adulau/misp-circl-feed
1
0
Fork 0
Code Issues 1 Pull requests Projects 1 Releases Packages Wiki Activity Actions
misp-circl-feed/feeds/circl/stix-2.1/5cbc6f5e-a058-4a70-ba80-4b8902de0b81.json

3062 lines
No EOL
122 KiB
JSON
Raw Blame History

{
"type": "bundle",
"id": "bundle--5cbc6f5e-a058-4a70-ba80-4b8902de0b81",
"objects": [
{
"type": "identity",
"spec_version": "2.1",
"id": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:33:54.000Z",
"modified": "2019-04-21T13:33:54.000Z",
"name": "CIRCL",
"identity_class": "organization"
},
{
"type": "report",
"spec_version": "2.1",
"id": "report--5cbc6f5e-a058-4a70-ba80-4b8902de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:33:54.000Z",
"modified": "2019-04-21T13:33:54.000Z",
"name": "OSINT - 97 domains phishing spread over 10 IP's",
"published": "2019-04-21T13:38:40Z",
"object_refs": [
"indicator--5cbc6f7a-b610-4aea-a80f-409c02de0b81",
"indicator--5cbc6f7a-cc70-4e52-8901-4e1802de0b81",
"indicator--5cbc6f7a-4958-4c2f-9a7c-4dc402de0b81",
"indicator--5cbc6f7a-17e4-4f81-ac9d-495602de0b81",
"indicator--5cbc6f7a-bce8-4bc5-9ae1-4d9502de0b81",
"indicator--5cbc6f7a-b50c-435e-ba95-438d02de0b81",
"indicator--5cbc6f7a-d314-4922-b365-44da02de0b81",
"indicator--5cbc6f7a-60f8-4142-92bf-4a4d02de0b81",
"indicator--5cbc6f7a-0f48-47d2-b7ec-489602de0b81",
"indicator--5cbc6f7a-f31c-4354-879b-430a02de0b81",
"indicator--5cbc6f7a-e1a0-4f46-9bd0-4c6902de0b81",
"indicator--5cbc6f7a-6c88-4e68-b7fd-46f302de0b81",
"indicator--5cbc6f7a-a670-49d1-83c6-49eb02de0b81",
"indicator--5cbc6f7a-3f04-461f-89be-43b302de0b81",
"indicator--5cbc6f7a-dab8-4071-aabb-4f4802de0b81",
"indicator--5cbc6f7a-b938-4df0-ac34-4b8302de0b81",
"indicator--5cbc6f7b-4af8-491f-9c52-479b02de0b81",
"indicator--5cbc6f7b-bcfc-43d8-ba4a-4c2302de0b81",
"indicator--5cbc6f7b-1aa8-40e2-ae6d-42d602de0b81",
"indicator--5cbc6f7b-b05c-4369-a548-4eaa02de0b81",
"indicator--5cbc6f7b-6254-4369-a7da-4ebe02de0b81",
"indicator--5cbc6f7b-7d84-4515-aa19-4fb202de0b81",
"indicator--5cbc6f7b-cb7c-406a-86f6-425b02de0b81",
"indicator--5cbc6f7b-8db8-46c6-b2b7-46f302de0b81",
"indicator--5cbc6f7b-ec34-4937-aaa2-470802de0b81",
"indicator--5cbc6f7b-a5b4-450c-9908-42f402de0b81",
"indicator--5cbc6f7b-1fec-478d-9052-40bb02de0b81",
"indicator--5cbc6f7b-9128-4f6b-8b43-40bb02de0b81",
"indicator--5cbc6f7b-05e8-4f83-84d4-4f8c02de0b81",
"indicator--5cbc6f7b-cddc-490c-8d43-487402de0b81",
"indicator--5cbc6f7b-bed4-4ec9-9e83-40f702de0b81",
"indicator--5cbc6f7b-40b8-4dd6-b0f3-4cbd02de0b81",
"indicator--5cbc6f7b-f2a8-42ef-a6ac-4f0202de0b81",
"indicator--5cbc6f7b-ad94-4677-bd76-44c202de0b81",
"indicator--5cbc6f7b-0cb4-4ca2-86d6-41b802de0b81",
"indicator--5cbc6f7b-d54c-4209-9bc2-405702de0b81",
"indicator--5cbc6f7b-6f28-447a-949c-472202de0b81",
"indicator--5cbc6f7b-28a8-485e-a484-443902de0b81",
"indicator--5cbc6f7b-fe48-4cd4-bba2-4f3b02de0b81",
"indicator--5cbc6f7b-f008-475c-8d1a-48a302de0b81",
"indicator--5cbc6f7b-e1c8-4802-91e1-40aa02de0b81",
"indicator--5cbc6f7b-b18c-4b3a-bc64-48fc02de0b81",
"indicator--5cbc6f7b-bbe8-41eb-af69-4f7a02de0b81",
"indicator--5cbc6f7b-3340-4cc5-bea4-443802de0b81",
"indicator--5cbc6f7b-6704-4176-a932-4b4f02de0b81",
"indicator--5cbc6f7b-c648-457e-a897-457302de0b81",
"indicator--5cbc6f7b-2aa0-48f1-acb7-4e3c02de0b81",
"indicator--5cbc6f7b-e358-432e-adcb-42be02de0b81",
"indicator--5cbc6f7b-4940-4732-af01-40e202de0b81",
"indicator--5cbc6f7b-a94c-4a97-913a-498e02de0b81",
"indicator--5cbc6f7b-52dc-4c40-becd-413f02de0b81",
"indicator--5cbc6f7b-b74c-4f5b-b6fc-4a4002de0b81",
"indicator--5cbc6f7b-2b88-4fe0-9800-4a4102de0b81",
"indicator--5cbc6f7b-cd14-4758-8a70-4d8002de0b81",
"indicator--5cbc6f7b-d834-4daa-9f43-47ef02de0b81",
"indicator--5cbc6f7b-79e4-4759-860e-409902de0b81",
"indicator--5cbc6f7b-f0f8-45a5-b754-464d02de0b81",
"indicator--5cbc6f7b-4da0-4664-9d5e-49ec02de0b81",
"indicator--5cbc6f7b-b3cc-4a75-b225-4c5a02de0b81",
"indicator--5cbc6f7b-70c0-4561-8867-4ef102de0b81",
"indicator--5cbc6f7b-892c-4463-9f95-475002de0b81",
"indicator--5cbc6f7b-aa70-4386-b77e-48d402de0b81",
