adulau/misp-circl-feed
1
0
Fork 0
Code Issues 1 Pull requests Projects 1 Releases Packages Wiki Activity Actions
misp-circl-feed/feeds/circl/stix-2.1/57bd9b3a-c354-481c-b414-424e950d210f.json

723 lines
No EOL
29 KiB
JSON
Raw Permalink Blame History

{
"type": "bundle",
"id": "bundle--57bd9b3a-c354-481c-b414-424e950d210f",
"objects": [
{
"type": "identity",
"spec_version": "2.1",
"id": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:30.000Z",
"modified": "2016-08-24T15:04:30.000Z",
"name": "CIRCL",
"identity_class": "organization"
},
{
"type": "report",
"spec_version": "2.1",
"id": "report--57bd9b3a-c354-481c-b414-424e950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:30.000Z",
"modified": "2016-08-24T15:04:30.000Z",
"name": "Malspam 2016-08-24 (.hta in .zip) - campaign: \"Emailing{N}.jpg\"",
"published": "2016-08-24T15:05:17Z",
"object_refs": [
"indicator--57bd9b70-b228-433e-88d7-45d3950d210f",
"indicator--57bd9b70-8eb0-4bdc-b294-4a19950d210f",
"indicator--57bd9b71-8a28-4f99-b486-4f2d950d210f",
"indicator--57bd9b71-59ec-474c-81cb-4034950d210f",
"indicator--57bd9b71-e5f8-4975-baec-4f1b950d210f",
"indicator--57bd9b71-5ab4-478b-8e30-41e7950d210f",
"indicator--57bd9b71-8f5c-4444-9d17-4c26950d210f",
"indicator--57bd9b72-3058-4b0e-8ebe-41a1950d210f",
"indicator--57bd9b72-3f50-421e-9451-4286950d210f",
"indicator--57bd9b72-9838-48b6-a1f3-4220950d210f",
"indicator--57bd9b72-df5c-460b-bac8-4dba950d210f",
"observed-data--57bd9c0b-5b3c-43c1-a167-4a47950d210f",
"email-message--57bd9c0b-5b3c-43c1-a167-4a47950d210f",
"indicator--57bdb77b-9e78-4217-ae6e-450c950d210f",
"indicator--57bdb77b-b270-4809-9e79-489c950d210f",
"indicator--57bdb77b-b6f4-4c2d-84ba-442b950d210f",
"indicator--57bdb77c-571c-4301-90c2-44d9950d210f",
"indicator--57bdb77c-2614-4f20-9863-4736950d210f",
"indicator--57bdb77c-413c-41e5-a46a-4b20950d210f",
"indicator--57bdb77c-c5c0-4326-82c8-4fb1950d210f",
"indicator--57bdb77c-5f3c-4239-adf0-4992950d210f",
"indicator--57bdb77d-30ac-4dd6-9c3a-4308950d210f",
"indicator--57bdb77d-2c7c-4d98-bf14-4977950d210f",
"indicator--57bdb77d-aa60-447f-add4-4cbb950d210f",
"indicator--57bdb77d-d4f4-4278-9202-445f950d210f",
"indicator--57bdb77d-3544-4a46-acbe-4b27950d210f",
"indicator--57bdb77d-f5f4-4f4f-ba8e-4842950d210f",
"indicator--57bdb77e-a8a8-41fa-8028-428f950d210f"
],
"labels": [
"Threat-Report",
"misp:tool=\"MISP-STIX-Converter\"",
"circl:incident-classification=\"malware\""
],
"object_marking_refs": [
"marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b70-b228-433e-88d7-45d3950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:48.000Z",
"modified": "2016-08-24T13:04:48.000Z",
"description": "download location",
"pattern": "[url:value = 'http://mage4ever.0catch.com/GHBuyd472']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:48Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b70-8eb0-4bdc-b294-4a19950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:48.000Z",
"modified": "2016-08-24T13:04:48.000Z",
"description": "download location",
"pattern": "[domain-name:value = 'mage4ever.0catch.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:48Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b71-8a28-4f99-b486-4f2d950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:49.000Z",
"modified": "2016-08-24T13:04:49.000Z",
"description": "download location",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '69.27.174.10']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b71-59ec-474c-81cb-4034950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:49.000Z",
"modified": "2016-08-24T13:04:49.000Z",
"description": "download location",
"pattern": "[url:value = 'http://www.agenziadini.it/GHBuyd472']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b71-e5f8-4975-baec-4f1b950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:49.000Z",
"modified": "2016-08-24T13:04:49.000Z",
"description": "download location",
"pattern": "[domain-name:value = 'www.agenziadini.it']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b71-5ab4-478b-8e30-41e7950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:49.000Z",
"modified": "2016-08-24T13:04:49.000Z",
"description": "download location",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '213.205.40.169']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b71-8f5c-4444-9d17-4c26950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:49.000Z",
"modified": "2016-08-24T13:04:49.000Z",
"description": "download location",
"pattern": "[url:value = 'http://iesjaumei.edu.gva.es/GHBuyd472']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b72-3058-4b0e-8ebe-41a1950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:50.000Z",
"modified": "2016-08-24T13:04:50.000Z",
"description": "download location",
"pattern": "[domain-name:value = 'iesjaumei.edu.gva.es']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b72-3f50-421e-9451-4286950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:50.000Z",
"modified": "2016-08-24T13:04:50.000Z",
"description": "download location",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '193.144.125.70']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b72-9838-48b6-a1f3-4220950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:50.000Z",
"modified": "2016-08-24T13:04:50.000Z",
"description": "download location",
"pattern": "[url:value = 'http://www.carloabati.com/GHBuyd472']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bd9b72-df5c-460b-bac8-4dba950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:04:50.000Z",
"modified": "2016-08-24T13:04:50.000Z",
