adulau/misp-circl-feed
1
0
Fork 0
Code Issues 1 Pull requests Projects 1 Releases Packages Wiki Activity Actions
misp-circl-feed/feeds/circl/stix-2.1/55473cb9-db8c-416e-8b3c-ce99950d210b.json

1897 lines
No EOL
74 KiB
JSON
Raw Blame History

{
"type": "bundle",
"id": "bundle--55473cb9-db8c-416e-8b3c-ce99950d210b",
"objects": [
{
"type": "identity",
"spec_version": "2.1",
"id": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:47.000Z",
"modified": "2015-05-04T09:36:47.000Z",
"name": "CthulhuSPRL.be",
"identity_class": "organization"
},
{
"type": "report",
"spec_version": "2.1",
"id": "report--55473cb9-db8c-416e-8b3c-ce99950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:47.000Z",
"modified": "2015-05-04T09:36:47.000Z",
"name": "OSINT Introducing HATs: Highly Annoying Threats by BlueCoat",
"published": "2015-05-04T12:35:00Z",
"object_refs": [
"observed-data--55473cc9-3c18-4689-9caa-ce99950d210b",
"url--55473cc9-3c18-4689-9caa-ce99950d210b",
"indicator--55473d60-9b90-434a-9f5b-4bb4950d210b",
"indicator--55473d60-0ea4-4a50-904c-4029950d210b",
"indicator--55473d60-27b0-44c4-a179-45f3950d210b",
"indicator--55473d60-9b30-481b-912b-4fd7950d210b",
"indicator--55473d60-fefc-41de-8f56-4632950d210b",
"indicator--55473d60-6420-40da-901f-457c950d210b",
"indicator--55473d60-700c-4b19-8df6-4551950d210b",
"indicator--55473d61-a554-41e8-b757-46d9950d210b",
"indicator--55473d61-754c-421f-b917-45b7950d210b",
"indicator--55473d61-df98-473a-822d-4bde950d210b",
"indicator--55473d61-7db4-4916-877a-4819950d210b",
"indicator--55473d7e-4a90-4082-a4cf-dd36950d210b",
"indicator--55473d7f-ace4-4412-b26d-dd36950d210b",
"indicator--55473d7f-ff38-493b-9715-dd36950d210b",
"indicator--55473d7f-9200-4caa-bc64-dd36950d210b",
"indicator--55473d7f-3c14-4c17-a923-dd36950d210b",
"indicator--55473d7f-bc5c-4314-b5d4-dd36950d210b",
"indicator--55473d7f-999c-4c54-8485-dd36950d210b",
"indicator--55473d7f-bb44-42e8-af72-dd36950d210b",
"indicator--55473d7f-c764-41d4-b66d-dd36950d210b",
"indicator--55473d80-81ac-41e3-a08c-dd36950d210b",
"indicator--55473d80-336c-4458-9aa2-dd36950d210b",
"indicator--55473d80-a664-4b2c-be64-dd36950d210b",
"indicator--55473d80-6e04-453d-b6a0-dd36950d210b",
"indicator--55473d80-b4bc-48f0-a85c-dd36950d210b",
"indicator--55473d80-6534-4464-b86f-dd36950d210b",
"indicator--55473d80-d484-4e7b-bfdd-dd36950d210b",
"indicator--55473d80-ec08-4b5d-b373-dd36950d210b",
"indicator--55473d81-1a58-4d26-8dbb-dd36950d210b",
"indicator--55473d81-31c4-4ecd-af1c-dd36950d210b",
"indicator--55473d81-8eec-453e-b7e9-dd36950d210b",
"indicator--55473d81-4ce0-48d1-923d-dd36950d210b",
"indicator--55473d81-56cc-4818-b25e-dd36950d210b",
"indicator--55473d81-1e7c-4a4d-9500-dd36950d210b",
"indicator--55473d81-021c-49d9-8767-dd36950d210b",
"indicator--55473d81-6a90-4dc6-a0cc-dd36950d210b",
"indicator--55473d82-2fc4-429b-9b8d-dd36950d210b",
"indicator--55473d82-f6c8-41d0-8d42-dd36950d210b",
"indicator--55473d82-ccc0-49d8-8752-dd36950d210b",
"indicator--55473d82-884c-48b3-822e-dd36950d210b",
"indicator--55473d82-4d5c-4549-b163-dd36950d210b",
"indicator--55473d82-9c50-4604-a48f-dd36950d210b",
"indicator--55473d82-803c-4c17-a792-dd36950d210b",
"indicator--55473d82-dfe4-4f7c-844d-dd36950d210b",
"indicator--55473d83-5ef4-44db-b489-dd36950d210b",
"indicator--55473d83-7db0-4214-87fe-dd36950d210b",
"indicator--55473d83-1638-4d92-8c4e-dd36950d210b",
"indicator--55473d83-3a64-4e79-b5b0-dd36950d210b",
"indicator--55473d83-0a5c-4d56-9917-dd36950d210b",
"indicator--55473d83-2138-4652-a8a3-dd36950d210b",
"indicator--55473d83-b29c-4020-abe5-dd36950d210b",
"indicator--55473d83-8230-480e-82b8-dd36950d210b",
"indicator--55473d83-b978-4666-9d1b-dd36950d210b",
"indicator--55473d84-7038-48f9-9ed8-dd36950d210b",
"indicator--55473d84-ce50-4c39-9b52-dd36950d210b",
"indicator--55473d84-792c-474f-895d-dd36950d210b",
"indicator--55473d84-6f6c-4620-9fc9-dd36950d210b",
"indicator--55473d84-1a48-4527-b82e-dd36950d210b",
"indicator--55473d84-9b5c-4771-8525-dd36950d210b",
"indicator--55473d84-f5dc-49eb-9481-dd36950d210b",
"indicator--55473d84-7688-4790-a291-dd36950d210b",
"indicator--55473d85-2d70-4d9c-ad30-dd36950d210b",
"indicator--55473d85-63d0-4e4b-9386-dd36950d210b",
"indicator--55473d85-29ec-4ea7-807a-dd36950d210b",
"indicator--55473d85-2a78-4d73-89b1-dd36950d210b",
"indicator--55473d85-bd38-4448-b954-dd36950d210b",
"indicator--55473d85-55f0-4094-8505-dd36950d210b",
"indicator--55473d85-3b68-4785-a676-dd36950d210b",
"indicator--55473d85-471c-43c8-bf34-dd36950d210b",
"indicator--55473d86-2b24-4ad6-aa6d-dd36950d210b",
"indicator--55473daf-c950-4046-b938-c20d950d210b",
"indicator--55473daf-6990-41b0-b0e1-c20d950d210b",
"indicator--55473daf-9848-47bf-bd3d-c20d950d210b"
],
"labels": [
"Threat-Report",
"misp:tool=\"MISP-STIX-Converter\"",
"type:OSINT"
],
"object_marking_refs": [
"marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"
]
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--55473cc9-3c18-4689-9caa-ce99950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:32:57.000Z",
"modified": "2015-05-04T09:32:57.000Z",
"first_observed": "2015-05-04T09:32:57Z",
"last_observed": "2015-05-04T09:32:57Z",
"number_observed": 1,
"object_refs": [
"url--55473cc9-3c18-4689-9caa-ce99950d210b"
],
"labels": [
"misp:type=\"link\"",
"misp:category=\"External analysis\""
]
},
{
"type": "url",
"spec_version": "2.1",
"id": "url--55473cc9-3c18-4689-9caa-ce99950d210b",
"value": "https://www.bluecoat.com/security-blog/2015-05-01/introducing-hats-highly-annoying-threats"
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d60-9b90-434a-9f5b-4bb4950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:28.000Z",
"modified": "2015-05-04T09:35:28.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'getseolist.eu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d60-0ea4-4a50-904c-4029950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:28.000Z",
"modified": "2015-05-04T09:35:28.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'bestseolist.eu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d60-27b0-44c4-a179-45f3950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:28.000Z",