"indicator--5cbc6f7b-9a50-42d2-b312-4d3602de0b81",
"indicator--5cbc6f7b-064c-4e79-b973-436302de0b81",
"indicator--5cbc6f7b-195c-4fa4-ad34-48ee02de0b81",
"indicator--5cbc6f7b-dfdc-4208-ae73-41d102de0b81",
"indicator--5cbc6f7b-dc68-4d4a-85a1-431d02de0b81",
"indicator--5cbc6f7b-59a0-4729-abbe-4e2f02de0b81",
"indicator--5cbc6f7b-3a4c-4ad3-a9c7-469002de0b81",
"indicator--5cbc6f7b-243c-4f09-a8a8-4de002de0b81",
"indicator--5cbc6f7b-7628-4b15-8bae-4d2502de0b81",
"indicator--5cbc6f7b-5a34-4bf1-b2e3-4f5202de0b81",
"indicator--5cbc6f7b-b810-40ae-ac49-48ad02de0b81",
"indicator--5cbc6f7b-8e14-4aa7-b315-4bd702de0b81",
"indicator--5cbc6f7b-1428-420d-ab9f-418002de0b81",
"indicator--5cbc6f7b-845c-4104-9aa9-4f7402de0b81",
"indicator--5cbc6f7b-4010-4c60-90a8-435002de0b81",
"indicator--5cbc6f7b-a7cc-46f7-8c9f-420902de0b81",
"indicator--5cbc6f7b-3ea8-4024-b59a-48a202de0b81",
"indicator--5cbc6f7b-36f4-42fa-b4ba-4ede02de0b81",
"indicator--5cbc6f7b-dfd0-46b8-a67a-46f702de0b81",
"indicator--5cbc6f7b-28e0-4447-8a10-4c1c02de0b81",
"indicator--5cbc6f7b-a020-4bec-ab80-49e202de0b81",
"indicator--5cbc6f7b-28c8-4bc6-b9d6-47f002de0b81",
"indicator--5cbc6f7b-dd30-469d-8088-4fe002de0b81",
"indicator--5cbc6f7b-c65c-4517-a448-464502de0b81",
"indicator--5cbc6f7c-b820-4596-ae0a-4e8a02de0b81",
"indicator--5cbc6f7c-eafc-4bfe-95c5-478702de0b81",
"indicator--5cbc6f7c-5990-458c-887f-405002de0b81",
"indicator--5cbc6f7c-8158-4194-85fd-47a902de0b81",
"indicator--5cbc6f7c-c760-42cd-b5f5-418802de0b81",
"indicator--5cbc6f7c-763c-4d30-b92d-4d5802de0b81",
"indicator--5cbc6f7c-fc80-496c-85a3-48c702de0b81",
"indicator--5cbc6f7c-b6f8-4eb6-bb04-4c3102de0b81",
"indicator--5cbc6f7c-8dc8-4381-81b7-43cf02de0b81",
"indicator--5cbc6f7c-fe88-4d1e-85b5-48f802de0b81",
"indicator--5cbc6f7c-8eac-40c4-a890-407f02de0b81",
"indicator--5cbc6f7c-164c-4818-90d0-422d02de0b81",
"indicator--5cbc6f7c-eec8-419e-85be-4d5202de0b81",
"indicator--5cbc6f7c-6944-4b1a-860a-43eb02de0b81",
"indicator--5cbc6f7c-492c-4544-9b8c-4ea602de0b81",
"indicator--5cbc6f7c-8548-4c8a-b6f2-4df202de0b81",
"indicator--5cbc6f7c-d550-4b0a-91d8-401102de0b81",
"indicator--5cbc6f7c-4880-4906-a91d-4b3802de0b81",
"indicator--5cbc6f7c-507c-4ceb-a907-4b0502de0b81",
"indicator--5cbc6f7c-2424-40e3-a62b-4a5002de0b81",
"indicator--5cbc6f7c-f020-455c-8867-4bc702de0b81",
"indicator--5cbc7071-59d4-4129-801e-42e202de0b81",
"observed-data--5cbc70f1-d340-4e04-b842-4496e387cbd9",
"network-traffic--5cbc70f1-d340-4e04-b842-4496e387cbd9",
"ipv4-addr--5cbc70f1-d340-4e04-b842-4496e387cbd9",
"observed-data--5cbc70f2-dc88-4f8b-b4e0-49b9e387cbd9",
"network-traffic--5cbc70f2-dc88-4f8b-b4e0-49b9e387cbd9",
"ipv4-addr--5cbc70f2-dc88-4f8b-b4e0-49b9e387cbd9",
"observed-data--5cbc70f2-5a94-4291-8c53-40dae387cbd9",
"network-traffic--5cbc70f2-5a94-4291-8c53-40dae387cbd9",
"ipv4-addr--5cbc70f2-5a94-4291-8c53-40dae387cbd9",
"observed-data--5cbc70f3-e504-4646-8883-4f5be387cbd9",
"network-traffic--5cbc70f3-e504-4646-8883-4f5be387cbd9",
"ipv4-addr--5cbc70f3-e504-4646-8883-4f5be387cbd9",
"observed-data--5cbc70f3-2c20-4fb5-b8ce-468fe387cbd9",
"network-traffic--5cbc70f3-2c20-4fb5-b8ce-468fe387cbd9",
"ipv4-addr--5cbc70f3-2c20-4fb5-b8ce-468fe387cbd9",
"observed-data--5cbc70f3-0990-4058-b0df-4517e387cbd9",
"network-traffic--5cbc70f3-0990-4058-b0df-4517e387cbd9",
"ipv4-addr--5cbc70f3-0990-4058-b0df-4517e387cbd9",
"observed-data--5cbc70f4-d8e0-4a10-8fc7-4de6e387cbd9",
"network-traffic--5cbc70f4-d8e0-4a10-8fc7-4de6e387cbd9",
"ipv4-addr--5cbc70f4-d8e0-4a10-8fc7-4de6e387cbd9",
"observed-data--5cbc70f4-ff38-4c71-8aaf-4f4be387cbd9",
"network-traffic--5cbc70f4-ff38-4c71-8aaf-4f4be387cbd9",
"ipv4-addr--5cbc70f4-ff38-4c71-8aaf-4f4be387cbd9",
"observed-data--5cbc70f6-b000-4cfa-b57a-466ae387cbd9",
"network-traffic--5cbc70f6-b000-4cfa-b57a-466ae387cbd9",
"ipv4-addr--5cbc70f6-b000-4cfa-b57a-466ae387cbd9",
"observed-data--5cbc70f7-b330-437f-bb85-4ab8e387cbd9",
"network-traffic--5cbc70f7-b330-437f-bb85-4ab8e387cbd9",
"ipv4-addr--5cbc70f7-b330-437f-bb85-4ab8e387cbd9",
"x-misp-object--5cbc6fec-649c-4d05-aaee-4b6202de0b81"
],
"labels": [
"Threat-Report",
