misp-circl-feed/feeds/circl/stix-2.1/f3290493-8f74-4220-aa04-b83408e37a0c.json

4689 lines
No EOL
192 KiB
JSON

{
"type": "bundle",
"id": "bundle--f3290493-8f74-4220-aa04-b83408e37a0c",
"objects": [
{
"type": "identity",
"spec_version": "2.1",
"id": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-15T13:20:35.000Z",
"modified": "2024-07-15T13:20:35.000Z",
"name": "CIRCL",
"identity_class": "organization"
},
{
"type": "report",
"spec_version": "2.1",
"id": "report--f3290493-8f74-4220-aa04-b83408e37a0c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-15T13:20:35.000Z",
"modified": "2024-07-15T13:20:35.000Z",
"name": "Phishing targeting Luxembourg services (hosted and served on/from AWS)",
"published": "2024-07-15T13:21:21Z",
"object_refs": [
"indicator--16938dd2-96b7-481e-a446-347ffddfd7b3",
"indicator--21468923-3073-4459-bb5e-00d6f9bf6808",
"indicator--d47117a6-a4d1-486e-8d0b-12695c6bb48c",
"indicator--bf64e660-fce8-44ff-9e28-b250e2ffc096",
"indicator--3ebcc5fb-5a83-4685-b3db-0e925a14b96d",
"indicator--c6c58ad3-aa8c-4fe1-8bf8-62e9a4707611",
"indicator--530e86ba-50f1-442b-a55a-e252e1648b2e",
"indicator--0df7ed22-6a64-489e-a25a-47909943fbe5",
"indicator--1df7ca81-743b-4821-98b9-1d32f5e9c9f8",
"indicator--22cbe28b-1395-4820-b053-82bef0ffeb01",
"indicator--b18296a0-8fe2-4b6e-b48f-8f18d5dd9752",
"indicator--40697a97-eeee-462a-8bde-f4d831bc2e59",
"indicator--7fc1bb43-67d5-4f49-b674-132c7be2196f",
"indicator--04585ab4-3c86-457e-9443-5952051739b9",
"indicator--de6bf108-bd3e-424c-bf10-3c6d7c3b88d4",
"x-misp-object--0cbb8cdd-d630-4e20-8a0f-141d8e49a852",
"x-misp-object--a10e462b-cffa-41bb-a9f2-a8bd297e06c2",
"x-misp-object--c6b7db3a-2494-4a30-98d3-367f1c41006c",
"x-misp-object--9da052e3-54b7-46c6-ba8e-6967d191c464",
"x-misp-object--d7c78ba7-0786-4aed-8fe4-c75fafefc308",
"x-misp-object--4e776373-54e8-43f5-9c7f-cab16b363230",
"x-misp-object--a62e8c29-d5fd-4efd-ad1e-7c07491ac3c4",
"x-misp-object--26cc8401-561c-400c-8354-143e9118a5ed",
"x-misp-object--75d8e3c4-c399-4a27-8dff-f0618a0177b0",
"x-misp-object--f8e18655-d771-45c8-af2c-cecf2fee6a9d",
"x-misp-object--e3ae2059-3cfc-4bc4-98b7-c9f511055b7f",
"x-misp-object--3a04a344-f245-4565-8880-ee7da8f55886",
"x-misp-object--87640280-6595-43e7-b4bd-7f0bcba060cc",
"x-misp-object--d2f3711c-fc78-4463-b9f9-d3e69711f124",
"x-misp-object--78a4958a-bae2-409b-8a45-5f96709691a6",
"x-misp-object--1db47c5c-0e8a-46e5-af37-7c0b553d0f25",
"x-misp-object--90fac912-8faa-4967-9fde-71262c8fcde5",
"x-misp-object--526fc830-0158-454c-b31a-5616781d5521",
"x-misp-object--7c7f5b07-6a2f-4e89-bd4b-0b4abb003ff9",
"x-misp-object--5e321b05-3652-487f-8901-3c5fae054dbf",
"x-misp-object--d9ffe987-6fd2-4b14-b299-0837d2acea3e",
"x-misp-object--5af48ad2-7964-412c-9a8c-9fa7775bdf08",
"x-misp-object--48211c46-99d6-4e05-a4a6-8d256cb2fd1c",
"x-misp-object--ef1a611a-fdd6-4feb-a8b9-2e55a2d3a58e",
"x-misp-object--c92ec0a9-e8d4-4ebb-81a7-360b14669c6f",
"x-misp-object--468b94dc-d2b4-48e2-a2bf-1bb77863e773",
"x-misp-object--c8cd96b5-f93e-4b43-8e8e-e35243364255",
"x-misp-object--421ecb18-c199-4437-ace3-af08b2d449d6",
"x-misp-object--f330f661-1ba2-4bdc-bcf9-2ec3d6f39f1e",
"indicator--759c5813-7ac8-44e3-a4d3-fb22f05bb0e9",
"x-misp-object--332102a3-0278-40b9-a6a2-55115bb59baf",
"x-misp-object--3ebf35da-eb90-4ccd-a7a8-b6526a774196",
"x-misp-object--96ba33c3-3872-4070-95cc-e1d8d6154028",
"x-misp-object--b63220f5-d1b3-4d2d-9b87-b43321c9a009",
"x-misp-object--36ab853d-f0b8-41e3-9536-12f611f2ec2a",
"x-misp-object--83798e92-c141-4bc8-98cb-27de4a0e8bdb",
"x-misp-object--b24f9876-fc01-4011-9e1a-f5756419d8c0",
"x-misp-object--410ad9a6-d51e-4b73-8514-06941ed97084",
"indicator--e0c62f70-371f-48e1-ba56-c02f808de743",
"x-misp-object--291651ff-e199-4079-b392-645b0b1291e3",
"x-misp-object--62632fd8-27b2-4512-8b15-d1a11dc49746",
"x-misp-object--10319722-5fb4-46ef-a45f-e447a7f8b172",
"x-misp-object--edf18f0b-f6dd-4375-a09e-723f6addc349",
"x-misp-object--35468c54-cc35-4f74-aa93-c1e8cff3d7ef",
"x-misp-object--3c19b823-a9c2-40b6-a38d-b54d97b7e8de",
"x-misp-object--d651ee3a-5e14-4e02-8b22-360cf136e00c",
"x-misp-object--1ba400b2-d40c-4e16-bfcf-0712d52d67ef",
"x-misp-object--77910ba0-4117-4ac5-a355-69098503b950",
"x-misp-object--12446191-c1ad-4dcb-bd0a-26b238d73947",
"x-misp-object--3ae90b6f-daf8-4da2-924c-9a0f518fde4a",
"indicator--7417b9cc-5f50-458a-bea0-cf620fc2e8b7",
"x-misp-object--e65bbf37-9221-472c-94a6-90cb59d1d65c",
"indicator--76e2f57a-b445-4902-a3fa-1f8d8986b166",
"x-misp-object--a8b58223-ba50-4bbb-b9b2-242f944a7395",
"indicator--8ed65adc-0692-4295-b3d0-6a4b8816cce5",
"indicator--23d99753-21c7-4556-b600-e55f2d45234f",
"x-misp-object--2a9a0ff8-0f32-46ee-95f7-c8164698e785",
"x-misp-object--0dd6525e-7b82-4a8c-9efd-080735d4243f",
"indicator--a7d461d3-6b68-457d-a9bf-125cd14040ea",
"indicator--f8ad423e-a640-4cad-b4cd-53021c9005ec",
"indicator--c1a93bb2-b608-4c94-88cf-4a1ab974ef3d",
"indicator--879dac1c-06a4-4481-9b7b-be5c711cea99",
"indicator--ba98e7b5-44a7-46ce-8904-6c8f4f092390",
"indicator--1aff1cf5-bedc-4b67-b546-b9ffd364c100",
"x-misp-object--0124f9e9-24e0-40b0-8e58-5031289cce9b",
"x-misp-object--692a9341-7260-40f0-8628-81a9cc7c6de8",
"x-misp-object--1595bce7-45fc-4fcf-b5b9-5b0d3652be7c",
"x-misp-object--30d1211f-ba79-4f74-a837-bc4d9dde7fea",
"x-misp-object--02622aac-7234-4c48-8c4d-d41687a14202",
"x-misp-object--9453caf0-a816-4eb3-9579-f2de03a020fc",
"x-misp-object--e94bb880-052a-4193-b1e1-869d83527467",
"relationship--1148fb97-ad12-4fa9-8d7f-a9ecf704c1de",
"relationship--d00dc746-89d9-415d-80dc-408331d92c86",
"relationship--19a8b43f-904e-4c5b-84b8-af9ce83d47bb",
"relationship--05bfc8d6-2999-4fc1-b42d-8bf74d22c943",
"relationship--fedb37ad-a7b8-45aa-8b65-d162d114d039",
"relationship--3c24e1b1-94fc-446f-b9a1-e1de1e5744be",
"relationship--37ab27ab-e617-4e00-94ae-85b33ee5568f",
"relationship--7ff5a78e-4ca4-4ec4-a2c3-1f7034f975a3",
"relationship--746a2f55-130c-4944-a79f-e7a8628f0c96",
"relationship--52ee1a53-178c-40f1-bc10-a19bc00d76c2",
"relationship--63a3a4dc-e136-4b92-9996-543d466c33a0",
"relationship--b63e7186-74e4-43b5-a546-513924fb42d0",
"relationship--7f664068-e634-4ce5-85f0-7dd51fbe5fe7",
"relationship--fb8251e8-5d12-456d-8e7d-a9a60417bd01",
"relationship--628bf8c8-588e-4b45-b7a3-274ce1180227"
],
"labels": [
"Threat-Report",
"misp:tool=\"MISP-STIX-Converter\"",
"phishing:techniques=\"fake-website\"",
"phishing:psychological-acceptability=\"high\"",
"tlp:clear",
"misp-galaxy:mitre-attack-pattern=\"Phishing - T1566\"",
"type:OSINT",
"osint:lifetime=\"perpetual\"",
"misp-galaxy:country=\"luxembourg\""
],
"object_marking_refs": [
"marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T07:24:08.000Z",
"modified": "2023-12-19T07:24:08.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '18.117.184.102']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2023-12-19T07:24:08Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--21468923-3073-4459-bb5e-00d6f9bf6808",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T07:24:43.000Z",
"modified": "2023-12-19T07:24:43.000Z",
"pattern": "[domain-name:value = 'ccss-public.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2023-12-19T07:24:43Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d47117a6-a4d1-486e-8d0b-12695c6bb48c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T07:25:17.000Z",
"modified": "2023-12-19T07:25:17.000Z",
"pattern": "[domain-name:value = 'cns-lu.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2023-12-19T07:25:17Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--bf64e660-fce8-44ff-9e28-b250e2ffc096",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T07:25:37.000Z",
"modified": "2023-12-19T07:25:37.000Z",
"pattern": "[domain-name:value = 'luxtrust.support']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2023-12-19T07:25:37Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--3ebcc5fb-5a83-4685-b3db-0e925a14b96d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T07:25:51.000Z",
"modified": "2023-12-19T07:25:51.000Z",
"pattern": "[domain-name:value = 'luxtrust.help']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2023-12-19T07:25:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--c6c58ad3-aa8c-4fe1-8bf8-62e9a4707611",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:14:33.000Z",
"modified": "2024-01-03T10:14:33.000Z",
"pattern": "[domain-name:value = 'www-cns-lu.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-01-03T10:14:33Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--530e86ba-50f1-442b-a55a-e252e1648b2e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:16:46.000Z",
"modified": "2024-01-03T10:16:46.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '54.93.211.218']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-01-03T10:16:46Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--0df7ed22-6a64-489e-a25a-47909943fbe5",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:19:27.000Z",
"modified": "2024-01-03T10:19:27.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '35.177.103.239']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-01-03T10:19:27Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1df7ca81-743b-4821-98b9-1d32f5e9c9f8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-16T15:32:11.000Z",
"modified": "2024-01-16T15:32:11.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '3.71.1.255']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-01-16T15:32:11Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--22cbe28b-1395-4820-b053-82bef0ffeb01",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-29T08:22:16.000Z",
"modified": "2024-01-29T08:22:16.000Z",
"pattern": "[domain-name:value = 'www-cns.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-01-29T08:22:16Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--b18296a0-8fe2-4b6e-b48f-8f18d5dd9752",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-29T08:22:16.000Z",
"modified": "2024-01-29T08:22:16.000Z",
"pattern": "[domain-name:value = 'luxtrust-cancel.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-01-29T08:22:16Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--40697a97-eeee-462a-8bde-f4d831bc2e59",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:15:32.000Z",
"modified": "2024-02-08T09:15:32.000Z",
"pattern": "[domain-name:value = 'luxtrust-unlock.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-02-08T09:15:32Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--7fc1bb43-67d5-4f49-b674-132c7be2196f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:18:47.000Z",
"modified": "2024-02-08T09:18:47.000Z",
"pattern": "[domain-name:value = 'ccss-sante-lu.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-02-08T09:18:47Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--04585ab4-3c86-457e-9443-5952051739b9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-03-18T10:16:19.000Z",
"modified": "2024-03-18T10:16:19.000Z",