"modified": "2015-05-04T09:35:28.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'justfastmap.eu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d60-9b30-481b-912b-4fd7950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:28.000Z",
"modified": "2015-05-04T09:35:28.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'coseolist.eu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d60-fefc-41de-8f56-4632950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:28.000Z",
"modified": "2015-05-04T09:35:28.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'afastmap.ws']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d60-6420-40da-901f-457c950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:28.000Z",
"modified": "2015-05-04T09:35:28.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'thefastmap.ws']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d60-700c-4b19-8df6-4551950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:28.000Z",
"modified": "2015-05-04T09:35:28.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'nuseolist.eu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d61-a554-41e8-b757-46d9950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:29.000Z",
"modified": "2015-05-04T09:35:29.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'topseolist.eu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d61-754c-421f-b917-45b7950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:29.000Z",
"modified": "2015-05-04T09:35:29.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'meseolist.eu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d61-df98-473a-822d-4bde950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:29.000Z",
"modified": "2015-05-04T09:35:29.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'metafastmap.eu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d61-7db4-4916-877a-4819950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:29.000Z",
"modified": "2015-05-04T09:35:29.000Z",
"description": "Fiesta Exploit Kit",
"pattern": "[domain-name:value = 'eseolist.eu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d7e-4a90-4082-a4cf-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:58.000Z",
"modified": "2015-05-04T09:35:58.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'rotonexy.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:58Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d7f-ace4-4412-b26d-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:59.000Z",
"modified": "2015-05-04T09:35:59.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'symonash.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d7f-ff38-493b-9715-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:59.000Z",
"modified": "2015-05-04T09:35:59.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'atinenom.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d7f-9200-4caa-bc64-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:59.000Z",
"modified": "2015-05-04T09:35:59.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'naraiarm.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d7f-3c14-4c17-a923-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:59.000Z",
"modified": "2015-05-04T09:35:59.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'einseeld.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d7f-bc5c-4314-b5d4-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:59.000Z",
"modified": "2015-05-04T09:35:59.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'holamecs.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d7f-999c-4c54-8485-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:59.000Z",
"modified": "2015-05-04T09:35:59.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'numerarm.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d7f-bb44-42e8-af72-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:59.000Z",
"modified": "2015-05-04T09:35:59.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'hrortict.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d7f-c764-41d4-b66d-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:35:59.000Z",
"modified": "2015-05-04T09:35:59.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'indusish.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:35:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d80-81ac-41e3-a08c-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:00.000Z",
"modified": "2015-05-04T09:36:00.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'jadilips.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:00Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d80-336c-4458-9aa2-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:00.000Z",
"modified": "2015-05-04T09:36:00.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'fogelicy.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:00Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d80-a664-4b2c-be64-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:00.000Z",
"modified": "2015-05-04T09:36:00.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'khundalt.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:00Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d80-6e04-453d-b6a0-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:00.000Z",
"modified": "2015-05-04T09:36:00.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'spoeract.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:00Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d80-b4bc-48f0-a85c-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:00.000Z",
"modified": "2015-05-04T09:36:00.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'kroentro.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:00Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d80-6534-4464-b86f-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:00.000Z",
"modified": "2015-05-04T09:36:00.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'xerhardy.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:00Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d80-d484-4e7b-bfdd-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:00.000Z",
