misp-circl-feed/feeds/circl/misp/5a2677b2-78e4-4370-a96d-5f3b950d210f.json


			
				
				
					
						
						
						
							
							
							{"Event": {"info": "OSINT - SLocker Mobile Ransomware Starts Mimicking WannaCry", "Tag": [{"colour": "#004646", "exportable": true, "name": "type:OSINT"}, {"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#2c4f00", "exportable": true, "name": "malware_classification:malware-category=\"Ransomware\""}, {"colour": "#00223b", "exportable": true, "name": "osint:source-type=\"blog-post\""}, {"colour": "#001a40", "exportable": true, "name": "ms-caro-malware-full:malware-platform=\"AndroidOS\""}, {"colour": "#5f0077", "exportable": true, "name": "ms-caro-malware:malware-platform=\"AndroidOS\""}, {"colour": "#211c1c", "exportable": true, "name": "Android Malware"}, {"colour": "#0088cc", "exportable": true, "name": "misp-galaxy:android=\"SLocker\""}, {"colour": "#3b0020", "exportable": true, "name": "workflow:todo=\"expansion\""}], "publish_timestamp": "0", "timestamp": "1512984036", "Object": [{"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5a294296-5dd0-404e-9929-4ffa950d210f", "sharing_group_id": "0", "timestamp": "1512653462", "description": "File object describing a file with meta-information", "template_version": "6", "Attribute": [{"comment": "", "category": "Other", "uuid": "5a294296-8e8c-436d-9f33-48db950d210f", "timestamp": "1512653462", "to_ids": false, "value": "com.android.tencent.zdevs.bah", "disable_correlation": false, "object_relation": "text", "type": "text"}, {"comment": "", "category": "Payload delivery", "uuid": "5a294296-6058-4571-aef7-4df7950d210f", "timestamp": "1512653462", "to_ids": true, "value": "\u738b\u8005\u8363\u8000\u8f85\u52a9", "disable_correlation": false, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5a294296-4f18-4768-8e0d-4d0c950d210f", "timestamp": "1512653462", "to_ids": true, "value": "200d8f98c326fc65f3a11dc5ff1951051c12991cc0996273eeb9b71b27bc294d", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5a2942c0-0b20-4f4f-8018-4635950d210f", "sharing_group_id": "0", "timestamp": "1512653504", "description": "File object describing a file with meta-information", "template_version": "6", "Attribute": [{"comment": "", "category": "Other", "uuid": "5a2942c0-ecd0-4053-8ae7-4c3d950d210f", "timestamp": "1512653504", "to_ids": false, "value": "com.android.tencent.zdevs.bah", "disable_correlation": false, "object_relation": "text", "type": "text"}, {"comment": "", "category": "Payload delivery", "uuid": "5a2942c0-3768-4c02-9d29-456c950d210f", "timestamp": "1512653504", "to_ids": true, "value": "\u5343\u53d8\u8bed\u97f3", "disable_correlation": false, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5a2942c0-bcfc-4f22-a34c-48f9950d210f", "timestamp": "1512653504", "to_ids": true, "value": "2ffd539d462847bebcdff658a83f74ca7f039946bbc6c6247be2fc62dc0e4060", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5a2945a9-2ce4-48bd-916e-a1b1950d210f", "sharing_group_id": "0", "timestamp": "1512654249", "description": "File object describing a file with meta-information", "template_version": "6", "Attribute": [{"comment": "", "category": "Other", "uuid": "5a2945a9-11e4-427a-83dc-a1b1950d210f", "timestamp": "1512654249", "to_ids": false, "value": "com.android.tencent.zdevs.bah", "disable_correlation": false, "object_relation": "text", "type": "text"}, {"comment": "", "category": "Payload delivery", "uuid": "5a2945a9-f9c8-45d2-b347-a1b1950d210f", "timestamp": "1512654249", "to_ids": true, "value": "\u738b\u8005\u8363\u8000\u524d\u77bb\u7248", "disable_correlation": false, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5a2945a9-4464-484f-82a9-a1b1950d210f", "timestamp": "1512654249", "to_ids": true, "value": "36f40d5a11d886a2280c57859cd5f22de2d78c87dcdb52ea601089745eeee494", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5a29466c-15bc-4df0-85be-4a6b950d210f", "sharing_group_id": "0", "timestamp": "1512654444", "description": "File object describing a file with meta-information", "template_version": "6", "Attribute": [{"comment": "", "category": "Other", "uuid": "5a29466c-7630-4416-85ce-4a48950d210f", "timestamp": "1512654444", "to_ids": false, "value": "com.android.tencent.zdevs.bah", "disable_correlation": false, "object_relation": "text", "type": "text"}, {"comment": "", "category": "Payload delivery", "uuid": "5a29466c-cbf8-44a7-8c3d-40df950d210f", "timestamp": "1512654444", "to_ids": true, "value": "\u5343\u53d8\u8bed\u97f3\u79c0", "disable_correlation": false, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5a29466c-77e8-4f8c-9776-479b950d210f", "timestamp": "1512654444", "to_ids": true, "value": "c347e09b1489c5b8061828526f4ce778fda8ef7fb835255914eb3c9268a265bf", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}, {"comment": "", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "5a294691-da48-4d27-86b6-429a950d210f", "sharing_group_id": "0", "timestamp": "1512654481", "description": "File object describing a file with meta-information", "template_version": "7", "Attribute": [{"comment": "", "category": "Other", "uuid": "5a294692-9d04-44e5-a286-47da950d210f", "timestamp": "1512654482", "to_ids": false, "value": "com.android.tencent.zdevs.bah", "disable_correlation": false, "object_relation": "text", "type": "text"}, {"comment": "", "category": "Payload delivery", "uuid": "5a294692-5fa4-4736-9532-4b5f950d210f", "timestamp": "1512654482", "to_ids": true, "value": "\u4e3b\u6d41\u5f71\u89c6\u5927\u5168", "disable_correlation": false, "object_relation": "filename", "type": "filename"}, {"comment": "", "category": "Payload delivery", "uuid": "5a294692-16e0-4927-b471-4559950d210f", "timestamp": "1512654482", "to_ids": true, "value": "cb0a18bcc8a2c9a966d3f585771db8b2e627a7b4427a889191a93b3a1b261ba3", "disable_correlation": false, "object_relation": "sha256", "type": "sha256"}], "distribution": "5", "meta-category": "file", "name": "file"}], "analysis": "2", "Attribute": [{"comment": "", "category": "External analysis", "uuid": "5a2677d7-87c0-4ada-aacd-5f3b950d210f", "timestamp": "1512470495", "to_ids": false, "value": "http://blog.trendmicro.com/trendlabs-security-intelligence/slocker-mobile-ransomware-starts-mimicking-wannacry/", "Tag": [{"colour": "#00223b", "exportable": true, "name": "osint:source-type=\"blog-post\""}], "disable_correlation": false, "object_relation": null, "type": "link"}], "extends_uuid": "", "published": false, "date": "2017-07-05", "Orgc": {"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f", "name": "CIRCL"}, "threat_level_id": "3", "uuid": "5a2677b2-78e4-4370-a96d-5f3b950d210f"}}
						
						
					
				
				
					
						Reference in a new issue
					
					View git blame
					Copy permalink