"pattern": "[url:value = 'https://public-ccss.com/index.php']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-03-18T10:16:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--de6bf108-bd3e-424c-bf10-3c6d7c3b88d4",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-03-18T10:21:29.000Z",
"modified": "2024-03-18T10:21:29.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '51.20.69.186']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-03-18T10:21:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--0cbb8cdd-d630-4e20-8a0f-141d8e49a852",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:09:51.000Z",
"modified": "2023-12-19T09:09:51.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "fa3650fb-171e-4d73-bd64-6d0e847e802d"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "a2d8c4e1-351e-4fa9-9a79-a20d91c6b975"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-07T13:42:52+00:00",
"category": "Other",
"uuid": "a120a0f8-3687-4be0-b34d-d6de1c15a9f1"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Network activity",
"uuid": "4f3a3350-dcb6-4074-abf5-d5ad966e8fc9"
},
{
"type": "text",
"object_relation": "rrname",
"value": "18.117.184.102",
"category": "Network activity",
"uuid": "124bebd8-1f07-421f-8c4c-0f7524662568"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust.help",
"category": "Other",
"to_ids": true,
"uuid": "2d7f9e52-a08b-452f-8b33-1340ddec9c35"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-07T13:42:52+00:00",
"category": "Other",
"uuid": "a55dba49-8c52-4f92-ad89-3921ca77f844"
}
],
"x_misp_comment": "luxtrust.help: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--a10e462b-cffa-41bb-a9f2-a8bd297e06c2",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:10:08.000Z",
"modified": "2023-12-19T09:10:08.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "2e955f36-0101-4deb-a846-889c53470819"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "54106d70-a4e9-4461-90d0-06c5f5b14e4a"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-15T14:56:56+00:00",
"category": "Other",
"uuid": "70b95f9e-9367-412c-9c01-62ec357b18f4"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "e6e08c24-527d-4756-a5ff-01a8b9b6994d"
},
{
"type": "text",
"object_relation": "rrname",
"value": "18.117.184.102",
"category": "Other",
"uuid": "e1d617e9-0b1d-4331-9190-b58517ff7983"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust.support",
"category": "Other",
"to_ids": true,
"uuid": "b95e7a28-6630-4312-9e74-3ff366a41999"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "f7c9c2a8-0b82-4a50-8d8b-267ea7dd73da"
}
],
"x_misp_comment": "luxtrust.support: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--c6b7db3a-2494-4a30-98d3-367f1c41006c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:13:07.000Z",
"modified": "2023-12-19T09:13:07.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "395c14e4-3644-4987-8555-b07b906a3332"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "c3bfdae9-7bd7-464d-9bba-13a3f9150400"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "08fb34ce-0ff6-4bef-bc8d-eea1f8ccf3f8"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "a05cf453-3958-49f8-8a9d-7ac3cc864543"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-137.awsdns-17.com",
"category": "Other",
"uuid": "efa614bf-9f22-4a14-8bcf-1746f29d6823"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust.support",
"category": "Other",
"to_ids": true,
"uuid": "884c6a89-549c-4ff9-b6ab-79f5cb073bfc"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "a6fb10d1-956a-4d9c-a51d-6b60d4dae59e"
}
],
"x_misp_comment": "luxtrust.support: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--9da052e3-54b7-46c6-ba8e-6967d191c464",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:13:19.000Z",
"modified": "2023-12-19T09:13:19.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "a6b13f18-c36d-45fc-ae25-3e7ccc8174bb"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "32e5b9a0-d23e-4cd8-bfe5-cf94b75cafde"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "526de953-3b0b-47d5-ac30-f49f7e274387"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "e3210bc0-53dd-4393-b710-aad1b66940da"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1028.awsdns-00.org",
"category": "Other",
"uuid": "00a69ea5-a33f-4c3d-a67d-2b5d809a0d51"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust.support",
"category": "Other",
"to_ids": true,
"uuid": "a2cd9820-df5c-4a45-b0d6-5073bc36a40b"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "13e4e924-6f55-4c75-84fb-71467bff3192"
}
],
"x_misp_comment": "luxtrust.support: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--d7c78ba7-0786-4aed-8fe4-c75fafefc308",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:10:39.000Z",
"modified": "2023-12-19T09:10:39.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "7b9f776e-723e-4aa8-a05f-5e683af1fcf1"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "116169b8-b9cf-4cff-b211-f121902e998e"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "1ea23764-a99f-496e-bc4e-2d05b753ddc0"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "dcf3ebb2-551e-4200-830e-84fcad428c93"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1684.awsdns-18.co.uk",
"category": "Other",
"uuid": "f4a3d5f5-affb-4b69-9eb4-06db886048e0"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust.support",
"category": "Other",
"to_ids": true,
"uuid": "66a056e9-e152-4817-929e-e0460af9bbda"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "585ac13f-87b8-4547-9978-07a812a026e6"
}
],
"x_misp_comment": "luxtrust.support: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--4e776373-54e8-43f5-9c7f-cab16b363230",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:12:03.000Z",
"modified": "2023-12-19T09:12:03.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "f2f356a5-4b3a-439f-a968-1bfd9e8000a2"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "0dd8dfb1-cde8-4f65-856d-fe16b338a1b4"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "259f3a75-9320-4790-9e6a-49f43a2ea964"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "19dcdbb7-460b-4e4a-a5c6-b9b4b5b8e6e2"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-566.awsdns-06.net",
"category": "Other",
"uuid": "caa4621a-ba05-4933-a97f-e1d3f50461a1"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust.support",
"category": "Other",
"to_ids": true,
"uuid": "e971b210-f363-4a96-80c6-d5aa60e5d875"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "6ed63fe7-3e79-4145-a178-a796822f7925"
}
],
"x_misp_comment": "luxtrust.support: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--a62e8c29-d5fd-4efd-ad1e-7c07491ac3c4",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:13:32.000Z",
"modified": "2023-12-19T09:13:32.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "4e62b6b9-36f1-4e50-892d-113afda7da65"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "3094627f-223d-4361-994c-edc372fb5450"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "03e3f350-43b7-481b-9bb3-b983cd520f5e"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "SOA",
"category": "Network activity",
"uuid": "69669e9d-176e-4bfc-9201-cff9f04ddca5"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-566.awsdns-06.net awsdns-hostmaster.amazon.com 1 7200 900 1209600 86400",
"category": "Network activity",
"uuid": "4aa9c6bc-fafd-46c4-901e-16dde7207236"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust.support",
"category": "Other",
"to_ids": true,
"uuid": "595b30d1-4583-4863-97a6-62488ae7aba5"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T07:22:05+00:00",
"category": "Other",
"uuid": "2698755f-63d6-41aa-b8b9-91e5583f4333"
}
],
"x_misp_comment": "luxtrust.support: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--26cc8401-561c-400c-8354-143e9118a5ed",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:10:27.000Z",
"modified": "2023-12-19T09:10:27.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "9f3dc447-5cca-4a21-98e2-4345fec85561"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "a7dfa06f-98f2-4a6f-825e-561317642afa"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T06:09:53+00:00",
"category": "Other",
"uuid": "2decf978-dc61-4ecd-8f2f-07f9603d1e9f"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "796edaf3-b942-4fcb-bd23-d4f1baa2d01d"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-417.awsdns-52.com",
"category": "Other",
"uuid": "f252c3db-1ba1-45f1-8141-d67f430855fd"
},
{
"type": "text",
"object_relation": "rdata",
"value": "cns-lu.com",
"category": "Other",
"to_ids": true,
"uuid": "a5cd1e5f-6fe5-4e6f-8545-6a89f2d3b0a9"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T06:09:53+00:00",
"category": "Other",
"uuid": "a4bf3876-e5ee-419a-8568-e550ad2a8b5b"
}
],
"x_misp_comment": "cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--75d8e3c4-c399-4a27-8dff-f0618a0177b0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:11:20.000Z",
"modified": "2023-12-19T09:11:20.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "1d48ef5c-cbfd-43fc-855e-1597de01d8e4"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "dae07c8b-8174-4c66-8618-eeb95d1bac15"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T06:09:53+00:00",
"category": "Other",
"uuid": "c2bdd9ba-a33c-4c65-82d9-e8a9319914a8"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "2134a003-ee81-4f67-a530-39118611b528"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1004.awsdns-61.net",
"category": "Other",
"uuid": "273e1a9c-daaa-45e3-8974-dedd7c1e7e4a"
},
{
"type": "text",
"object_relation": "rdata",
"value": "cns-lu.com",
"category": "Other",
"to_ids": true,
"uuid": "a7b48592-f8ba-4e3a-927d-ee6d47cf6935"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T06:09:53+00:00",
"category": "Other",
"uuid": "4e168f74-7917-4860-9e14-af224c817744"
}
],
"x_misp_comment": "cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--f8e18655-d771-45c8-af2c-cecf2fee6a9d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:11:33.000Z",
"modified": "2023-12-19T09:11:33.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "a6e335ad-4436-432d-9a02-782066eae55f"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "89405886-910f-4bac-9211-fc814e273a1f"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T06:09:53+00:00",
"category": "Other",
"uuid": "ca54d3ff-ea7b-4223-aac3-22a5701ba62f"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Network activity",
"uuid": "fe9c0124-4d06-4d84-bcca-c1f8ae9dddce"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1064.awsdns-05.org",
"category": "Network activity",
"uuid": "84b3a542-2cb8-483a-9b50-7853b6bde3fa"
},
{
"type": "text",
"object_relation": "rdata",
"value": "cns-lu.com",
"category": "Other",
"to_ids": true,
"uuid": "91301aca-e656-4c15-9f65-40cf2ad1812c"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T06:09:53+00:00",
"category": "Other",
"uuid": "9a85f727-d779-42e5-82fc-560bfcc0c300"
}
],
"x_misp_comment": "cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--e3ae2059-3cfc-4bc4-98b7-c9f511055b7f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:11:48.000Z",