"modified": "2015-05-04T09:36:00.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'sixperth.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:00Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d80-ec08-4b5d-b373-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:00.000Z",
"modified": "2015-05-04T09:36:00.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'pilshorm.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:00Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d81-1a58-4d26-8dbb-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:01.000Z",
"modified": "2015-05-04T09:36:01.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'omaidett.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:01Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d81-31c4-4ecd-af1c-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:01.000Z",
"modified": "2015-05-04T09:36:01.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'uglanarc.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:01Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d81-8eec-453e-b7e9-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:01.000Z",
"modified": "2015-05-04T09:36:01.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'sherymex.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:01Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d81-4ce0-48d1-923d-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:01.000Z",
"modified": "2015-05-04T09:36:01.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'nealychy.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:01Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d81-56cc-4818-b25e-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:01.000Z",
"modified": "2015-05-04T09:36:01.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'trobirks.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:01Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d81-1e7c-4a4d-9500-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:01.000Z",
"modified": "2015-05-04T09:36:01.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'sulecass.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:01Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d81-021c-49d9-8767-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:01.000Z",
"modified": "2015-05-04T09:36:01.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'malerror.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:01Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d81-6a90-4dc6-a0cc-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:01.000Z",
"modified": "2015-05-04T09:36:01.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'imetheonhe.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:01Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d82-2fc4-429b-9b8d-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:02.000Z",
"modified": "2015-05-04T09:36:02.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'sidowery.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d82-f6c8-41d0-8d42-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:02.000Z",
"modified": "2015-05-04T09:36:02.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'mooriarm.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d82-ccc0-49d8-8752-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:02.000Z",
"modified": "2015-05-04T09:36:02.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'risalerr.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d82-884c-48b3-822e-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:02.000Z",
"modified": "2015-05-04T09:36:02.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'pirrains.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d82-4d5c-4549-b163-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:02.000Z",
"modified": "2015-05-04T09:36:02.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'cerinays.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d82-9c50-4604-a48f-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:02.000Z",
"modified": "2015-05-04T09:36:02.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'malerror.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d82-803c-4c17-a792-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:02.000Z",
"modified": "2015-05-04T09:36:02.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'pioblern.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d82-dfe4-4f7c-844d-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:02.000Z",
"modified": "2015-05-04T09:36:02.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'ctelailt.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d83-5ef4-44db-b489-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:03.000Z",
"modified": "2015-05-04T09:36:03.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'blouneth.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d83-7db0-4214-87fe-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:03.000Z",
"modified": "2015-05-04T09:36:03.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'muskiert.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d83-1638-4d92-8c4e-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:03.000Z",
"modified": "2015-05-04T09:36:03.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'aflumery.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d83-3a64-4e79-b5b0-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:03.000Z",
"modified": "2015-05-04T09:36:03.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'zarbrend.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d83-0a5c-4d56-9917-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:03.000Z",
"modified": "2015-05-04T09:36:03.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'kroentro.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d83-2138-4652-a8a3-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:03.000Z",