"misp:tool=\"MISP-STIX-Converter\"",
"type:OSINT",
"osint:certainty=\"50\"",
"adversary:infrastructure-status=\"compromised\""
],
"object_marking_refs": [
"marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-b610-4aea-a80f-409c02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v4.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-cc70-4e52-8901-4e1802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '13.114.203.210']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-4958-4c2f-9a7c-4dc402de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v1.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-17e4-4f81-ac9d-495602de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v1.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-bce8-4bc5-9ae1-4d9502de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v6.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-b50c-435e-ba95-438d02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v8.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-d314-4922-b365-44da02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '13.78.36.109']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-60f8-4142-92bf-4a4d02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v7.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-0f48-47d2-b7ec-489602de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v7.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-f31c-4354-879b-430a02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v7.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-e1a0-4f46-9bd0-4c6902de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v12.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-6c88-4e68-b7fd-46f302de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v8.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-a670-49d1-83c6-49eb02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v8.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-3f04-461f-89be-43b302de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v9.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-dab8-4071-aabb-4f4802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[domain-name:value = 'service-verify-v14.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7a-b938-4df0-ac34-4b8302de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:18.000Z",
"modified": "2019-04-21T13:26:18.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '192.241.152.20']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-4af8-491f-9c52-479b02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v13.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-bcfc-43d8-ba4a-4c2302de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v13.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-1aa8-40e2-ae6d-42d602de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v13.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-b05c-4369-a548-4eaa02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v14.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-6254-4369-a7da-4ebe02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v13.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-7d84-4515-aa19-4fb202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v14.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-cb7c-406a-86f6-425b02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v14.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-8db8-46c6-b2b7-46f302de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v31.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-ec34-4937-aaa2-470802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '52.57.118.133']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-a5b4-450c-9908-42f402de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v26.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-1fec-478d-9052-40bb02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '13.94.203.192']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-9128-4f6b-8b43-40bb02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v22.