"modified": "2023-12-19T09:11:48.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "d7591bb3-3fc0-475f-85d5-53198af74649"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "7740f650-02c5-47fe-bf97-840bd8ed6407"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T06:09:53+00:00",
"category": "Other",
"uuid": "4c0ceca3-ab28-45a0-888b-4d9a7d5eff5c"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "d39b54a2-f62b-41ab-82bf-7a60b72f43b5"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1932.awsdns-49.co.uk",
"category": "Other",
"uuid": "c6ca68f3-b09c-40c0-9dc5-214e42eddadb"
},
{
"type": "text",
"object_relation": "rdata",
"value": "cns-lu.com",
"category": "Other",
"to_ids": true,
"uuid": "8737edf6-7366-4b8b-87ae-e830abc5d1c7"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T06:09:53+00:00",
"category": "Other",
"uuid": "745b1dfb-1563-4144-8b2a-b2198a34ac57"
}
],
"x_misp_comment": "cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--3a04a344-f245-4565-8880-ee7da8f55886",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:11:06.000Z",
"modified": "2023-12-19T09:11:06.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "c1f25136-8fbc-4b3b-a286-6f7c0a548f2f"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "6c46694f-83d1-4e46-94a8-f536dcb804d2"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T06:09:53+00:00",
"category": "Other",
"uuid": "edadf5a8-d7f2-49ec-8ba0-df9c5313a6a8"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "010971d4-9d0b-4186-a11e-1ba4f7f8a2e7"
},
{
"type": "text",
"object_relation": "rrname",
"value": "18.117.184.102",
"category": "Other",
"uuid": "51b956d2-9614-491c-8efd-f7f576f0c6af"
},
{
"type": "text",
"object_relation": "rdata",
"value": "cns-lu.com",
"category": "Other",
"to_ids": true,
"uuid": "3c69f63d-4119-4a2c-9115-d9e0c31b821a"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T07:21:13+00:00",
"category": "Other",
"uuid": "0ba2777c-9128-41b5-a9a4-a14fb3b69806"
}
],
"x_misp_comment": "cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--87640280-6595-43e7-b4bd-7f0bcba060cc",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:12:18.000Z",
"modified": "2023-12-19T09:12:18.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "3c483dd7-4e04-45f8-b369-cb39a4760e2a"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "65eef0cd-f6ec-49a1-839f-7df9576d3bd1"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-19T07:21:32+00:00",
"category": "Other",
"uuid": "e9e6c513-f8d5-4db7-afc5-ccdad39799ae"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "SOA",
"category": "Other",
"uuid": "9cfa510e-ed0b-46b6-9d8f-00763a3ef0c4"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1064.awsdns-05.org awsdns-hostmaster.amazon.com 1 7200 900 1209600 86400",
"category": "Other",
"uuid": "b44bc017-2b73-4335-99f0-7ed3b1eb7915"
},
{
"type": "text",
"object_relation": "rdata",
"value": "cns-lu.com",
"category": "Other",
"to_ids": true,
"uuid": "58c3c7ce-1efe-41c9-9c27-1dac9f54170d"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-19T07:21:32+00:00",
"category": "Other",
"uuid": "63d3c7f7-deae-41dc-8870-6b27872f772e"
}
],
"x_misp_comment": "cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--d2f3711c-fc78-4463-b9f9-d3e69711f124",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:12:37.000Z",
"modified": "2023-12-19T09:12:37.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "06ef34f0-af0a-419c-9869-ede378cb2266"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "99aff1ca-5e6e-4ac8-af97-1d65d62a9112"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-04T15:07:11+00:00",
"category": "Other",
"uuid": "060edb1c-2b7b-4222-9375-9befcacdce57"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Network activity",
"uuid": "e3dfe153-ff4b-4ed9-b426-4f0020650d0c"
},
{
"type": "text",
"object_relation": "rrname",
"value": "54.211.144.11",
"category": "Network activity",
"uuid": "4c3f4029-627f-4a8e-a200-168b380b2415"
},
{
"type": "text",
"object_relation": "rdata",
"value": "ccss-public.com",
"category": "Other",
"to_ids": true,
"uuid": "bbb34ffb-7cbc-4e28-8c26-702db3e63581"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-06T12:43:27+00:00",
"category": "Other",
"uuid": "a43d96ae-079e-4aed-b7c6-6a9482565575"
}
],
"x_misp_comment": "ccss-public.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--78a4958a-bae2-409b-8a45-5f96709691a6",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2023-12-19T09:12:50.000Z",
"modified": "2023-12-19T09:12:50.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "e859d60b-c7de-489d-975c-1909b6e9b2a9"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "e77345f3-9e21-46b1-b810-5c8747ff3a38"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-07T09:57:23+00:00",
"category": "Other",
"uuid": "42b4fc02-17d9-4d4a-b943-b59c7cce83cd"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Network activity",
"uuid": "cd214892-254a-4e4c-9f3b-05883c43880d"
},
{
"type": "text",
"object_relation": "rrname",
"value": "18.117.184.102",
"category": "Network activity",
"uuid": "6b680236-2c38-4b94-a39a-ffa2c9c0cbee"
},
{
"type": "text",
"object_relation": "rdata",
"value": "ccss-public.com",
"category": "Other",
"to_ids": true,
"uuid": "87faf614-277d-424c-a83f-ec18e2877613"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-11T12:51:55+00:00",
"category": "Other",
"uuid": "300a5dae-3bb3-4e3e-b2f4-4c9777754e9c"
}
],
"x_misp_comment": "ccss-public.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--1db47c5c-0e8a-46e5-af37-7c0b553d0f25",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:15:18.000Z",
"modified": "2024-01-03T10:15:18.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "2ae61db0-c121-4c97-85b4-a27189e242c2"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "f633221a-c4fc-49d4-8786-a6e840d5db45"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-24T15:17:57+00:00",
"category": "Other",
"uuid": "c4087fed-0768-43dd-9dc3-00adb745a4fd"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "71aab429-e7ce-4972-bd7f-957fcc95c14a"
},
{
"type": "text",
"object_relation": "rrname",
"value": "54.93.211.218",
"category": "Other",
"to_ids": true,
"uuid": "f747cfe4-9642-4d48-9eec-6f62aa2d63b1"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns-lu.com",
"category": "Other",
"uuid": "e04d6aad-b4b2-4702-a8ab-104f1038ceac"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-29T12:53:49+00:00",
"category": "Other",
"uuid": "d10744c8-5d31-4112-8c27-d2655425c85e"
}
],
"x_misp_comment": "www-cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--90fac912-8faa-4967-9fde-71262c8fcde5",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:15:18.000Z",
"modified": "2024-01-03T10:15:18.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "75face1c-23cd-43d5-97fe-067e784a2c9a"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "0429ac16-bf80-465c-a11f-911948c8d378"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-24T15:17:57+00:00",
"category": "Other",
"uuid": "59472a61-35e3-4fb6-80a0-3f7530669e5e"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "884b6d8d-7b35-4e42-9e1e-895befbe2ea7"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1809.awsdns-34.co.uk",
"category": "Other",
"uuid": "3d31395a-1ac8-4e5a-a2ed-0b36839e557e"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns-lu.com",
"category": "Other",
"uuid": "771080e0-0ec5-4549-932a-6ee93745fccc"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-01T10:11:18+00:00",
"category": "Other",
"uuid": "92beaaee-4fab-434f-be8a-cbf1c6ddf3bf"
}
],
"x_misp_comment": "www-cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--526fc830-0158-454c-b31a-5616781d5521",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:15:18.000Z",
"modified": "2024-01-03T10:15:18.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "d53b37f3-21cf-4024-b4e8-b04206ddc463"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "5d579c2a-dae8-4992-bbe3-c5b1df53f59c"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-24T15:17:57+00:00",
"category": "Other",
"uuid": "46f25fa9-c7f8-49eb-96de-b1428a544025"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "56b81b26-ba55-4d63-adcc-7e038f4f88c6"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-800.awsdns-36.net",
"category": "Other",
"uuid": "60b6410d-9b52-4e4e-bc26-fa535cdc12fb"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns-lu.com",
"category": "Other",
"to_ids": true,
"uuid": "e21f2487-716d-4089-990c-c17aa0b13062"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-01T10:11:18+00:00",
"category": "Other",
"uuid": "77c4cc06-ddac-4437-9bd6-d5c74a70af57"
}
],
"x_misp_comment": "www-cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--7c7f5b07-6a2f-4e89-bd4b-0b4abb003ff9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:15:18.000Z",
"modified": "2024-01-03T10:15:18.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "b6991e98-85b8-4d69-b1e4-860403daf463"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "2f490691-5dad-47a7-895c-f26437d376c1"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-24T15:17:57+00:00",
"category": "Other",
"uuid": "06ed6a08-253b-4ca2-8977-efebc2711c0b"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "047ac498-849c-4a8f-ad38-3b414d7b349e"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1377.awsdns-44.org",
"category": "Other",
"uuid": "8ec501bd-2d12-4633-8580-d902b170cb38"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns-lu.com",
"category": "Other",
"to_ids": true,
"uuid": "6486765d-ba8e-4d23-9e09-59b90de8a3e6"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-01T10:11:18+00:00",
"category": "Other",
"uuid": "e12cc819-231d-4156-af4c-00d3d42e6c8b"
}
],
"x_misp_comment": "www-cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--5e321b05-3652-487f-8901-3c5fae054dbf",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:15:18.000Z",
"modified": "2024-01-03T10:15:18.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "a8349e6d-bf68-46f9-8232-ddf14a0aa785"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "fbe4afdf-913b-480d-ba0f-fc1d7efb77cc"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-24T15:17:57+00:00",
"category": "Other",
"uuid": "0e0fdf5a-e1c8-41ab-acca-f401cab6dc0e"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "cd6b3a92-6c31-490f-814a-f0a7e95db1ff"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-185.awsdns-23.com",
"category": "Other",
"uuid": "832dc521-d47c-446b-90d0-48d22e60e65e"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns-lu.com",
"category": "Other",
"uuid": "3f836b3d-d55a-4ed9-afc0-44030c9f98cf"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-01T10:11:18+00:00",
"category": "Other",
"uuid": "d46f4ffd-9a36-4654-bd29-41d3e017a308"
}
],
"x_misp_comment": "www-cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--d9ffe987-6fd2-4b14-b299-0837d2acea3e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:15:19.000Z",