"modified": "2015-05-04T09:36:03.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'otinaryl.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d83-b29c-4020-abe5-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:03.000Z",
"modified": "2015-05-04T09:36:03.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'mooriarm.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d83-8230-480e-82b8-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:03.000Z",
"modified": "2015-05-04T09:36:03.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'trobirks.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d83-b978-4666-9d1b-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:03.000Z",
"modified": "2015-05-04T09:36:03.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'pokensea.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d84-7038-48f9-9ed8-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:04.000Z",
"modified": "2015-05-04T09:36:04.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'gotedrap.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d84-ce50-4c39-9b52-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:04.000Z",
"modified": "2015-05-04T09:36:04.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'clolband.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d84-792c-474f-895d-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:04.000Z",
"modified": "2015-05-04T09:36:04.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'meditoll.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d84-6f6c-4620-9fc9-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:04.000Z",
"modified": "2015-05-04T09:36:04.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'psehaism.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d84-1a48-4527-b82e-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:04.000Z",
"modified": "2015-05-04T09:36:04.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'nonypeck.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d84-9b5c-4771-8525-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:04.000Z",
"modified": "2015-05-04T09:36:04.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'slulints.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d84-f5dc-49eb-9481-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:04.000Z",
"modified": "2015-05-04T09:36:04.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'potigole.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d84-7688-4790-a291-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:04.000Z",
"modified": "2015-05-04T09:36:04.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'mackeilt.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d85-2d70-4d9c-ad30-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:05.000Z",
"modified": "2015-05-04T09:36:05.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'molporic.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d85-63d0-4e4b-9386-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:05.000Z",
"modified": "2015-05-04T09:36:05.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'octaneft.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d85-29ec-4ea7-807a-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:05.000Z",
"modified": "2015-05-04T09:36:05.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'burdiacs.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d85-2a78-4d73-89b1-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:05.000Z",
"modified": "2015-05-04T09:36:05.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'unitturt.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d85-bd38-4448-b954-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:05.000Z",
"modified": "2015-05-04T09:36:05.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'pioblern.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d85-55f0-4094-8505-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:05.000Z",
"modified": "2015-05-04T09:36:05.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'omaidett.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d85-3b68-4785-a676-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:05.000Z",
"modified": "2015-05-04T09:36:05.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'nealychy.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d85-471c-43c8-bf34-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:05.000Z",
"modified": "2015-05-04T09:36:05.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'cleparcy.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473d86-2b24-4ad6-aa6d-dd36950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:06.000Z",
"modified": "2015-05-04T09:36:06.000Z",
"description": "BizCN",
"pattern": "[domain-name:value = 'furarryl.org']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473daf-c950-4046-b938-c20d950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:47.000Z",
"modified": "2015-05-04T09:36:47.000Z",
"description": "Nuclear Exploit Kit",
"pattern": "[domain-name:value = 'yellowfrance.info']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:47Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473daf-6990-41b0-b0e1-c20d950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:47.000Z",
"modified": "2015-05-04T09:36:47.000Z",
"description": "Nuclear Exploit Kit",
"pattern": "[domain-name:value = 'yellowfrance.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:47Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--55473daf-9848-47bf-bd3d-c20d950d210b",
"created_by_ref": "identity--55f6ea5f-fd34-43b8-ac1d-40cb950d210f",
"created": "2015-05-04T09:36:47.000Z",
"modified": "2015-05-04T09:36:47.000Z",
"description": "Nuclear Exploit Kit",
"pattern": "[domain-name:value = 'givemeaudi.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2015-05-04T09:36:47Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "marking-definition",
"spec_version": "2.1",
"id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",
"created": "2017-01-20T00:00:00.000Z",
"definition_type": "tlp",
"name": "TLP:WHITE",
"definition": {
"tlp": "white"
}
}
]
}
Reference in a new issue View git blame Copy permalink