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-05e8-4f83-84d4-4f8c02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '104.211.152.15']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-cddc-490c-8d43-487402de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v21.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-bed4-4ec9-9e83-40f702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v30.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-40b8-4dd6-b0f3-4cbd02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v29.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-f2a8-42ef-a6ac-4f0202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v21.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-ad94-4677-bd76-44c202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v28.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-0cb4-4ca2-86d6-41b802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v30.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-d54c-4209-9bc2-405702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v21.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-6f28-447a-949c-472202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v29.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-28a8-485e-a484-443902de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v17.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-fe48-4cd4-bba2-4f3b02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v26.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-f008-475c-8d1a-48a302de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v32.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-e1c8-4802-91e1-40aa02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v28.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-b18c-4b3a-bc64-48fc02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v30.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-bbe8-41eb-af69-4f7a02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v25.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-3340-4cc5-bea4-443802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v29.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-6704-4176-a932-4b4f02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v28.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-c648-457e-a897-457302de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v21.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-2aa0-48f1-acb7-4e3c02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v29.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-e358-432e-adcb-42be02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v31.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-4940-4732-af01-40e202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v23.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-a94c-4a97-913a-498e02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v26.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-52dc-4c40-becd-413f02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v36.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-b74c-4f5b-b6fc-4a4002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v35.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-2b88-4fe0-9800-4a4102de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v40.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-cd14-4758-8a70-4d8002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '34.245.34.247']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-d834-4daa-9f43-47ef02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v41.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-79e4-4759-860e-409902de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v44.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-f0f8-45a5-b754-464d02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '51.15.84.31']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-4da0-4664-9d5e-49ec02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v36.