"modified": "2024-01-03T10:15:19.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "51ee6ab6-b391-4403-a4c7-506eea6ca316"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "a821c357-b465-4e00-aa6c-de51c040032c"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-01T10:11:18+00:00",
"category": "Other",
"uuid": "c7c4ccab-2822-4522-9f35-a31dfc35f195"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "d423b436-7669-4afb-8884-6db0fcc8b9d7"
},
{
"type": "text",
"object_relation": "rrname",
"value": "35.177.103.239",
"category": "Other",
"uuid": "caa614d4-d28a-436d-8aea-c20ba364e47e"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns-lu.com",
"category": "Other",
"uuid": "c7d9095d-ac8b-4e28-9f7f-2bab7f1cadc8"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-01T18:02:49+00:00",
"category": "Other",
"uuid": "a8807bf1-c0af-443f-bc59-a0d4012560c0"
}
],
"x_misp_comment": "www-cns-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--5af48ad2-7964-412c-9a8c-9fa7775bdf08",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:17:04.000Z",
"modified": "2024-01-03T10:17:04.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "f4c710c3-300d-44c2-b58e-cbd56fb9bea4"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "fce87087-564d-47eb-a896-f73150261ac4"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-28T07:20:46+00:00",
"category": "Other",
"uuid": "a6a864f3-202c-4a43-8086-28d240823b66"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "a9c37027-8965-4012-aff3-3731452266be"
},
{
"type": "text",
"object_relation": "rrname",
"value": "54.93.211.218",
"category": "Other",
"uuid": "14e2874a-49be-429a-a7b5-311055170bad"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust.co",
"category": "Other",
"uuid": "3cd19cfe-3436-40f6-a2ef-eee9e82371ae"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-28T07:20:46+00:00",
"category": "Other",
"uuid": "c3b5dbc7-ecf2-41f7-b635-16632dc6facc"
}
],
"x_misp_comment": "54.93.211.218: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--48211c46-99d6-4e05-a4a6-8d256cb2fd1c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:17:04.000Z",
"modified": "2024-01-03T10:17:04.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "6",
"category": "Other",
"uuid": "dfc9ef32-b540-44c8-b25a-cd7bcd410ab7"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "ecef5065-4b0f-417f-ae84-746accbbe1ba"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2023-12-24T15:17:57+00:00",
"category": "Other",
"uuid": "6363d21f-73ed-4499-bdb3-c92ec0805f8a"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "1b1445ad-6b75-4b68-9629-78c1d39047e5"
},
{
"type": "text",
"object_relation": "rrname",
"value": "54.93.211.218",
"category": "Other",
"uuid": "22d2ee62-0e1a-4f7c-ae18-b4c4eed62776"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns-lu.com",
"category": "Other",
"uuid": "b0ba25a6-ff08-4880-ad22-623f8f887cfa"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2023-12-29T12:53:49+00:00",
"category": "Other",
"uuid": "c46329ec-bdef-486d-bb7f-b942c8484295"
}
],
"x_misp_comment": "54.93.211.218: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--ef1a611a-fdd6-4feb-a8b9-2e55a2d3a58e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:19:54.000Z",
"modified": "2024-01-03T10:19:54.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "2",
"category": "Other",
"uuid": "f32b4d96-380d-4c4d-8bb9-ad4212605ebf"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "481315c5-21bd-4ffa-b122-c2f0d36bdd79"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-01T06:20:20+00:00",
"category": "Other",
"uuid": "4060d78b-309e-4e03-8f4b-3c6bf1108ae1"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "b22d2d1d-4dc5-4093-ad6b-926b66fe2bbf"
},
{
"type": "text",
"object_relation": "rrname",
"value": "35.177.103.239",
"category": "Other",
"uuid": "17dfc802-c901-4561-86bf-8ff6cf6837cd"
},
{
"type": "text",
"object_relation": "rdata",
"value": "tango-lu.com",
"category": "Other",
"to_ids": true,
"uuid": "244d67b0-15eb-4e16-8d7d-57dd306e28b2"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-01T10:19:23+00:00",
"category": "Other",
"uuid": "578aa083-78d7-4330-bdaf-2b830ad7d061"
}
],
"x_misp_comment": "35.177.103.239: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--c92ec0a9-e8d4-4ebb-81a7-360b14669c6f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:19:54.000Z",
"modified": "2024-01-03T10:19:54.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "5",
"category": "Other",
"uuid": "505ff708-59df-4019-bf07-fd734afd066c"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "2a3568dc-1599-402b-83dd-337eebf4004f"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-01T10:11:18+00:00",
"category": "Other",
"uuid": "558205c1-5820-420e-9dbc-8f4c2f564d36"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "744a9d72-32ef-4197-8bd8-a1511b4e4d96"
},
{
"type": "text",
"object_relation": "rrname",
"value": "35.177.103.239",
"category": "Other",
"uuid": "5f471c1d-75b0-41df-adce-7a35198ea67f"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns-lu.com",
"category": "Other",
"to_ids": true,
"uuid": "6517ba6f-39e1-4a74-bd15-a223ef4d396f"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-01T18:02:49+00:00",
"category": "Other",
"uuid": "13e96470-36bc-4e44-9e24-e504cb03f4d7"
}
],
"x_misp_comment": "35.177.103.239: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--468b94dc-d2b4-48e2-a2bf-1bb77863e773",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-03T10:19:55.000Z",
"modified": "2024-01-03T10:19:55.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "e81c1924-81c6-4ca4-87bd-e06bc5617c65"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "c9e520ff-ff92-4880-b395-d6788a1f2c81"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-02T13:42:31+00:00",
"category": "Other",
"uuid": "8909aa7c-8a3a-4641-87fc-fa3aabbe5f62"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "75ba58f6-ab5e-4670-9c37-eb6ce559f237"
},
{
"type": "text",
"object_relation": "rrname",
"value": "35.177.103.239",
"category": "Other",
"uuid": "643158de-c088-427e-9770-60b7dbfad24f"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust.co",
"category": "Other",
"to_ids": true,
"uuid": "9343ca6c-7257-42d4-b5dd-9dc637e8cc86"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-02T13:42:31+00:00",
"category": "Other",
"uuid": "bc070efa-b8de-45d0-ad1b-51a90ea11711"
}
],
"x_misp_comment": "35.177.103.239: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--c8cd96b5-f93e-4b43-8e8e-e35243364255",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-16T15:32:23.000Z",
"modified": "2024-01-16T15:32:23.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "ae4e75c9-4024-46fc-863c-da695f75ee78"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "1a778571-5f3c-4bb0-a8c9-552babc45788"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-10T14:00:09+00:00",
"category": "Other",
"uuid": "af06309d-3071-4495-8a0c-6292b7712e08"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "6a610550-c8f2-4c55-b1dc-689bde02382d"
},
{
"type": "text",
"object_relation": "rrname",
"value": "3.71.1.255",
"category": "Other",
"uuid": "81bb9318-a2fb-4ee3-9af6-81f8bc37698e"
},
{
"type": "text",
"object_relation": "rdata",
"value": "cns-public.eu",
"category": "Other",
"uuid": "070d4658-2a32-4efc-aa57-f12616d29278"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-10T14:00:09+00:00",
"category": "Other",
"uuid": "f6c67e82-a313-4bd4-a089-7bb72b9a379f"
}
],
"x_misp_comment": "3.71.1.255: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--421ecb18-c199-4437-ace3-af08b2d449d6",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-16T15:32:23.000Z",
"modified": "2024-01-16T15:32:23.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "ae4aa47c-fbd4-4ab0-835d-248470f48268"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "f6054b7d-c4f9-4a2c-8c14-5ef2e566c1d8"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-11T09:15:56+00:00",
"category": "Other",
"uuid": "999ca7be-55f5-44bd-af61-a2214d2ed6a3"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "baef23e5-1e12-4d5d-8744-15d7ec70c89c"
},
{
"type": "text",
"object_relation": "rrname",
"value": "3.71.1.255",
"category": "Other",
"uuid": "549f1080-0882-4f89-9608-c5fa5a5fa44c"
},
{
"type": "text",
"object_relation": "rdata",
"value": "ccss-lu.eu",
"category": "Other",
"uuid": "8656c082-a654-4976-98da-b839a48f5e64"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-11T09:15:56+00:00",
"category": "Other",
"uuid": "f9f22b67-731b-4240-a355-8e540fdda11d"
}
],
"x_misp_comment": "3.71.1.255: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--f330f661-1ba2-4bdc-bcf9-2ec3d6f39f1e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-16T15:32:23.000Z",
"modified": "2024-01-16T15:32:23.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "3",
"category": "Other",
"uuid": "3448adeb-1587-41e8-afd8-641d3516e118"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "0fb1b542-a89b-47b1-9624-fccb716b4dd1"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-09T07:44:24+00:00",
"category": "Other",
"uuid": "15617b1a-b2e7-441e-9018-1cd52d9f08a8"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "103ba7fc-0bbf-4f56-89bb-ac81d1f2e9a5"
},
{
"type": "text",
"object_relation": "rrname",
"value": "3.71.1.255",
"category": "Other",
"uuid": "ecc6e36e-9710-47f8-a207-7d453839ccf6"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns-lu.com",
"category": "Other",
"uuid": "1c8cf0c4-0635-4006-b30d-bc4475979536"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-16T15:18:05+00:00",
"category": "Other",
"uuid": "ef0af5b9-e85e-4c09-a5da-cd502c6477fb"
}
],
"x_misp_comment": "3.71.1.255: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--759c5813-7ac8-44e3-a4d3-fb22f05bb0e9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-25T09:03:30.000Z",
"modified": "2024-01-25T09:03:30.000Z",
"pattern": "[(network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '3.71.1.255') AND (network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '3.71.1.255') AND (network-traffic:dst_ref.type = 'domain-name' AND network-traffic:dst_ref.value = 'ccss.support') AND (network-traffic:dst_ref.type = 'domain-name' AND network-traffic:dst_ref.value = 'cfl-lu.com') AND (network-traffic:dst_ref.type = 'domain-name' AND network-traffic:dst_ref.value = 'ccss.support') AND (network-traffic:dst_ref.type = 'domain-name' AND network-traffic:dst_ref.value = 'cfl-lu.com') AND (network-traffic:dst_ref.type = 'domain-name' AND network-traffic:dst_ref.value = '3-71-1-255.plesk.page') AND (network-traffic:dst_ref.type = 'domain-name' AND network-traffic:dst_ref.value = 'quizzical-feistel.3-71-1-255.plesk.page') AND (network-traffic:dst_ref.type = 'domain-name' AND network-traffic:dst_ref.value = 'ec2-3-71-1-255.eu-central-1.compute.amazonaws.com') AND network-traffic:dst_port = '443' AND network-traffic:x_misp_AS = '16509' AND network-traffic:x_misp_protocol = 'HTTPS']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-01-25T09:03:30Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"ip-port\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--332102a3-0278-40b9-a6a2-55115bb59baf",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-29T08:22:31.000Z",
