misp-circl-feed/feeds/circl/misp/59df77e7-2420-4c6c-bc2c-44ce950d210f.json

1365 lines
No EOL
40 KiB
JSON

{
"Event": {
"analysis": "1",
"date": "2017-10-12",
"extends_uuid": "",
"info": "M2M - Locky Affid=3, \".asasin\"/Trickbot \"mac1\" 2017-10-11 : \"Emailing: 12345678\" - \"12345678.7z\"",
"publish_timestamp": "1507829287",
"published": true,
"threat_level_id": "3",
"timestamp": "1507829006",
"uuid": "59df77e7-2420-4c6c-bc2c-44ce950d210f",
"Orgc": {
"name": "CIRCL",
"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f"
},
"Tag": [
{
"colour": "#ffffff",
"local": "0",
"name": "tlp:white",
"relationship_type": ""
},
{
"colour": "#0088cc",
"local": "0",
"name": "misp-galaxy:tool=\"Trick Bot\"",
"relationship_type": ""
},
{
"colour": "#006c6c",
"local": "0",
"name": "ecsirt:malicious-code=\"ransomware\"",
"relationship_type": ""
},
{
"colour": "#0088cc",
"local": "0",
"name": "misp-galaxy:ransomware=\"Locky\"",
"relationship_type": ""
}
],
"Attribute": [
{
"category": "Artifacts dropped",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "md5",
"uuid": "59df77e8-fa24-4c7e-b260-4531950d210f",
"value": "c77d1c0c0ecd0b2f81f2bcf89fb07279"
},
{
"category": "Artifacts dropped",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "md5",
"uuid": "59df77e8-9d74-46ad-b6bf-4d8c950d210f",
"value": "e3d2e5e74874fd8b59ddef544f7e4851"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77e9-ad7c-4567-8cab-1fb0950d210f",
"value": "http://agriturismoviridarium.it/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77e9-0fe4-4a2f-9df1-431b950d210f",
"value": "agriturismoviridarium.it"
},
{
"category": "Network activity",
"comment": "agriturismoviridarium.it",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df77e9-b2ec-43f0-b641-4d8f950d210f",
"value": "85.235.131.55"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77ea-8e50-4c26-b2ca-1e76950d210f",
"value": "http://enixgaming.de/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77ea-f8ec-41f0-a374-2139950d210f",
"value": "enixgaming.de"
},
{
"category": "Network activity",
"comment": "enixgaming.de",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df77ea-d0b8-43d1-8524-4dec950d210f",
"value": "212.224.65.254"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77ea-7ec4-4ac7-b56a-4070950d210f",
"value": "http://enmee.net/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77ea-8318-4622-9f3b-ad07950d210f",
"value": "enmee.net"
},
{
"category": "Network activity",
"comment": "enmee.net",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df77eb-0370-4a60-9801-4216950d210f",
"value": "209.54.62.90"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77eb-dbf0-44c0-a0d5-4780950d210f",
"value": "http://fls-portal.co.uk/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77ec-9118-4227-9e59-4fce950d210f",
"value": "fls-portal.co.uk"
},
{
"category": "Network activity",
"comment": "fls-portal.co.uk",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df77ec-7650-4b0a-b07b-2139950d210f",
"value": "109.108.149.65"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77ec-a3c4-4b9a-8c3a-ac4d950d210f",
"value": "http://jeangurunlian.com/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77ec-02b8-4d1e-8a57-1eb1950d210f",
"value": "jeangurunlian.com"
},
{
"category": "Network activity",
"comment": "jeangurunlian.com",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df77ed-33e0-436d-aa7e-4b43950d210f",
"value": "98.124.251.202"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77ed-7c6c-4a3c-b791-4c7c950d210f",
"value": "http://peopleiknow.org/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77ed-1950-475b-9981-216a950d210f",
"value": "peopleiknow.org"
},
{
"category": "Network activity",
"comment": "peopleiknow.org",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df77ee-c0a0-4eb5-bd40-4fb9950d210f",
"value": "67.210.102.240"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77ee-2888-4d06-81f6-a108950d210f",
"value": "http://petrochemus.com/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77ee-191c-4d23-84cb-2139950d210f",
"value": "petrochemus.com"
},
{
"category": "Network activity",
"comment": "petrochemus.com",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df77ee-d4c0-4b9a-bc8c-1eb1950d210f",
"value": "98.124.251.72"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77ee-aa70-4c22-ad77-462e950d210f",
"value": "http://sci-eye.com/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77ef-c000-4c00-8fb0-4b73950d210f",
"value": "sci-eye.com"
},
{
"category": "Network activity",