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-b3cc-4a75-b225-4c5a02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v33.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-70c0-4561-8867-4ef102de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v24.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-892c-4463-9f95-475002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v23.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-aa70-4386-b77e-48d402de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v38.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-9a50-42d2-b312-4d3602de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v35.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-064c-4e79-b973-436302de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v23.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-195c-4fa4-ad34-48ee02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v43.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-dfdc-4208-ae73-41d102de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v40.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-dc68-4d4a-85a1-431d02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v41.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-59a0-4729-abbe-4e2f02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v29.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-3a4c-4ad3-a9c7-469002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v43.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-243c-4f09-a8a8-4de002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v40.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-7628-4b15-8bae-4d2502de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v37.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-5a34-4bf1-b2e3-4f5202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v44.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-b810-40ae-ac49-48ad02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v42.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-8e14-4aa7-b315-4bd702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v44.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-1428-420d-ab9f-418002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v39.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-845c-4104-9aa9-4f7402de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v42.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-4010-4c60-90a8-435002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v42.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-a7cc-46f7-8c9f-420902de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v44.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-3ea8-4024-b59a-48a202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v40.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-36f4-42fa-b4ba-4ede02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v41.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-dfd0-46b8-a67a-46f702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v42.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-28e0-4447-8a10-4c1c02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v43.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-a020-4bec-ab80-49e202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v24.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-28c8-4bc6-b9d6-47f002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v45.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-dd30-469d-8088-4fe002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v41.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7b-c65c-4517-a448-464502de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:19.000Z",
"modified": "2019-04-21T13:26:19.000Z",
