misp-circl-feed/feeds/circl/misp/55fff330-003c-4c9b-96ed-44b7950d210b.json

469 lines
No EOL
15 KiB
JSON

{
"Event": {
"analysis": "2",
"date": "2015-09-18",
"extends_uuid": "",
"info": "OSINT Password Hygiene: Hiding Your Identity is Difficult for Attackers and Adulterers by Threat Geek",
"publish_timestamp": "1442838300",
"published": true,
"threat_level_id": "4",
"timestamp": "1442838102",
"uuid": "55fff330-003c-4c9b-96ed-44b7950d210b",
"Orgc": {
"name": "CthulhuSPRL.be",
"uuid": "55f6ea5f-fd34-43b8-ac1d-40cb950d210f"
},
"Tag": [
{
"colour": "#004646",
"name": "type:OSINT"
},
{
"colour": "#ffffff",
"name": "tlp:white"
}
],
"Attribute": [
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837306",
"to_ids": false,
"type": "link",
"uuid": "55fff33a-9208-40fb-b966-492f950d210b",
"value": "http://www.threatgeek.com/2015/09/password-hygiene-hiding-your-identity-is-difficult-for-attackers-and-adulterers.html"
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837342",
"to_ids": true,
"type": "md5",
"uuid": "55fff35e-0b60-4043-aed6-4cd5950d210b",
"value": "089fe27df0be49a5eaa5d233561105f8"
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837342",
"to_ids": true,
"type": "md5",
"uuid": "55fff35e-2b60-47af-a0a5-4692950d210b",
"value": "19b1c577c41c8d4ac540d166b34a6eac"
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837343",
"to_ids": true,
"type": "md5",
"uuid": "55fff35f-5d08-4234-a407-4111950d210b",
"value": "21f3369333d26192e5f1a4578eac934f"
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837343",
"to_ids": true,
"type": "md5",
"uuid": "55fff35f-8158-49b2-a81e-4b23950d210b",
"value": "7ee53765e423d7c965e8b09c24bd931b"
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837343",
"to_ids": true,
"type": "md5",
"uuid": "55fff35f-61e0-4d52-bbd3-4183950d210b",
"value": "b9c8eb67e91bd53271127821a3b6e1a2"
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837344",
"to_ids": true,
"type": "md5",
"uuid": "55fff360-1514-4325-9edc-43f8950d210b",
"value": "c4ded03b6e79ed948a570961907d4beb"
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837344",
"to_ids": true,
"type": "md5",
"uuid": "55fff360-54a4-48fc-8874-454a950d210b",
"value": "df25df77402ba4f5db5fd48234611a3e"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837344",
"to_ids": true,
"type": "hostname",
"uuid": "55fff360-58ec-436a-b50c-44fe950d210b",
"value": "connektme.hopto.org"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837345",
"to_ids": true,
"type": "hostname",
"uuid": "55fff361-fc8c-44fe-a366-4a00950d210b",
"value": "connektme.no-ip.org"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837345",
"to_ids": true,
"type": "hostname",
"uuid": "55fff361-1d14-4f66-9a67-4dcd950d210b",
"value": "drwebstatic.hopto.org"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837345",
"to_ids": true,
"type": "hostname",
"uuid": "55fff361-a0b0-4860-afb9-4238950d210b",
"value": "drwebstatic.myvnc.com"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837346",
"to_ids": true,
"type": "hostname",
"uuid": "55fff362-5d40-4d1f-9a94-4c48950d210b",
"value": "easyconnect.no-ip.org"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837346",
"to_ids": true,
"type": "hostname",
"uuid": "55fff362-7f18-4dee-86fd-4fd1950d210b",
"value": "easyconnect.zapto.org"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837346",
"to_ids": true,
"type": "hostname",
"uuid": "55fff362-16dc-42ba-a476-47bc950d210b",
"value": "gserverhost.myftp.org"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837347",
"to_ids": true,
"type": "hostname",
"uuid": "55fff363-6418-4e85-b6c3-4bab950d210b",
"value": "gserverhost.no-ip.biz"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837347",
"to_ids": true,
"type": "hostname",
"uuid": "55fff363-0a78-41d5-9566-4c4a950d210b",
"value": "hellointra.myftp.org"
},
{
"category": "Network activity",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837347",
"to_ids": true,
"type": "hostname",
"uuid": "55fff363-51b0-4358-b96a-4fef950d210b",
"value": "hellointra.no-ip.org"
},
{
"category": "Attribution",
"comment": "Password",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442837370",
"to_ids": false,
"type": "text",
"uuid": "55fff37a-a8cc-4f16-911e-41c3950d210b",
"value": "@client$321$"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: df25df77402ba4f5db5fd48234611a3e",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838103",
"to_ids": true,
"type": "sha256",
"uuid": "55fff657-c974-44d7-b363-4d25950d210b",
"value": "0bd4a87623d1285f78d4d1a38da96eb9b33bfaf0d9881fbd0ac57698428f842a"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: df25df77402ba4f5db5fd48234611a3e",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838103",
"to_ids": true,
"type": "sha1",
"uuid": "55fff657-ce64-4e8f-a654-4e55950d210b",
"value": "7d55b4b9b46135a0164919a48f09f98d55441ff0"
},
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838103",
"to_ids": false,
"type": "link",
"uuid": "55fff657-cfa0-49e6-8f61-44d0950d210b",
"value": "https://www.virustotal.com/file/0bd4a87623d1285f78d4d1a38da96eb9b33bfaf0d9881fbd0ac57698428f842a/analysis/1440754925/"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: c4ded03b6e79ed948a570961907d4beb",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838104",