"description": "download location",
"pattern": "[domain-name:value = 'www.carloabati.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T13:04:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--57bd9c0b-5b3c-43c1-a167-4a47950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T13:07:23.000Z",
"modified": "2016-08-24T13:07:23.000Z",
"first_observed": "2016-08-24T13:07:23Z",
"last_observed": "2016-08-24T13:07:23Z",
"number_observed": 1,
"object_refs": [
"email-message--57bd9c0b-5b3c-43c1-a167-4a47950d210f"
],
"labels": [
"misp:type=\"email-subject\"",
"misp:category=\"Payload delivery\""
]
},
{
"type": "email-message",
"spec_version": "2.1",
"id": "email-message--57bd9c0b-5b3c-43c1-a167-4a47950d210f",
"is_multipart": false,
"subject": "Emailing{N}.jpg"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77b-9e78-4217-ae6e-450c950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:27.000Z",
"modified": "2016-08-24T15:04:27.000Z",
"description": "download location",
"pattern": "[url:value = 'http://brunnenburg.de/GHBuyd472']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:27Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77b-b270-4809-9e79-489c950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:27.000Z",
"modified": "2016-08-24T15:04:27.000Z",
"description": "download location",
"pattern": "[domain-name:value = 'brunnenburg.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:27Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77b-b6f4-4c2d-84ba-442b950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:27.000Z",
"modified": "2016-08-24T15:04:27.000Z",
"description": "download location",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '212.40.179.74']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:27Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77c-571c-4301-90c2-44d9950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:28.000Z",
"modified": "2016-08-24T15:04:28.000Z",
"description": "download location",
"pattern": "[url:value = 'http://csmjs.cba.pl/GHBuyd472']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77c-2614-4f20-9863-4736950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:28.000Z",
"modified": "2016-08-24T15:04:28.000Z",
"description": "download location",
"pattern": "[domain-name:value = 'csmjs.cba.pl']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77c-413c-41e5-a46a-4b20950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:28.000Z",
"modified": "2016-08-24T15:04:28.000Z",
"description": "download location",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '95.211.144.65']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77c-c5c0-4326-82c8-4fb1950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:28.000Z",
"modified": "2016-08-24T15:04:28.000Z",
"description": "download location",
"pattern": "[url:value = 'http://ficonline.cat/GHBuyd472']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77c-5f3c-4239-adf0-4992950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:28.000Z",
"modified": "2016-08-24T15:04:28.000Z",
"description": "download location",
"pattern": "[domain-name:value = 'ficonline.cat']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77d-30ac-4dd6-9c3a-4308950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:29.000Z",
"modified": "2016-08-24T15:04:29.000Z",
"description": "download location",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '134.0.14.63']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77d-2c7c-4d98-bf14-4977950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:29.000Z",
"modified": "2016-08-24T15:04:29.000Z",
"description": "download location",
"pattern": "[url:value = 'http://jon.nomaki.jp/GHBuyd472']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77d-aa60-447f-add4-4cbb950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:29.000Z",
"modified": "2016-08-24T15:04:29.000Z",
"description": "download location",
"pattern": "[domain-name:value = 'jon.nomaki.jp']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77d-d4f4-4278-9202-445f950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:29.000Z",
"modified": "2016-08-24T15:04:29.000Z",
"description": "download location",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '112.140.42.29']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77d-3544-4a46-acbe-4b27950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:29.000Z",
"modified": "2016-08-24T15:04:29.000Z",
"description": "download location",
"pattern": "[url:value = 'http://ajurveda.meganet.lt/GHBuyd472']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77d-f5f4-4f4f-ba8e-4842950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:29.000Z",
"modified": "2016-08-24T15:04:29.000Z",
"description": "download location",
"pattern": "[domain-name:value = 'ajurveda.meganet.lt']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--57bdb77e-a8a8-41fa-8028-428f950d210f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2016-08-24T15:04:30.000Z",
"modified": "2016-08-24T15:04:30.000Z",
"description": "download location",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '88.222.0.5']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2016-08-24T15:04:30Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "marking-definition",
"spec_version": "2.1",
"id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",
"created": "2017-01-20T00:00:00.000Z",
"definition_type": "tlp",
"name": "TLP:WHITE",
"definition": {
"tlp": "white"
}
}
]
}
Reference in a new issue View git blame Copy permalink