"pattern": "[domain-name:value = 'service-verify-v43.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-b820-4596-ae0a-4e8a02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v1.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-eafc-4bfe-95c5-478702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v1.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-5990-458c-887f-405002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v2.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-8158-4194-85fd-47a902de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v2.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-c760-42cd-b5f5-418802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v2.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-763c-4d30-b92d-4d5802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v2.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-fc80-496c-85a3-48c702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v1.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-b6f8-4eb6-bb04-4c3102de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v3.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-8dc8-4381-81b7-43cf02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v3.gq']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-fe88-4d1e-85b5-48f802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v3.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-8eac-40c4-a890-407f02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v3.tk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-164c-4818-90d0-422d02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v3.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-eec8-419e-85be-4d5202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v4.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-6944-4b1a-860a-43eb02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify-v19.cf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-492c-4544-9b8c-4ea602de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify2.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-8548-4c8a-b6f2-4df202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '51.158.108.50']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-d550-4b0a-91d8-401102de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify1.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-4880-4906-a91d-4b3802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify3.ml']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-507c-4ceb-a907-4b0502de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify2.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-2424-40e3-a62b-4a5002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[domain-name:value = 'service-verify6.ga']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc6f7c-f020-455c-8867-4bc702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:26:20.000Z",
"modified": "2019-04-21T13:26:20.000Z",
"pattern": "[network-traffic:dst_ref.type = 'ipv4-addr' AND network-traffic:dst_ref.value = '51.158.190.250']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:26:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5cbc7071-59d4-4129-801e-42e202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:30:25.000Z",
"modified": "2019-04-21T13:30:25.000Z",
"pattern": "[url:value = 'http://service-verify-v41.ga/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2019-04-21T13:30:25Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5cbc70f1-d340-4e04-b842-4496e387cbd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:32:33.000Z",
"modified": "2019-04-21T13:32:33.000Z",
"first_observed": "2019-04-21T13:32:33Z",
"last_observed": "2019-04-21T13:32:33Z",
"number_observed": 1,
"object_refs": [
"network-traffic--5cbc70f1-d340-4e04-b842-4496e387cbd9",
"ipv4-addr--5cbc70f1-d340-4e04-b842-4496e387cbd9"
],
"labels": [
"misp:type=\"ip-src\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--5cbc70f1-d340-4e04-b842-4496e387cbd9",
"src_ref": "ipv4-addr--5cbc70f1-d340-4e04-b842-4496e387cbd9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--5cbc70f1-d340-4e04-b842-4496e387cbd9",
"value": "13.114.203.210"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5cbc70f2-dc88-4f8b-b4e0-49b9e387cbd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:32:34.000Z",