"to_ids": true,
"type": "sha256",
"uuid": "55fff658-f47c-4ccf-9214-4124950d210b",
"value": "efa271464fb6826360f2c81211a92d15aebc19c28454cdc14d968f7a852de00d"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: c4ded03b6e79ed948a570961907d4beb",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838104",
"to_ids": true,
"type": "sha1",
"uuid": "55fff658-3184-4fde-aeb8-4cb7950d210b",
"value": "b89ee54a43107a3d4f4e70d94874a9aac2909e82"
},
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838104",
"to_ids": false,
"type": "link",
"uuid": "55fff658-4858-443f-b887-4073950d210b",
"value": "https://www.virustotal.com/file/efa271464fb6826360f2c81211a92d15aebc19c28454cdc14d968f7a852de00d/analysis/1440751218/"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: b9c8eb67e91bd53271127821a3b6e1a2",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838105",
"to_ids": true,
"type": "sha256",
"uuid": "55fff659-6d50-4016-bf5e-4241950d210b",
"value": "43a2430935b957dfd588be6b866a7e99e3bc8207aa9b37b26c27cafd8fd59245"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: b9c8eb67e91bd53271127821a3b6e1a2",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838105",
"to_ids": true,
"type": "sha1",
"uuid": "55fff659-46e8-4a9a-bef8-469a950d210b",
"value": "e2dfd659fc19ed799f467a20ff59e0616073440c"
},
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838105",
"to_ids": false,
"type": "link",
"uuid": "55fff659-e27c-4c09-b46c-4a9e950d210b",
"value": "https://www.virustotal.com/file/43a2430935b957dfd588be6b866a7e99e3bc8207aa9b37b26c27cafd8fd59245/analysis/1439723512/"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: 7ee53765e423d7c965e8b09c24bd931b",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838106",
"to_ids": true,
"type": "sha256",
"uuid": "55fff65a-5b48-402d-a00a-4cf6950d210b",
"value": "b5db7c5eb106e946e3ea5562b4aa516efc4107caa7da591b6efbd0317874c54d"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: 7ee53765e423d7c965e8b09c24bd931b",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838106",
"to_ids": true,
"type": "sha1",
"uuid": "55fff65a-b5cc-485a-a19c-4d7d950d210b",
"value": "56d3bcbb5dce999d9fc94cef65968a8af1a90f2d"
},
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838106",
"to_ids": false,
"type": "link",
"uuid": "55fff65b-3ca8-42e0-a9d7-45b0950d210b",
"value": "https://www.virustotal.com/file/b5db7c5eb106e946e3ea5562b4aa516efc4107caa7da591b6efbd0317874c54d/analysis/1440751805/"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: 21f3369333d26192e5f1a4578eac934f",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838107",
"to_ids": true,
"type": "sha256",
"uuid": "55fff65b-cdec-4c5b-af20-4bb6950d210b",
"value": "82a02680af032c0454d62a7522b2b3699c331c4495e936ba13faca831f29fcc4"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: 21f3369333d26192e5f1a4578eac934f",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838107",
"to_ids": true,
"type": "sha1",
"uuid": "55fff65b-1ef4-43a7-8eab-4098950d210b",
"value": "eae4afc5ce009164f3b3c7c57bb0b429e2e96038"
},
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838108",
"to_ids": false,
"type": "link",
"uuid": "55fff65c-4808-44a8-86f6-47ff950d210b",
"value": "https://www.virustotal.com/file/82a02680af032c0454d62a7522b2b3699c331c4495e936ba13faca831f29fcc4/analysis/1439723523/"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: 19b1c577c41c8d4ac540d166b34a6eac",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838108",
"to_ids": true,
"type": "sha256",
"uuid": "55fff65c-5fd4-4a2c-beab-468f950d210b",
"value": "1239fca834eff1d09dbb6c3ead644dd13e6f259ae6de81d8a06e0d65f45fbe6d"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: 19b1c577c41c8d4ac540d166b34a6eac",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838108",
"to_ids": true,
"type": "sha1",
"uuid": "55fff65c-1428-4d3e-8dca-488b950d210b",
"value": "21a428cb0a3bc4e1e567e0cbb6587063bd9754b6"
},
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838109",
"to_ids": false,
"type": "link",
"uuid": "55fff65d-6f24-433f-bdf9-42d5950d210b",
"value": "https://www.virustotal.com/file/1239fca834eff1d09dbb6c3ead644dd13e6f259ae6de81d8a06e0d65f45fbe6d/analysis/1440838622/"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: 089fe27df0be49a5eaa5d233561105f8",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838109",
"to_ids": true,
"type": "sha256",
"uuid": "55fff65d-7eb4-41bd-bf77-4c4b950d210b",
"value": "259ae388ba8006a57a4c31f46f5ff29bf8d7aa425355950ad9d35b4d20265683"
},
{
"category": "Payload delivery",
"comment": "- Xchecked via VT: 089fe27df0be49a5eaa5d233561105f8",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838109",
"to_ids": true,
"type": "sha1",
"uuid": "55fff65d-dda8-4850-8e2e-449c950d210b",
"value": "8a27a40edd0af9bdf1b467a46f98169dcd90dfe1"
},
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1442838110",
"to_ids": false,
"type": "link",
"uuid": "55fff65e-09e4-4ace-bfe0-4943950d210b",
"value": "https://www.virustotal.com/file/259ae388ba8006a57a4c31f46f5ff29bf8d7aa425355950ad9d35b4d20265683/analysis/1440476438/"
}
]
}
}