"modified": "2024-01-29T08:22:31.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "7eb12077-311b-4588-8961-9af1bb011bf1"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "0a1c2154-73fc-4a04-bf9f-713bba0efcb6"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-29T08:16:34+00:00",
"category": "Other",
"uuid": "aa2b1386-e0ec-4721-a371-e26e067f0e6c"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "52416693-ad80-46d8-92cf-acb0daee6fe0"
},
{
"type": "text",
"object_relation": "rrname",
"value": "13.48.203.238",
"category": "Other",
"uuid": "0acb84a5-d945-4ce3-b9fe-71f9141ed819"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust-cancel.com",
"category": "Other",
"uuid": "753c40cb-3849-4be4-8236-19fb06c31aa7"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-29T08:16:34+00:00",
"category": "Other",
"uuid": "ecdd8d2d-e0de-4901-a12b-f4ab2e5a6aa1"
}
],
"x_misp_comment": "luxtrust-cancel.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--3ebf35da-eb90-4ccd-a7a8-b6526a774196",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-29T08:23:01.000Z",
"modified": "2024-01-29T08:23:01.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "8917feb1-41de-46ea-82c1-d797334d5a32"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "9c562886-8fe0-4dc7-82aa-6bd8904e0ebc"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-26T22:38:10+00:00",
"category": "Other",
"uuid": "19979ecc-bb09-4526-9bda-29337a302015"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "9c03e659-2720-48b7-ac4e-aecc8da12002"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1194.awsdns-21.org",
"category": "Other",
"uuid": "b39acf4c-6737-48a1-a200-84a3edc3a7f3"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns.com",
"category": "Other",
"uuid": "c0cfa478-e883-4ee4-be29-dc7585c74bce"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-26T22:38:10+00:00",
"category": "Other",
"uuid": "967992e4-ebd4-4c1b-9433-03e6d0f0a0d5"
}
],
"x_misp_comment": "www-cns.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--96ba33c3-3872-4070-95cc-e1d8d6154028",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-29T08:23:01.000Z",
"modified": "2024-01-29T08:23:01.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "62bfd97e-79c5-4476-92f6-d9d830203b2d"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "7eb074cd-a67b-4f94-af2e-f3a13b85e898"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-26T22:38:10+00:00",
"category": "Other",
"uuid": "a6228abd-38e8-4459-9dcd-551e15977837"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "6f648092-6c92-4910-8c48-5f3baedf1b10"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1016.awsdns-63.net",
"category": "Other",
"uuid": "869f1df5-2426-4958-90dc-27f983bcf9d7"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns.com",
"category": "Other",
"uuid": "750a1a25-7896-43e4-9489-629e23ff0183"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-26T22:38:10+00:00",
"category": "Other",
"uuid": "ef5d2b2e-b617-4d43-a609-3371651a0671"
}
],
"x_misp_comment": "www-cns.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--b63220f5-d1b3-4d2d-9b87-b43321c9a009",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-29T08:23:01.000Z",
"modified": "2024-01-29T08:23:01.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "cbc0da47-ec2a-4abd-b6f2-4bb82b1a183d"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "d83f47a0-a9be-4fbb-9b7c-494f067f6c8f"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-26T22:38:10+00:00",
"category": "Other",
"uuid": "dda7051d-c841-44db-8103-0bd0b0e436d8"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "068e79ee-0388-4f26-8877-eaa202bb545c"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-356.awsdns-44.com",
"category": "Other",
"uuid": "eba98f26-f691-4fec-827c-8d5a23859604"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns.com",
"category": "Other",
"uuid": "94fc8a64-12cc-4979-abf8-8e74b8964f91"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-26T22:38:10+00:00",
"category": "Other",
"uuid": "51873096-0961-447e-b77c-26a7db3587db"
}
],
"x_misp_comment": "www-cns.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--36ab853d-f0b8-41e3-9536-12f611f2ec2a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-29T08:23:02.000Z",
"modified": "2024-01-29T08:23:02.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "a3417b40-1752-4430-9729-e9d444625e11"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "09909903-82f5-4891-a580-2ebe8bf00fc0"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-26T22:38:10+00:00",
"category": "Other",
"uuid": "57825328-2752-45da-8dee-1b14d3e5de77"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "f80ab4b2-75f8-4734-be60-ff800f8055c6"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-2013.awsdns-59.co.uk",
"category": "Other",
"uuid": "090800ee-377f-49ec-9b42-47356822b4ee"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns.com",
"category": "Other",
"uuid": "fdd05c96-fcc6-4d1a-a3bd-58b9560a68d8"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-26T22:38:10+00:00",
"category": "Other",
"uuid": "02ebd2fe-bab7-479b-a761-3088801b3b8c"
}
],
"x_misp_comment": "www-cns.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--83798e92-c141-4bc8-98cb-27de4a0e8bdb",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-29T08:23:02.000Z",
"modified": "2024-01-29T08:23:02.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "f6b471ef-f538-4822-89fe-98d204daf5db"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "8e3a5d46-745a-4d9c-97a5-de21a39e5d4c"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-27T06:43:33+00:00",
"category": "Other",
"uuid": "e83ae7d8-a068-4a83-aeae-26f65b7ee358"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "SOA",
"category": "Other",
"uuid": "c4caf0a8-90d3-4a21-af49-e6c2ad27c44e"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-356.awsdns-44.com awsdns-hostmaster.amazon.com 1 7200 900 1209600 86400",
"category": "Other",
"uuid": "dd6dc2a0-7974-471f-a221-a4bf3480e50e"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns.com",
"category": "Other",
"uuid": "dc34ecfd-a200-45e3-b17d-648ae0bf8eb5"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-27T06:43:33+00:00",
"category": "Other",
"uuid": "ddebc4c0-bd35-4ee0-840a-a23bb897a661"
}
],
"x_misp_comment": "www-cns.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--b24f9876-fc01-4011-9e1a-f5756419d8c0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-29T08:23:02.000Z",
"modified": "2024-01-29T08:23:02.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "93ba356f-2dea-4c38-ae3d-dd17cb790fb9"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "ecdd1c05-0bfb-4e1f-a939-e5c8e0fe48ab"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-01-26T21:02:34+00:00",
"category": "Other",
"uuid": "8bb743f0-c14b-4cb5-bdba-c8b1f65a03a3"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "579fbf95-c328-472a-9f60-e941363c42f1"
},
{
"type": "text",
"object_relation": "rrname",
"value": "13.48.203.238",
"category": "Other",
"uuid": "1513895e-41cc-4d51-8606-607a990620d7"
},
{
"type": "text",
"object_relation": "rdata",
"value": "www-cns.com",
"category": "Other",
"uuid": "a251cd7a-c408-4076-9a2a-341860af4124"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-01-29T08:14:18+00:00",
"category": "Other",
"uuid": "d01ed8af-8cf7-43bd-9ca0-f561e732c411"
}
],
"x_misp_comment": "www-cns.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--410ad9a6-d51e-4b73-8514-06941ed97084",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-01-31T14:26:51.000Z",
"modified": "2024-01-31T14:26:51.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "sante-lu.com",
"category": "Network activity",
"to_ids": true,
"uuid": "a268e631-8535-4538-8759-3feec164d4b2"
},
{
"type": "hostname",
"object_relation": "hostname",
"value": "13.48.203.238",
"category": "Network activity",
"to_ids": true,
"uuid": "e3bbcc37-3764-484a-ab2c-1baa6460d1f7"
},
{
"type": "text",
"object_relation": "internal-reference",
"value": "3705060",
"category": "Internal reference",
"uuid": "97c102f0-b0c3-4d55-af1b-018cf185ffbf"
},
{
"type": "url",
"object_relation": "url",
"value": "https://sante-lu.com/index.php",
"category": "Network activity",
"to_ids": true,
"uuid": "041cf948-f69c-4dca-aff0-6f73b1e717b0"
},
{
"type": "url",
"object_relation": "url-redirect",
"value": "https://sante-lu.com/",
"category": "Network activity",
"to_ids": true,
"uuid": "3b0cfa3f-fad3-4413-aad9-7e235b2ad9e1"
},
{
"type": "text",
"object_relation": "online",
"value": "Yes",
"category": "Other",
"uuid": "542b0b6f-e3e5-426e-a0cf-e57e6563c8e9"
},
{
"type": "text",
"object_relation": "target",
"value": "CCSS",
"category": "Other",
"uuid": "3a32935e-48e5-43f0-b7d0-8133a9dc8fe5"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--e0c62f70-371f-48e1-ba56-c02f808de743",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-02T09:32:27.000Z",
"modified": "2024-02-02T09:32:27.000Z",
"pattern": "[domain-name:value = 'luxtrust-help.com' AND domain-name:x_misp_hostname = 'luxtrust-help.com' AND domain-name:resolves_to_refs[*].value = '54.170.251.238' AND domain-name:x_misp_port = '443' AND domain-name:x_misp_text = 'Amazon Technologies Inc.']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-02-02T09:32:27Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"domain-ip\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--291651ff-e199-4079-b392-645b0b1291e3",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:15:51.000Z",
"modified": "2024-02-08T09:15:51.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "2",
"category": "Other",
"uuid": "ad422661-3dfb-46d5-b950-b6e477f755d5"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "b6d6e361-2aed-485d-b1b9-0de522aa0626"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-08T08:49:51+00:00",
"category": "Other",
"uuid": "3907d152-228e-4054-ac67-9f535f962945"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "f63b1368-bc65-4e1f-a925-dfb6c02b0f61"
},
{
"type": "text",
"object_relation": "rrname",
"value": "35.180.136.109",
"category": "Other",
"uuid": "9e9b0b29-85d7-4c48-8375-01f73c57ab3d"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust-unlock.com",
"category": "Other",
"uuid": "96e29b50-e620-49b7-922b-487cc9990780"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "e907519f-fdb3-4dcb-8471-ebc959a6f9c1"
}
],
"x_misp_comment": "luxtrust-unlock.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--62632fd8-27b2-4512-8b15-d1a11dc49746",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:15:51.000Z",