"modified": "2019-04-21T13:32:34.000Z",
"first_observed": "2019-04-21T13:32:34Z",
"last_observed": "2019-04-21T13:32:34Z",
"number_observed": 1,
"object_refs": [
"network-traffic--5cbc70f2-dc88-4f8b-b4e0-49b9e387cbd9",
"ipv4-addr--5cbc70f2-dc88-4f8b-b4e0-49b9e387cbd9"
],
"labels": [
"misp:type=\"ip-src\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--5cbc70f2-dc88-4f8b-b4e0-49b9e387cbd9",
"src_ref": "ipv4-addr--5cbc70f2-dc88-4f8b-b4e0-49b9e387cbd9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--5cbc70f2-dc88-4f8b-b4e0-49b9e387cbd9",
"value": "13.78.36.109"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5cbc70f2-5a94-4291-8c53-40dae387cbd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:32:34.000Z",
"modified": "2019-04-21T13:32:34.000Z",
"first_observed": "2019-04-21T13:32:34Z",
"last_observed": "2019-04-21T13:32:34Z",
"number_observed": 1,
"object_refs": [
"network-traffic--5cbc70f2-5a94-4291-8c53-40dae387cbd9",
"ipv4-addr--5cbc70f2-5a94-4291-8c53-40dae387cbd9"
],
"labels": [
"misp:type=\"ip-src\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--5cbc70f2-5a94-4291-8c53-40dae387cbd9",
"src_ref": "ipv4-addr--5cbc70f2-5a94-4291-8c53-40dae387cbd9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--5cbc70f2-5a94-4291-8c53-40dae387cbd9",
"value": "192.241.152.20"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5cbc70f3-e504-4646-8883-4f5be387cbd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:32:35.000Z",
"modified": "2019-04-21T13:32:35.000Z",
"first_observed": "2019-04-21T13:32:35Z",
"last_observed": "2019-04-21T13:32:35Z",
"number_observed": 1,
"object_refs": [
"network-traffic--5cbc70f3-e504-4646-8883-4f5be387cbd9",
"ipv4-addr--5cbc70f3-e504-4646-8883-4f5be387cbd9"
],
"labels": [
"misp:type=\"ip-src\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--5cbc70f3-e504-4646-8883-4f5be387cbd9",
"src_ref": "ipv4-addr--5cbc70f3-e504-4646-8883-4f5be387cbd9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--5cbc70f3-e504-4646-8883-4f5be387cbd9",
"value": "52.57.118.133"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5cbc70f3-2c20-4fb5-b8ce-468fe387cbd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:32:35.000Z",
"modified": "2019-04-21T13:32:35.000Z",
"first_observed": "2019-04-21T13:32:35Z",
"last_observed": "2019-04-21T13:32:35Z",
"number_observed": 1,
"object_refs": [
"network-traffic--5cbc70f3-2c20-4fb5-b8ce-468fe387cbd9",
"ipv4-addr--5cbc70f3-2c20-4fb5-b8ce-468fe387cbd9"
],
"labels": [
"misp:type=\"ip-src\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--5cbc70f3-2c20-4fb5-b8ce-468fe387cbd9",
"src_ref": "ipv4-addr--5cbc70f3-2c20-4fb5-b8ce-468fe387cbd9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--5cbc70f3-2c20-4fb5-b8ce-468fe387cbd9",
"value": "13.94.203.192"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5cbc70f3-0990-4058-b0df-4517e387cbd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:32:35.000Z",
"modified": "2019-04-21T13:32:35.000Z",
"first_observed": "2019-04-21T13:32:35Z",
"last_observed": "2019-04-21T13:32:35Z",
"number_observed": 1,
"object_refs": [
"network-traffic--5cbc70f3-0990-4058-b0df-4517e387cbd9",
"ipv4-addr--5cbc70f3-0990-4058-b0df-4517e387cbd9"
],
"labels": [
"misp:type=\"ip-src\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--5cbc70f3-0990-4058-b0df-4517e387cbd9",
"src_ref": "ipv4-addr--5cbc70f3-0990-4058-b0df-4517e387cbd9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--5cbc70f3-0990-4058-b0df-4517e387cbd9",
"value": "104.211.152.15"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5cbc70f4-d8e0-4a10-8fc7-4de6e387cbd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:32:36.000Z",
"modified": "2019-04-21T13:32:36.000Z",
"first_observed": "2019-04-21T13:32:36Z",
"last_observed": "2019-04-21T13:32:36Z",
"number_observed": 1,
"object_refs": [
"network-traffic--5cbc70f4-d8e0-4a10-8fc7-4de6e387cbd9",
"ipv4-addr--5cbc70f4-d8e0-4a10-8fc7-4de6e387cbd9"
],
"labels": [
"misp:type=\"ip-src\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--5cbc70f4-d8e0-4a10-8fc7-4de6e387cbd9",