"comment": "sci-eye.com",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df77ef-ba6c-4200-85b3-1f31950d210f",
"value": "98.124.252.132"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77ef-d728-4827-81ab-216a950d210f",
"value": "http://secundaria50.edu.mx/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77ef-e000-4a19-9226-4387950d210f",
"value": "secundaria50.edu.mx"
},
{
"category": "Network activity",
"comment": "secundaria50.edu.mx",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df77ef-06d0-4dc8-87b6-4762950d210f",
"value": "98.124.251.65"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77ef-78b8-4ca8-94d4-4090950d210f",
"value": "http://stemcellenhancementresearch.com/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77f0-444c-439b-aa89-45a6950d210f",
"value": "stemcellenhancementresearch.com"
},
{
"category": "Network activity",
"comment": "stemcellenhancementresearch.com",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df77f0-610c-4d35-95c6-a108950d210f",
"value": "199.30.241.139"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df77f0-52dc-4dc0-9f5f-2139950d210f",
"value": "http://fetchstats.net/p66/6jbgcfwe3"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df77f0-f66c-49e7-b2fe-4a23950d210f",
"value": "fetchstats.net"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df780f-af44-4a98-a683-1eb1950d210f",
"value": "http://alexandradickman.com/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df780f-8d80-4d8e-bf51-ac4d950d210f",
"value": "alexandradickman.com"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df780f-6994-4d5e-8346-216a950d210f",
"value": "http://arkberg-design.fi/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df780f-774c-4c28-8bb5-1f31950d210f",
"value": "arkberg-design.fi"
},
{
"category": "Network activity",
"comment": "arkberg-design.fi",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7810-71a8-4045-b24e-4394950d210f",
"value": "84.234.64.216"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df7810-f704-4e9b-81aa-4a72950d210f",
"value": "http://basedow-bilder.de/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "hostname",
"uuid": "59df7810-c964-404d-99d4-47ec950d210f",
"value": "basedow-bilder.de"
},
{
"category": "Network activity",
"comment": "basedow-bilder.de",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7810-9eb0-4381-908c-a108950d210f",
"value": "194.116.187.130"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507828999",
"to_ids": true,
"type": "url",
"uuid": "59df7811-5c8c-4506-81f4-1e76950d210f",
"value": "http://centralbaptistchurchnj.org/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df7811-a690-4d5d-afa0-2139950d210f",
"value": "centralbaptistchurchnj.org"
},
{
"category": "Network activity",
"comment": "centralbaptistchurchnj.org",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7811-f3ec-4e70-b402-4414950d210f",
"value": "68.171.62.42"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df7812-845c-40a5-8ac2-4954950d210f",
"value": "http://download.justowin.it/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df7812-b608-4d7d-b838-444f950d210f",
"value": "download.justowin.it"
},
{
"category": "Network activity",
"comment": "download.justowin.it",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7812-b09c-4fbd-84d4-4268950d210f",
"value": "95.110.225.147"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df7812-4038-4502-988e-1eb1950d210f",
"value": "http://hair-select.jp/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df7813-9828-4849-9a4d-ac4d950d210f",
"value": "hair-select.jp"
},
{
"category": "Network activity",
"comment": "hair-select.jp",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7814-e504-437f-b91d-1f31950d210f",
"value": "180.222.185.74"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df7814-1aec-440e-bb27-4cea950d210f",
"value": "http://itsmaterial.us/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df7814-44e8-4a7e-afa9-49b7950d210f",
"value": "itsmaterial.us"
},
{
"category": "Network activity",
"comment": "itsmaterial.us",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7814-bb74-4999-9200-4faa950d210f",
"value": "98.124.252.176"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df7814-7fdc-4250-9129-46c4950d210f",
"value": "http://lacosturera.es/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df7815-e408-4724-9246-1e76950d210f",
"value": "lacosturera.es"
},
{
"category": "Network activity",
"comment": "lacosturera.es",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7815-3844-441b-ab55-4655950d210f",