"modified": "2024-02-08T09:15:51.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "d9cba789-ecff-4af1-92ab-3dcbd8e6d50a"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "0edd5d06-16a6-4244-9709-bd118b370115"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "6bfab71f-3b5d-4d78-bc1e-4c69c42279e7"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "9c667da7-b5b8-4f52-8543-13e76228db5d"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1769.awsdns-29.co.uk",
"category": "Other",
"uuid": "2f328b03-1814-48a9-9cc3-0f67a70f0053"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust-unlock.com",
"category": "Other",
"uuid": "8962e22f-fe06-4448-9317-4998bd34929e"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "32bb50cc-fdce-4f39-a408-3fcc998bc8c9"
}
],
"x_misp_comment": "luxtrust-unlock.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--10319722-5fb4-46ef-a45f-e447a7f8b172",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:15:51.000Z",
"modified": "2024-02-08T09:15:51.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "4ed50a6a-8408-4423-95d0-5b975daff712"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "48ca3a02-4e79-47dd-b45a-eebb1e8a5aab"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "5104bca9-e9a1-4c53-ba37-19cfdabd03c4"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "d0545ea8-d9cb-438f-8731-faf90633175b"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-668.awsdns-19.net",
"category": "Other",
"uuid": "eb1958c1-f581-4599-ac30-34382451aad2"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust-unlock.com",
"category": "Other",
"uuid": "90ef3fb9-ea21-42dc-9a8e-858a292621be"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "863405d9-de5c-48d7-a738-aae63fecc916"
}
],
"x_misp_comment": "luxtrust-unlock.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--edf18f0b-f6dd-4375-a09e-723f6addc349",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:15:51.000Z",
"modified": "2024-02-08T09:15:51.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "08e89231-dbc4-489e-b046-b538173eb686"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "a79b4b8b-7ef9-4c06-82cb-3a0d31040d4f"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "3abc441f-9626-43f4-a448-a5681aa9f38d"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "3644cd23-0a15-4f4a-8246-60f932bcf866"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1148.awsdns-15.org",
"category": "Other",
"uuid": "da1b53cc-6440-4b8f-ac0f-cc53ea75c369"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust-unlock.com",
"category": "Other",
"uuid": "2b086751-40fd-4743-87f7-edbd143830ad"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "0d2c5bde-8d5a-465a-a07c-af7f20fb2456"
}
],
"x_misp_comment": "luxtrust-unlock.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--35468c54-cc35-4f74-aa93-c1e8cff3d7ef",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:15:51.000Z",
"modified": "2024-02-08T09:15:51.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "0d950493-a42d-493d-836d-92b57db2751e"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "8261f06a-baf0-4154-a959-a47b1cb68c5d"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "56f37483-5e72-4e45-b59f-74d4f7d5a1f4"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "d51ad948-ea9e-444b-948b-0ac8b529564b"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-508.awsdns-63.com",
"category": "Other",
"uuid": "65f331ed-7b62-4e8f-ae94-3e23097d3912"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust-unlock.com",
"category": "Other",
"uuid": "bda260b2-ba4e-4e6c-b784-644680ff03e7"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "e3e74565-6ebc-4192-9668-513b78549851"
}
],
"x_misp_comment": "luxtrust-unlock.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--3c19b823-a9c2-40b6-a38d-b54d97b7e8de",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:15:51.000Z",
"modified": "2024-02-08T09:15:51.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "b841ef55-630b-4838-85a8-2b12e5802874"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "49ff26cc-34b0-49aa-b54b-04270df18df2"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "07777808-4669-4420-8224-44ddb0328323"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "SOA",
"category": "Other",
"uuid": "e3196592-ed21-48ec-8740-088ab941ca51"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1769.awsdns-29.co.uk awsdns-hostmaster.amazon.com 1 7200 900 1209600 86400",
"category": "Other",
"uuid": "5eb4feb0-d0eb-42e8-8551-f4815d5057ec"
},
{
"type": "text",
"object_relation": "rdata",
"value": "luxtrust-unlock.com",
"category": "Other",
"uuid": "c06843b0-222f-4114-b61e-d70b6c6fc87b"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T08:55:26+00:00",
"category": "Other",
"uuid": "8b72a1da-f2e4-4210-9738-cd7c41ce8897"
}
],
"x_misp_comment": "luxtrust-unlock.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--d651ee3a-5e14-4e02-8b22-360cf136e00c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:19:02.000Z",
"modified": "2024-02-08T09:19:02.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "0773ecea-f23e-4d48-9c34-16ee76407e2a"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "ccb3be0f-3772-4e20-95c8-aef034d6817d"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-08T08:58:25+00:00",
"category": "Other",
"uuid": "d5b4f9bf-30b3-4bc5-a47a-0b86c6825dc9"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "ccdf1cd3-d7a8-4111-acfd-27be9d7d784b"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-296.awsdns-37.com",
"category": "Other",
"uuid": "8a1302e9-5404-4d3e-b89e-f06066eb3b1f"
},
{
"type": "text",
"object_relation": "rdata",
"value": "ccss-sante-lu.com",
"category": "Other",
"uuid": "efb1cad0-3173-470a-8df0-87d89ce682f1"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T08:58:25+00:00",
"category": "Other",
"uuid": "07f8b084-6a6c-4a01-b3a3-da4bad46e020"
}
],
"x_misp_comment": "ccss-sante-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--1ba400b2-d40c-4e16-bfcf-0712d52d67ef",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:19:03.000Z",
"modified": "2024-02-08T09:19:03.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "5492301c-669c-4b0b-85e8-c5b0e1325971"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "36e7de93-81ae-4848-8832-7ddb2c1e43ee"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-08T08:58:25+00:00",
"category": "Other",
"uuid": "80a1fbc2-98e2-4eba-9bf0-c51a239604bb"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "266dfb84-e5a6-4d2a-9c54-4775faa956d8"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-920.awsdns-51.net",
"category": "Other",
"uuid": "44266da5-ea43-4b03-9c07-0f1791b18297"
},
{
"type": "text",
"object_relation": "rdata",
"value": "ccss-sante-lu.com",
"category": "Other",
"uuid": "b01481c9-5ab5-4564-a2bf-79628d3fa850"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T08:58:25+00:00",
"category": "Other",
"uuid": "cc58a6d8-f079-4728-8efc-eea846f6f8ff"
}
],
"x_misp_comment": "ccss-sante-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--77910ba0-4117-4ac5-a355-69098503b950",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:19:03.000Z",
"modified": "2024-02-08T09:19:03.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "03bd37b6-184a-45fb-bb59-7586afac67d3"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "c866da77-fa2f-499e-b877-4d88910acabe"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-08T08:58:25+00:00",
"category": "Other",
"uuid": "f33239fe-247e-446c-a3df-d10388d140c6"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "6706c335-3594-4880-b31d-a72f006a7f89"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1790.awsdns-31.co.uk",
"category": "Other",
"uuid": "957b55bd-19af-4739-94ed-a9e7e66621dd"
},
{
"type": "text",
"object_relation": "rdata",
"value": "ccss-sante-lu.com",
"category": "Other",
"uuid": "0506906a-25c9-4b48-953e-083cccc46ed9"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T08:58:25+00:00",
"category": "Other",
"uuid": "9dffd720-e1c0-4674-b335-c019aba1e511"
}
],
"x_misp_comment": "ccss-sante-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--12446191-c1ad-4dcb-bd0a-26b238d73947",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:19:03.000Z",
"modified": "2024-02-08T09:19:03.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "1",
"category": "Other",
"uuid": "13df4cb5-ab8f-4465-a165-fb040af92b64"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "6b13b273-867d-4ed9-b333-267230a8d2f6"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-08T08:58:25+00:00",
"category": "Other",
"uuid": "200a937e-3374-4b27-b2f7-c0673d6834ad"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "NS",
"category": "Other",
"uuid": "33f7332f-9aa6-452a-8c17-92970405031a"
},
{
"type": "text",
"object_relation": "rrname",
"value": "ns-1129.awsdns-13.org",
"category": "Other",
"uuid": "274b618c-a4e4-4393-94e0-50a4ba735f2a"
},
{
"type": "text",
"object_relation": "rdata",
"value": "ccss-sante-lu.com",
"category": "Other",
"uuid": "9fe664fe-b541-4b22-bf03-7ba6dbfb7383"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T08:58:25+00:00",
"category": "Other",
"uuid": "5fefc123-d66b-4557-a2bf-950bc533b56b"
}
],
"x_misp_comment": "ccss-sante-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--3ae90b6f-daf8-4da2-924c-9a0f518fde4a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-02-08T09:19:03.000Z",
"modified": "2024-02-08T09:19:03.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "3",
"category": "Other",
"uuid": "ded29b32-987d-4377-98f5-42e06bb42246"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "d99cd7c9-fc26-4688-8a60-377a6af3d0a1"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-02-07T07:43:10+00:00",
"category": "Other",
"uuid": "69465587-73ab-4967-bc61-08914352c1e7"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "e6fea342-380e-4184-883d-61c53208620d"
},
{
"type": "text",
"object_relation": "rrname",
"value": "35.180.136.109",
"category": "Other",
"uuid": "35d7b892-dff0-476d-9dda-d13139aca2ed"
},
{
"type": "text",
"object_relation": "rdata",
"value": "ccss-sante-lu.com",
"category": "Other",
"uuid": "849025c8-6214-40cc-abd9-b068ff2eec48"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-02-08T09:02:37+00:00",
"category": "Other",
"uuid": "030da0f2-1ffe-47c6-9e90-7072da6f5111"
}
],
"x_misp_comment": "ccss-sante-lu.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--7417b9cc-5f50-458a-bea0-cf620fc2e8b7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-03-18T10:17:40.000Z",
"modified": "2024-03-18T10:17:40.000Z",
"description": "Enriched via the url_import module",
"pattern": "[url:value = 'https://public-ccss.com/index.php' AND url:x_misp_tld = 'com' AND url:x_misp_resource_path = '/index.php' AND url:x_misp_host = 'public-ccss.com' AND url:x_misp_domain_without_tld = 'public-ccss' AND url:x_misp_domain = 'public-ccss.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-03-18T10:17:40Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"url\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--e65bbf37-9221-472c-94a6-90cb59d1d65c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-03-18T10:18:26.000Z",