"src_ref": "ipv4-addr--5cbc70f4-d8e0-4a10-8fc7-4de6e387cbd9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--5cbc70f4-d8e0-4a10-8fc7-4de6e387cbd9",
"value": "34.245.34.247"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5cbc70f4-ff38-4c71-8aaf-4f4be387cbd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:32:36.000Z",
"modified": "2019-04-21T13:32:36.000Z",
"first_observed": "2019-04-21T13:32:36Z",
"last_observed": "2019-04-21T13:32:36Z",
"number_observed": 1,
"object_refs": [
"network-traffic--5cbc70f4-ff38-4c71-8aaf-4f4be387cbd9",
"ipv4-addr--5cbc70f4-ff38-4c71-8aaf-4f4be387cbd9"
],
"labels": [
"misp:type=\"ip-src\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--5cbc70f4-ff38-4c71-8aaf-4f4be387cbd9",
"src_ref": "ipv4-addr--5cbc70f4-ff38-4c71-8aaf-4f4be387cbd9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--5cbc70f4-ff38-4c71-8aaf-4f4be387cbd9",
"value": "51.15.84.31"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5cbc70f6-b000-4cfa-b57a-466ae387cbd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:32:38.000Z",
"modified": "2019-04-21T13:32:38.000Z",
"first_observed": "2019-04-21T13:32:38Z",
"last_observed": "2019-04-21T13:32:38Z",
"number_observed": 1,
"object_refs": [
"network-traffic--5cbc70f6-b000-4cfa-b57a-466ae387cbd9",
"ipv4-addr--5cbc70f6-b000-4cfa-b57a-466ae387cbd9"
],
"labels": [
"misp:type=\"ip-src\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--5cbc70f6-b000-4cfa-b57a-466ae387cbd9",
"src_ref": "ipv4-addr--5cbc70f6-b000-4cfa-b57a-466ae387cbd9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--5cbc70f6-b000-4cfa-b57a-466ae387cbd9",
"value": "51.158.108.50"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5cbc70f7-b330-437f-bb85-4ab8e387cbd9",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:32:39.000Z",
"modified": "2019-04-21T13:32:39.000Z",
"first_observed": "2019-04-21T13:32:39Z",
"last_observed": "2019-04-21T13:32:39Z",
"number_observed": 1,
"object_refs": [
"network-traffic--5cbc70f7-b330-437f-bb85-4ab8e387cbd9",
"ipv4-addr--5cbc70f7-b330-437f-bb85-4ab8e387cbd9"
],
"labels": [
"misp:type=\"ip-src\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--5cbc70f7-b330-437f-bb85-4ab8e387cbd9",
"src_ref": "ipv4-addr--5cbc70f7-b330-437f-bb85-4ab8e387cbd9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--5cbc70f7-b330-437f-bb85-4ab8e387cbd9",
"value": "51.158.190.250"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--5cbc6fec-649c-4d05-aaee-4b6202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2019-04-21T13:29:20.000Z",
"modified": "2019-04-21T13:29:20.000Z",
"labels": [
"misp:name=\"microblog\"",
"misp:meta-category=\"misc\""
],
"x_misp_attributes": [
{
"type": "text",
"object_relation": "post",
"value": "97 domains #phishing domains spread over 10 IP's... pretty big infrastructure (using @awscloud @azure @digitalocean etc) wonder what they have planned\r\n\r\nfull list here:\r\nhttps://pastebin.com/et1AF0Nm",
"category": "Other",
"uuid": "5cbc6fed-9cd4-467a-ae62-4de002de0b81"
},
{
"type": "text",
"object_relation": "type",
"value": "Twitter",
"category": "Other",
"uuid": "5cbc6fed-75c0-4dfa-be44-454902de0b81"
},
{
"type": "link",
"object_relation": "url",
"value": "https://twitter.com/PhishingAi/status/1119762409273511936",
"category": "External analysis",
"uuid": "5cbc6fed-b9c4-4f74-b02b-444502de0b81"
},
{
"type": "link",
"object_relation": "link",
"value": "https://pastebin.com/et1AF0Nm",
"category": "External analysis",
"uuid": "5cbc6fed-6148-43bf-8f82-4f6f02de0b81"
},
{
"type": "text",
"object_relation": "username",
"value": "PhishingAi",
"category": "Other",
"uuid": "5cbc6fed-2a3c-4f71-a9d6-4e5402de0b81"
}
],
"x_misp_meta_category": "misc",
"x_misp_name": "microblog"
},
{
"type": "marking-definition",
"spec_version": "2.1",
"id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",
"created": "2017-01-20T00:00:00.000Z",
"definition_type": "tlp",
"name": "TLP:WHITE",
"definition": {
"tlp": "white"
}
}
]
}
Reference in a new issue View git blame Copy permalink