "exportable": true, "name": "misp-galaxy:malpedia=\"Anubis\""}], "publish_timestamp": "0", "timestamp": "1562688813", "analysis": "0", "Attribute": [{"comment": "", "category": "Payload delivery", "uuid": "5d24b8c5-a738-4894-a073-4337950d210f", "timestamp": "1562687685", "to_ids": true, "value": "9046270d735579bcedb6bb7c0a2ad21f9b5ef9432e46e733b36de964aecd3abc", "disable_correlation": false, "object_relation": null, "type": "sha256"}, {"comment": "", "category": "Payload delivery", "uuid": "5d24b8c5-895c-4958-abc6-4be3950d210f", "timestamp": "1562687685", "to_ids": true, "value": "6079af3bab8bb0ba445cd0dd896d8c8d7845da3757755b4ef3af584d227e0490", "disable_correlation": false, "object_relation": null, "type": "sha256"}, {"comment": "", "category": "Payload delivery", "uuid": "5d24b8c5-a00c-4da3-a5b8-4663950d210f", "timestamp": "1562687685", "to_ids": true, "value": "1acca6953081cfc12d5cbeda1990b93b3298b1adc3c6ffad624e454f5854736f", "disable_correlation": false, "object_relation": null, "type": "sha256"}, {"comment": "", "category": "Payload delivery", "uuid": "5d24b8c5-615c-4c8f-acaa-48fb950d210f", "timestamp": "1562687685", "to_ids": true, "value": "f767baadda60c618d7e14461831e7371a54cdf152b1fd5eb52a8aa4bb7300227", "disable_correlation": false, "object_relation": null, "type": "sha256"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c5-7594-41c7-8aa9-4788950d210f", "timestamp": "1562687685", "to_ids": true, "value": "http://demo.website.com/", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c5-0e58-4e71-bc50-4907950d210f", "timestamp": "1562687685", "to_ids": true, "value": "http://ktosdelaetskrintotpidor.com", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c5-e284-46ec-ae6f-43ec950d210f", "timestamp": "1562687685", "to_ids": true, "value": "http://marksteylor.us/", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c5-1368-4fcc-b3e0-4eae950d210f", "timestamp": "1562687685", "to_ids": true, "value": "http://sositehuypidarasi.com", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c5-1a5c-47d2-a06b-4ec2950d210f", "timestamp": "1562687685", "to_ids": true, "value": "https://blackleaf.top", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c6-4a9c-4605-98aa-40f1950d210f", "timestamp": "1562687685", "to_ids": true, "value": "https://firstdoxed.space", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c6-9994-49c6-821a-4d73950d210f", "timestamp": "1562687686", "to_ids": true, "value": "https://lskbfidsbvkjsfgakfjsdffsdfupdate.net", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c6-b68c-4143-b2d1-4a44950d210f", "timestamp": "1562687686", "to_ids": true, "value": "https://lskbfidsbvkjsfgakfjsdffsdfupdate.net/o1o/a16.php", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c6-93d8-4dcb-a696-452a950d210f", "timestamp": "1562687686", "to_ids": true, "value": "https://ndudetto.top", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c6-5030-4c2a-9c8f-4005950d210f", "timestamp": "1562687686", "to_ids": true, "value": "https://playclints1.space", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c6-6490-4d90-a40a-4232950d210f", "timestamp": "1562687686", "to_ids": true, "value": "https://sositehuypidarasi.com", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c6-b10c-403a-ba62-4c28950d210f", "timestamp": "1562687686", "to_ids": true, "value": "https://t.me/newpaparoni", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c6-ec7c-4189-b16d-4e54950d210f", "timestamp": "1562687686", "to_ids": true, "value": "https://t.me/thethe123", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24b8c6-6d74-4fe7-8a0b-4e9c950d210f", "timestamp": "1562687686", "to_ids": true, "value": "https://t.me/unite11", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "External analysis", "uuid": "5d24bd0f-2818-4734-a6e8-44b0950d210f", "timestamp": "1562688783", "to_ids": false, "value": "https://blog.trendmicro.com/trendlabs-security-intelligence/anubis-android-malware-returns-with-over-17000-samples/", "disable_correlation": false, "object_relation": null, "type": "link"}, {"comment": "", "category": "Payload delivery", "uuid": "5d24bd2c-2760-434d-9689-211f950d210f", "timestamp": "1562688812", "to_ids": true, "value": "30b0b3b0d4733f3b94517ab4e407214e82abf6aad3adf918717ff842e28d672f", "disable_correlation": false, "object_relation": null, "type": "sha256"}, {"comment": "", "category": "Payload delivery", "uuid": "5d24bd2d-a8c8-4daf-8945-211f950d210f", "timestamp": "1562688813", "to_ids": true, "value": "451194f0d9b902b6763762023ca02f6539fc72276347b8a8aed3a901bece4892", "disable_correlation": false, "object_relation": null, "type": "sha256"}, {"comment": "", "category": "Network activity", "uuid": "5d24bd2d-379c-499c-9bfa-211f950d210f", "timestamp": "1562688813", "to_ids": true, "value": "http://markuezdnbrs.online/deneme/api.php?xml=8c6c029e-153b-41e1-a061-2699a45b69f9", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24bd2d-aae8-4207-babb-211f950d210f", "timestamp": "1562688813", "to_ids": true, "value": "http://successiondar.xyz/continuing/resigned.php?xml=7e393286-925c-41f4-ac81-b7e2625473d0", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24bd2d-5a80-4cc5-b90d-211f950d210f", "timestamp": "1562688813", "to_ids": true, "value": "http://markuezdnbrs.online/deneme/apk/6928.apk", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24bd2d-9f80-47b1-ab7d-211f950d210f", "timestamp": "1562688813", "to_ids": true, "value": "http://successiondar.xyz/continuing/kan/5425.apk", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24bd2d-baa8-460f-837b-211f950d210f", "timestamp": "1562688813", "to_ids": true, "value": "http://markuezdnbrs.online/deneme/apk/[0-7810]", "disable_correlation": false, "object_relation": null, "type": "url"}, {"comment": "", "category": "Network activity", "uuid": "5d24bd2d-39d0-4492-987d-211f950d210f", "timestamp": "1562688813", "to_ids": true, "value": "http://successiondar.xyz/continuing/kan/[2-9680]", "disable_correlation": false, "object_relation": null, "type": "url"}], "extends_uuid": "", "published": false, "date": "2019-07-09", "Orgc": {"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f", "name": "CIRCL"}, "threat_level_id": "3", "uuid": "5d24b8a7-5294-4ff6-8613-211f950d210f"}}
						
						
					
				
				
					
						Reference in a new issue
					
					View git blame
					Copy permalink