"modified": "2024-03-18T10:18:26.000Z",
"labels": [
"misp:name=\"passive-dns\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "counter",
"object_relation": "count",
"value": "6",
"category": "Other",
"uuid": "81d6d5aa-e018-405a-a3ec-df7db7044ff0"
},
{
"type": "text",
"object_relation": "origin",
"value": "https://www.circl.lu/pdns/",
"category": "Other",
"uuid": "95ac9186-978a-4003-8c67-5f9173c08949"
},
{
"type": "datetime",
"object_relation": "time_first",
"value": "2024-03-07T09:27:05+00:00",
"category": "Other",
"uuid": "04173f64-2ba3-48c5-b1a4-f0f02e115512"
},
{
"type": "text",
"object_relation": "rrtype",
"value": "A",
"category": "Other",
"uuid": "28cea02a-e6c0-484e-9349-b77bd100ac58"
},
{
"type": "text",
"object_relation": "rrname",
"value": "51.20.69.186",
"category": "Other",
"uuid": "eeb6d0c6-f579-4320-862c-749199245607"
},
{
"type": "text",
"object_relation": "rdata",
"value": "public-ccss.com",
"category": "Other",
"uuid": "e91bdda4-7c21-461f-9360-198bd3c1fb9f"
},
{
"type": "datetime",
"object_relation": "time_last",
"value": "2024-03-13T10:22:44+00:00",
"category": "Other",
"uuid": "1482b1de-5eb6-4266-81ca-19d6b20142cd"
}
],
"x_misp_comment": "public-ccss.com: Enriched via the circl_passivedns module",
"x_misp_meta_category": "network",
"x_misp_name": "passive-dns"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--76e2f57a-b445-4902-a3fa-1f8d8986b166",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-03-22T14:05:49.000Z",
"modified": "2024-03-22T14:05:49.000Z",
"description": "Enriched via the url_import module",
"pattern": "[url:value = 'https://help-luxtrust.lu/index.php?success=validatedok' AND url:x_misp_tld = 'lu' AND url:x_misp_resource_path = '/index.php' AND url:x_misp_query_string = '?success=validatedok' AND url:x_misp_host = 'help-luxtrust.lu' AND url:x_misp_domain_without_tld = 'help-luxtrust' AND url:x_misp_domain = 'help-luxtrust.lu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-03-22T14:05:49Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"url\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--a8b58223-ba50-4bbb-b9b2-242f944a7395",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-03-28T12:14:35.000Z",
"modified": "2024-03-28T12:14:35.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "3.82.24.34",
"category": "Network activity",
"to_ids": true,
"uuid": "0e28357f-1e27-48e3-87bc-f33aca2f06db"
},
{
"type": "text",
"object_relation": "internal-reference",
"value": "3772453",
"category": "Internal reference",
"uuid": "31d86cb9-bdb2-426a-b1cc-42d4531244a3"
},
{
"type": "text",
"object_relation": "takedown-request-to",
"value": "abuse@amazonaws.com",
"category": "Other",
"uuid": "d1822321-9005-4326-96ba-1f56eaabdc8b"
},
{
"type": "url",
"object_relation": "url",
"value": "https://carte-sante-lu.com/index.php?success=validatedok",
"category": "Network activity",
"to_ids": true,
"uuid": "202859b9-00c2-4667-9c86-81f1a5447d7b"
},
{
"type": "url",
"object_relation": "url-redirect",
"value": "https://cns-order.com/",
"category": "Network activity",
"to_ids": true,
"uuid": "baccf75c-d0bf-4fb3-8d6b-fde88989ba2d"
},
{
"type": "text",
"object_relation": "online",
"value": "Yes",
"category": "Other",
"uuid": "18f60446-d4f0-4406-9944-29aff91b297d"
},
{
"type": "text",
"object_relation": "target",
"value": "CCSS",
"category": "Other",
"uuid": "757775d0-245d-4497-ac62-0040ba03298a"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--8ed65adc-0692-4295-b3d0-6a4b8816cce5",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-03-29T13:02:53.000Z",
"modified": "2024-03-29T13:02:53.000Z",
"pattern": "[url:value = 'https://infoluxtrust.com/steps/luxtrust/' AND url:x_misp_domain = 'infoluxtrust.com' AND url:x_misp_domain_without_tld = 'infoluxtrust' AND url:x_misp_ip = '3.79.236.229' AND url:x_misp_port = '443' AND url:x_misp_resource_path = '/steps/luxtrust/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-03-29T13:02:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"url\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--23d99753-21c7-4556-b600-e55f2d45234f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-04-09T10:42:23.000Z",
"modified": "2024-04-09T10:42:23.000Z",
"pattern": "[url:value = 'https://luxtrust.help/' AND url:x_misp_domain = 'luxtrust.help' AND url:x_misp_domain_without_tld = 'luxtrust' AND url:x_misp_ip = '52.59.212.17' AND url:x_misp_port = '443']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-04-09T10:42:23Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"url\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--2a9a0ff8-0f32-46ee-95f7-c8164698e785",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-04-12T08:09:22.000Z",
"modified": "2024-04-12T08:09:22.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "3.82.24.34",
"category": "Network activity",
"to_ids": true,
"uuid": "86bd4ef5-dbab-44c4-bf38-e741a9e7fddc"
},
{
"type": "url",
"object_relation": "url",
"value": "https://ccss.digital/",
"category": "Network activity",
"to_ids": true,
"uuid": "9e55acf3-326e-47fc-b31e-2929ec283272"
},
{
"type": "url",
"object_relation": "url-redirect",
"value": "https://etat-public.lu",
"category": "Network activity",
"to_ids": true,
"uuid": "4eb93632-fd80-4aa4-a723-0f1e7ea36d39"
},
{
"type": "text",
"object_relation": "online",
"value": "Yes",
"category": "Other",
"uuid": "d4e2ac70-548d-49d1-90a6-15a8a566c02e"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--0dd6525e-7b82-4a8c-9efd-080735d4243f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-04-22T08:35:49.000Z",
"modified": "2024-04-22T08:35:49.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "3.82.24.34",
"category": "Network activity",
"to_ids": true,
"uuid": "249f32e8-4453-408d-8963-e74eb251150e"
},
{
"type": "text",
"object_relation": "internal-reference",
"value": "3801349",
"category": "Internal reference",
"uuid": "59d6e58f-b853-4d3c-8c53-e8a07f147144"
},
{
"type": "url",
"object_relation": "url",
"value": "https://public-order.lu/",
"category": "Network activity",
"to_ids": true,
"uuid": "0dc793e5-18f6-4f46-9ac1-44601d3aefbf"
},
{
"type": "url",
"object_relation": "url-redirect",
"value": "https://c0nbrjdy.r.us-east-1.awstrack.me/L0/https:%2F%2Fpublic-order.lu/1/0100018ef98d16dd-9631e726-429b-4ad6-90a9-e25371506197-000000/7x9NDhmFipPjGlHSTAfnvM2JBjw=370",
"category": "Network activity",
"to_ids": true,
"uuid": "4176b462-2771-406e-82ed-1f16749d76db"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--a7d461d3-6b68-457d-a9bf-125cd14040ea",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-04-24T05:31:07.000Z",
"modified": "2024-04-24T05:31:07.000Z",
"pattern": "[url:value = 'https://order-public.com/' AND url:x_misp_domain = 'order-public.com' AND url:x_misp_ip = '16.171.58.164' AND url:x_misp_port = '443']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-04-24T05:31:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"url\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f8ad423e-a640-4cad-b4cd-53021c9005ec",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-05-03T08:51:57.000Z",
"modified": "2024-05-03T08:51:57.000Z",
"pattern": "[url:value = 'https://support-luxtrust.com/' AND url:x_misp_domain = 'support-luxtrust.com' AND url:x_misp_ip = '52.58.64.31' AND url:x_misp_port = '443']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-05-03T08:51:57Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"url\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--c1a93bb2-b608-4c94-88cf-4a1ab974ef3d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-05-06T07:51:17.000Z",
"modified": "2024-05-06T07:51:17.000Z",
"pattern": "[url:value = 'https://guichet.me/login_up.php' AND url:x_misp_domain = 'guichet.me' AND url:x_misp_domain_without_tld = 'guichet' AND url:x_misp_ip = '44.200.31.79' AND url:x_misp_port = '443' AND url:x_misp_text = 'https://t.ly/ROJIS']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-05-06T07:51:17Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"url\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--879dac1c-06a4-4481-9b7b-be5c711cea99",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-05-07T14:53:24.000Z",
"modified": "2024-05-07T14:53:24.000Z",
"pattern": "[domain-name:value = 'cfl-lu.com' AND domain-name:x_misp_hostname = 'cfl-lu.com' AND domain-name:resolves_to_refs[*].value = '3.71.1.255' AND domain-name:x_misp_port = '443']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-05-07T14:53:24Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"domain-ip\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--ba98e7b5-44a7-46ce-8904-6c8f4f092390",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-05-08T07:59:38.000Z",
"modified": "2024-05-08T07:59:38.000Z",
"pattern": "[domain-name:value = 'card-order.lu' AND domain-name:x_misp_hostname = 'card-order.lu' AND domain-name:resolves_to_refs[*].value = '44.200.31.79' AND domain-name:x_misp_port = '443' AND domain-name:x_misp_text = '\\\\% WHOIS card-order.lu\r\ndomainname: card-order.lu\r\ndomaintype: ACTIVE\r\nnserver: ns1.eurodns.com\r\nnserver: ns2.eurodns.com\r\nnserver: ns3.eurodns.com\r\nnserver: ns4.eurodns.com\r\nownertype: ORGANISATION\r\nregistered: 03/05/2024\r\norg-name: ORANGE Lyon\r\norg-address: 10 Parc de la T\u00eate d\\'Or\r\norg-zipcode: 69100\r\norg-city: Lyon - 09\r\norg-country: FR\r\nadm-name: duval nico\r\nadm-address: ORANGE Lyon\r\nadm-address: 10 Parc de la T\u00eate d\\'Or\r\nadm-zipcode: 69100\r\nadm-city: Lyon - 09\r\nadm-country: FR\r\nadm-email: wailbanaid93500@gmail.com\r\ntec-name: Adlani Anouar\r\ntec-address: EuroDNS S.A\r\ntec-address: 2, rue Leon Laval\r\ntec-zipcode: L-3372\r\ntec-city: Leudelange\r\ntec-country: LU\r\ntec-email: hostmaster@eurodns.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-05-08T07:59:38Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"domain-ip\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1aff1cf5-bedc-4b67-b546-b9ffd364c100",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-06-12T10:36:45.000Z",
"modified": "2024-06-12T10:36:45.000Z",
"pattern": "[domain-name:value = 'payconiq.direct' AND domain-name:value = 'payconiq.tel' AND domain-name:x_misp_hostname = 'payconiq.direct' AND domain-name:resolves_to_refs[*].value = '54.155.71.44' AND domain-name:x_misp_text = 'https://payconiq.direct/index.php']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2024-06-12T10:36:45Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "network"
}
],
"labels": [
"misp:name=\"domain-ip\"",
"misp:meta-category=\"network\"",
"misp:to_ids=\"True\""
]
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--0124f9e9-24e0-40b0-8e58-5031289cce9b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-06-24T08:23:08.000Z",