"value": "86.109.170.198"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df7815-b850-4a02-8979-4226950d210f",
"value": "http://missiegeslaagd.nl/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df7815-7ba0-4deb-854f-4fbf950d210f",
"value": "missiegeslaagd.nl"
},
{
"category": "Network activity",
"comment": "missiegeslaagd.nl",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7816-5250-447b-bef8-1eb1950d210f",
"value": "46.235.44.98"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df7816-0538-40f9-a9d3-ac4d950d210f",
"value": "http://motifahsap.com/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df7816-2644-4b21-b263-ad07950d210f",
"value": "motifahsap.com"
},
{
"category": "Network activity",
"comment": "motifahsap.com",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7817-2a40-4bd4-8267-1fb0950d210f",
"value": "188.132.180.113"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df7817-1348-4560-89b7-4af0950d210f",
"value": "http://pacalik.net/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df7817-61cc-408e-b25f-4608950d210f",
"value": "pacalik.net"
},
{
"category": "Network activity",
"comment": "pacalik.net",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7818-3e94-4be5-9ba9-4c91950d210f",
"value": "93.187.200.105"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df7818-f858-4cc0-9357-1e76950d210f",
"value": "http://ryanbaptistchurch.com/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df7818-1184-4e2a-8161-462e950d210f",
"value": "ryanbaptistchurch.com"
},
{
"category": "Network activity",
"comment": "ryanbaptistchurch.com",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7818-99bc-4f64-9f23-44c3950d210f",
"value": "66.36.173.246"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df7819-011c-466d-99eb-443c950d210f",
"value": "http://sambad.com.np/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df7819-8cd0-4731-91df-1eb1950d210f",
"value": "sambad.com.np"
},
{
"category": "Network activity",
"comment": "sambad.com.np",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7819-114c-4f1c-bf99-ac4d950d210f",
"value": "74.200.89.84"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df7819-2c08-4327-8db7-216a950d210f",
"value": "http://sgtenterprises.com/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df781a-1624-4494-abd8-1f31950d210f",
"value": "sgtenterprises.com"
},
{
"category": "Network activity",
"comment": "sgtenterprises.com",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781a-6f3c-4d18-9674-4e92950d210f",
"value": "66.36.163.197"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df781a-c9e0-4522-a493-4b7f950d210f",
"value": "http://shamanic-extracts.biz/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df781b-aca8-4b3e-98eb-4ef8950d210f",
"value": "shamanic-extracts.biz"
},
{
"category": "Network activity",
"comment": "shamanic-extracts.biz",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781b-e178-4f87-8fd1-4ab7950d210f",
"value": "62.212.154.98"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df781b-4c54-4ae1-b370-1e76950d210f",
"value": "http://signlight.com.au/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "hostname",
"uuid": "59df781b-dbac-4fb2-9816-2139950d210f",
"value": "signlight.com.au"
},
{
"category": "Network activity",
"comment": "signlight.com.au",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781c-6ce4-40ce-b2a3-4696950d210f",
"value": "203.17.73.160"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": true,
"type": "url",
"uuid": "59df781c-1544-4264-8874-4904950d210f",
"value": "http://fetchstats.net/p66/cunrb78f"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781c-ee94-4c90-94c9-4995950d210f",
"value": "91.83.88.51"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781c-d420-429e-9c5c-ad07950d210f",
"value": "46.237.117.193"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781d-e988-48c1-b617-216a950d210f",
"value": "79.170.7.139"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781d-707c-4eaa-b6f3-1f31950d210f",
"value": "41.57.103.218"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781d-70bc-4b81-b0d6-1fb0950d210f",
"value": "196.202.194.202"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781e-092c-4edc-9ac9-4d35950d210f",
"value": "46.20.56.239"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781e-ab84-4830-8acd-4663950d210f",
"value": "176.120.126.21"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781e-9004-420d-8b3d-4782950d210f",
"value": "91.239.249.118"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781f-7380-411f-9a4a-4ef1950d210f",