"modified": "2024-06-24T08:23:08.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "18.197.141.155",
"category": "Network activity",
"to_ids": true,
"uuid": "558b7bda-c9e3-48b8-a569-237f8e134995"
},
{
"type": "url",
"object_relation": "url",
"value": "https://support-luxtrust.lu/",
"category": "Network activity",
"to_ids": true,
"uuid": "05284ecc-895f-4112-a868-72ca0ffaf4b4"
},
{
"type": "text",
"object_relation": "online",
"value": "Yes",
"category": "Other",
"uuid": "47080da6-da77-44da-b69c-6da5f6a9df85"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--692a9341-7260-40f0-8628-81a9cc7c6de8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-06-25T07:22:21.000Z",
"modified": "2024-06-25T07:22:21.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "payconiq.support",
"category": "Network activity",
"to_ids": true,
"uuid": "cc436fe0-896b-4707-aaa2-f2ba1018e653"
},
{
"type": "ip-dst",
"object_relation": "ip",
"value": "18.197.141.155",
"category": "Network activity",
"to_ids": true,
"uuid": "2f3f1d55-7511-4170-a446-9eb2f408f362"
},
{
"type": "url",
"object_relation": "url",
"value": "payconiq.support",
"category": "Network activity",
"to_ids": true,
"uuid": "b8ae2371-ef85-4d05-8b73-9c0655534aa8"
},
{
"type": "text",
"object_relation": "online",
"value": "Yes",
"category": "Other",
"uuid": "cbfdb128-0134-4f86-9d13-28f7325feea5"
},
{
"type": "text",
"object_relation": "verified",
"value": "Yes",
"category": "Other",
"uuid": "a7aca731-6aa4-4ad6-bee8-0c2c998a5359"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--1595bce7-45fc-4fcf-b5b9-5b0d3652be7c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-03T13:41:50.000Z",
"modified": "2024-07-03T13:41:50.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "app-luxtrust.com",
"category": "Network activity",
"to_ids": true,
"uuid": "244f2fd6-7887-4477-af9a-db1de93f7b6a"
},
{
"type": "ip-dst",
"object_relation": "ip",
"value": "3.64.63.56",
"category": "Network activity",
"to_ids": true,
"uuid": "7220941e-83f3-40dd-9ce9-f20ee1a164c9"
},
{
"type": "url",
"object_relation": "url",
"value": "https://app-luxtrust.com/LUXTRUST/",
"category": "Network activity",
"to_ids": true,
"uuid": "83a133d0-f36d-465d-8b26-38d3787ec06e"
},
{
"type": "text",
"object_relation": "online",
"value": "Yes",
"category": "Other",
"uuid": "a3464c2d-0b1d-4a18-80eb-34d9739d0fa3"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--30d1211f-ba79-4f74-a837-bc4d9dde7fea",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-05T09:21:22.000Z",
"modified": "2024-07-05T09:21:22.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "payconiq-blocage.com",
"category": "Network activity",
"to_ids": true,
"uuid": "bb35c0c6-1403-432a-a76e-93b7eaaeaa2f"
},
{
"type": "ip-dst",
"object_relation": "ip",
"value": "50.112.61.79",
"category": "Network activity",
"to_ids": true,
"uuid": "03cf7282-27e0-4783-8f6a-06587b1c11fd"
},
{
"type": "url",
"object_relation": "url",
"value": "http://payconiq-blocage.com/",
"category": "Network activity",
"to_ids": true,
"uuid": "5908cad3-da33-4499-a4b4-6051cec9a409"
},
{
"type": "text",
"object_relation": "online",
"value": "Yes",
"category": "Other",
"uuid": "f52c0e77-429b-4adb-ab1e-fc7a7aacc17e"
},
{
"type": "hostname",
"object_relation": "hostname",
"value": "payconiq-suspension.net",
"category": "Network activity",
"to_ids": true,
"uuid": "690ae80c-10ab-466f-8e8a-6cc2450bd6df"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--02622aac-7234-4c48-8c4d-d41687a14202",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-05T09:25:18.000Z",
"modified": "2024-07-05T09:25:18.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "update-lu.com",
"category": "Network activity",
"to_ids": true,
"uuid": "f1cad9aa-527b-48e2-b959-457dd6a5abe3"
},
{
"type": "ip-dst",
"object_relation": "ip",
"value": "13.60.60.38",
"category": "Network activity",
"to_ids": true,
"uuid": "7a3b89a8-157e-48c2-a685-cbd95b5d52f8"
},
{
"type": "url",
"object_relation": "url",
"value": "http://update-lu.com",
"category": "Network activity",
"to_ids": true,
"uuid": "2becb214-19dc-49c0-95eb-5f98a92c6d73"
},
{
"type": "text",
"object_relation": "online",
"value": "Yes",
"category": "Other",
"uuid": "8bd39927-a6aa-4347-af73-1796906da520"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--9453caf0-a816-4eb3-9579-f2de03a020fc",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-10T11:21:04.000Z",
"modified": "2024-07-10T11:21:04.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "luxtrust-support.com",
"category": "Network activity",
"to_ids": true,
"uuid": "68a2bff7-3d8d-4730-9c28-fec8b33102ec"
},
{
"type": "ip-dst",
"object_relation": "ip",
"value": "13.60.60.3",
"category": "Network activity",
"to_ids": true,
"uuid": "8bf0877e-2a7a-4a04-8846-3d7a705aee9b"
},
{
"type": "url",
"object_relation": "url",
"value": "https://luxtrust-support.com/Luxtrust/",
"category": "Network activity",
"to_ids": true,
"uuid": "7bd9d6f4-5cc5-4bca-826d-d3d3c0e4e96d"
},
{
"type": "text",
"object_relation": "online",
"value": "Yes",
"category": "Other",
"uuid": "cb1033a2-c3de-40cf-a9a4-fab938ffb2a0"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--e94bb880-052a-4193-b1e1-869d83527467",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2024-07-15T13:20:35.000Z",
"modified": "2024-07-15T13:20:35.000Z",
"labels": [
"misp:name=\"phishing\"",
"misp:meta-category=\"network\""
],
"x_misp_attributes": [
{
"type": "hostname",
"object_relation": "hostname",
"value": "luxtrust-support.com",
"category": "Network activity",
"to_ids": true,
"uuid": "8e53ecf4-9723-42c7-85f5-2f388fb3015a"
},
{
"type": "ip-dst",
"object_relation": "ip",
"value": "3.79.3.191",
"category": "Network activity",
"to_ids": true,
"uuid": "7a99b4f1-a80a-4f06-95a0-8d7b8d9f8c0d"
},
{
"type": "url",
"object_relation": "url",
"value": "https://luxtrust-support.com/Luxtrust/",
"category": "Network activity",
"to_ids": true,
"uuid": "570a1e10-a69c-4d9d-bf68-6496d1b82596"
},
{
"type": "text",
"object_relation": "online",
"value": "Yes",
"category": "Other",
"uuid": "6c631d97-0550-4819-9c39-d20cb31e3529"
},
{
"type": "text",
"object_relation": "verified",
"value": "Yes",
"category": "Other",
"uuid": "346a544d-8dbb-40f6-bf45-33d93eb4b6e0"
}
],
"x_misp_meta_category": "network",
"x_misp_name": "phishing"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--1148fb97-ad12-4fa9-8d7f-a9ecf704c1de",
"created": "2023-12-19T09:09:51.000Z",
"modified": "2023-12-19T09:09:51.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--0cbb8cdd-d630-4e20-8a0f-141d8e49a852",
"target_ref": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--d00dc746-89d9-415d-80dc-408331d92c86",
"created": "2023-12-19T09:10:08.000Z",
"modified": "2023-12-19T09:10:08.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--a10e462b-cffa-41bb-a9f2-a8bd297e06c2",
"target_ref": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--19a8b43f-904e-4c5b-84b8-af9ce83d47bb",
"created": "2023-12-19T09:13:07.000Z",
"modified": "2023-12-19T09:13:07.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--c6b7db3a-2494-4a30-98d3-367f1c41006c",
"target_ref": "x-misp-object--87640280-6595-43e7-b4bd-7f0bcba060cc"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--05bfc8d6-2999-4fc1-b42d-8bf74d22c943",
"created": "2023-12-19T09:13:19.000Z",
"modified": "2023-12-19T09:13:19.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--9da052e3-54b7-46c6-ba8e-6967d191c464",
"target_ref": "x-misp-object--87640280-6595-43e7-b4bd-7f0bcba060cc"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--fedb37ad-a7b8-45aa-8b65-d162d114d039",
"created": "2023-12-19T09:10:39.000Z",
"modified": "2023-12-19T09:10:39.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--d7c78ba7-0786-4aed-8fe4-c75fafefc308",
"target_ref": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--3c24e1b1-94fc-446f-b9a1-e1de1e5744be",
"created": "2023-12-19T09:12:03.000Z",
"modified": "2023-12-19T09:12:03.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--4e776373-54e8-43f5-9c7f-cab16b363230",
"target_ref": "x-misp-object--e3ae2059-3cfc-4bc4-98b7-c9f511055b7f"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--37ab27ab-e617-4e00-94ae-85b33ee5568f",
"created": "2023-12-19T09:13:32.000Z",
"modified": "2023-12-19T09:13:32.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--a62e8c29-d5fd-4efd-ad1e-7c07491ac3c4",
"target_ref": "x-misp-object--87640280-6595-43e7-b4bd-7f0bcba060cc"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--7ff5a78e-4ca4-4ec4-a2c3-1f7034f975a3",
"created": "2023-12-19T09:10:27.000Z",
"modified": "2023-12-19T09:10:27.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--26cc8401-561c-400c-8354-143e9118a5ed",
"target_ref": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--746a2f55-130c-4944-a79f-e7a8628f0c96",
"created": "2023-12-19T09:11:20.000Z",
"modified": "2023-12-19T09:11:20.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--75d8e3c4-c399-4a27-8dff-f0618a0177b0",
"target_ref": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--52ee1a53-178c-40f1-bc10-a19bc00d76c2",
"created": "2023-12-19T09:11:33.000Z",
"modified": "2023-12-19T09:11:33.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--f8e18655-d771-45c8-af2c-cecf2fee6a9d",
"target_ref": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--63a3a4dc-e136-4b92-9996-543d466c33a0",
"created": "2023-12-19T09:11:48.000Z",
"modified": "2023-12-19T09:11:48.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--e3ae2059-3cfc-4bc4-98b7-c9f511055b7f",
"target_ref": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--b63e7186-74e4-43b5-a546-513924fb42d0",
"created": "2023-12-19T09:11:06.000Z",
"modified": "2023-12-19T09:11:06.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--3a04a344-f245-4565-8880-ee7da8f55886",
"target_ref": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--7f664068-e634-4ce5-85f0-7dd51fbe5fe7",
"created": "2023-12-19T09:12:18.000Z",
"modified": "2023-12-19T09:12:18.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--87640280-6595-43e7-b4bd-7f0bcba060cc",
"target_ref": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--fb8251e8-5d12-456d-8e7d-a9a60417bd01",
"created": "2023-12-19T09:12:37.000Z",
"modified": "2023-12-19T09:12:37.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--d2f3711c-fc78-4463-b9f9-d3e69711f124",
"target_ref": "indicator--16938dd2-96b7-481e-a446-347ffddfd7b3"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--628bf8c8-588e-4b45-b7a3-274ce1180227",
"created": "2023-12-19T09:12:49.000Z",
"modified": "2023-12-19T09:12:49.000Z",
"relationship_type": "hosted-by",
"source_ref": "x-misp-object--78a4958a-bae2-409b-8a45-5f96709691a6",
"target_ref": "x-misp-object--87640280-6595-43e7-b4bd-7f0bcba060cc"
},
{
"type": "marking-definition",
"spec_version": "2.1",
"id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",
"created": "2017-01-20T00:00:00.000Z",
"definition_type": "tlp",
"name": "TLP:WHITE",
"definition": {
"tlp": "white"
}
}
]
}