"value": "194.87.103.184"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781f-7098-40a2-9e63-a108950d210f",
"value": "92.63.102.64"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781f-145c-46bb-9abe-1e76950d210f",
"value": "194.87.238.53"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829000",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df781f-019c-40c9-b8eb-2139950d210f",
"value": "92.63.102.159"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7820-b20c-4893-82b0-4f62950d210f",
"value": "194.87.232.219"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7820-3050-4da7-bd92-4032950d210f",
"value": "149.154.69.70"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7820-1550-4564-9499-4098950d210f",
"value": "78.24.223.153"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7821-4380-455d-a94f-1eb1950d210f",
"value": "194.87.92.207"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7821-4768-4f40-8d57-45b1950d210f",
"value": "194.87.94.239"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7821-7ad8-4c2e-9b1d-ac4d950d210f",
"value": "195.133.147.238"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7821-5aac-4054-be18-1f31950d210f",
"value": "62.109.15.132"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7822-8a38-41a6-899b-1fb0950d210f",
"value": "194.87.236.240"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7822-8558-4795-ab34-4676950d210f",
"value": "62.109.6.237"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7822-2228-4f88-830d-484b950d210f",
"value": "149.154.69.47"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7823-8700-4033-aeb3-a108950d210f",
"value": "82.146.47.121"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7823-ca40-42c4-bc2d-2139950d210f",
"value": "78.24.216.250"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7823-23cc-442b-a14e-4687950d210f",
"value": "82.146.56.218"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7824-9c48-4e73-85d6-4031950d210f",
"value": "185.159.131.198"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7824-2670-4eef-a0f2-1eb1950d210f",
"value": "194.87.146.32"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7824-8398-4e2a-82bb-4d1c950d210f",
"value": "5.133.179.77"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7825-22a4-4cfa-af6f-ad07950d210f",
"value": "94.242.224.214"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7825-08d4-4933-bbd2-216a950d210f",
"value": "194.87.92.242"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7825-8850-4ed4-8782-4615950d210f",
"value": "195.133.146.236"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "ip-dst",
"uuid": "59df7825-c6cc-4cfd-94e9-4d94950d210f",
"value": "193.124.117.238"
},
{
"category": "Artifacts dropped",
"comment": "- Xchecked via VT: e3d2e5e74874fd8b59ddef544f7e4851",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": true,
"type": "sha256",
"uuid": "59dfa509-5b30-4324-b78d-4bd702de0b81",
"value": "79a40ac47ea2b57727437a7a9365e860cc1fa1c7c96900f5a2a90133959c4694"
},
{
"category": "Artifacts dropped",
"comment": "- Xchecked via VT: e3d2e5e74874fd8b59ddef544f7e4851",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": true,
"type": "sha1",
"uuid": "59dfa509-2280-4abc-83ff-454302de0b81",
"value": "494ecc9e139b49312c2ac5dec7b68d0e1bd996c4"
},
{
"category": "External analysis",
"comment": "- Xchecked via VT: e3d2e5e74874fd8b59ddef544f7e4851",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "link",
"uuid": "59dfa509-823c-45e5-8088-484a02de0b81",
"value": "https://www.virustotal.com/file/79a40ac47ea2b57727437a7a9365e860cc1fa1c7c96900f5a2a90133959c4694/analysis/1507788202/"
},
{
"category": "Artifacts dropped",
"comment": "- Xchecked via VT: c77d1c0c0ecd0b2f81f2bcf89fb07279",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": true,
"type": "sha256",
"uuid": "59dfa509-a5bc-4fab-bfaf-4df902de0b81",
"value": "1d4a3957a4f4d83f1edffcb0b596e04d98c82f801ae4b23208a34076203f42f6"
},
{
"category": "Artifacts dropped",
"comment": "- Xchecked via VT: c77d1c0c0ecd0b2f81f2bcf89fb07279",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": true,
"type": "sha1",
"uuid": "59dfa509-daa4-4dcb-b5fd-447302de0b81",
"value": "be7d13c25052903d150ed07e836e210e298b9995"
},
{
"category": "External analysis",
"comment": "- Xchecked via VT: c77d1c0c0ecd0b2f81f2bcf89fb07279",
"deleted": false,
"disable_correlation": false,
"timestamp": "1507829001",
"to_ids": false,
"type": "link",
"uuid": "59dfa509-ef84-4b3a-9fa0-4d6502de0b81",
"value": "https://www.virustotal.com/file/1d4a3957a4f4d83f1edffcb0b596e04d98c82f801ae4b23208a34076203f42f6/analysis/1507820317/"
}
]
}
}