adulau/misp-circl-feed
1
0
Fork 0
Code Issues 1 Pull requests Projects 1 Releases Packages Wiki Activity Actions
misp-circl-feed/feeds/circl/misp/5797537b-6d80-4d28-ab2a-4d8a950d210f.json

2075 lines
No EOL
77 KiB
JSON
Raw Blame History

{
"Event": {
"analysis": "2",
"date": "2016-07-26",
"extends_uuid": "",
"info": "OSINT - Patchwork cyberespionage group expands targets from governments to wide range of industries",
"publish_timestamp": "1469536630",
"published": true,
"threat_level_id": "2",
"timestamp": "1469536140",
"uuid": "5797537b-6d80-4d28-ab2a-4d8a950d210f",
"Orgc": {
"name": "CIRCL",
"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f"
},
"Tag": [
{
"colour": "#004646",
"name": "type:OSINT"
},
{
"colour": "#ffffff",
"name": "tlp:white"
}
],
"Attribute": [
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535326",
"to_ids": false,
"type": "comment",
"uuid": "5797545e-48c4-4130-963a-452b950d210f",
"value": "The Patchwork attack group has been targeting more than just government-associated organizations. Our research into the group found that it\u00e2\u20ac\u2122s been attacking a broad range of industries, including aviation, broadcasting, and finance, to drop back door Trojans.\r\n\r\nSymantec Security Response has been actively monitoring Patchwork, also known as Dropping Elephant, which uses Chinese-themed content as bait to compromise its targets\u00e2\u20ac\u2122 networks. Two security companies, Cymmetria and Kaspersky, each recently released reports on the campaign, most of which are in line with our observations."
},
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535339",
"to_ids": false,
"type": "link",
"uuid": "5797546b-bc80-4eb2-9610-4608950d210f",
"value": "http://www.symantec.com/connect/blogs/patchwork-cyberespionage-group-expands-targets-governments-wide-range-industries"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535367",
"to_ids": true,
"type": "domain",
"uuid": "57975487-55f4-4f19-9708-4f0f950d210f",
"value": "chinastrats.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535368",
"to_ids": true,
"type": "domain",
"uuid": "57975488-80cc-487c-8601-4039950d210f",
"value": "epg-cn.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535368",
"to_ids": true,
"type": "domain",
"uuid": "57975488-1184-4a33-9efa-4217950d210f",
"value": "extremebolt.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535368",
"to_ids": true,
"type": "domain",
"uuid": "57975488-13dc-4105-a595-4d90950d210f",
"value": "info81.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535368",
"to_ids": true,
"type": "domain",
"uuid": "57975488-79c8-4733-94f5-4dac950d210f",
"value": "lujunxinxi.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535369",
"to_ids": true,
"type": "domain",
"uuid": "57975489-c954-4314-aaf3-4b0a950d210f",
"value": "militaryworkerscn.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535369",
"to_ids": true,
"type": "domain",
"uuid": "57975489-1298-4c90-8d6b-4d23950d210f",
"value": "milresearchcn.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535369",
"to_ids": true,
"type": "domain",
"uuid": "57975489-b4e4-4ccb-9df7-4678950d210f",
"value": "modgovcn.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535369",
"to_ids": true,
"type": "domain",
"uuid": "57975489-d574-43d5-b0cc-45e0950d210f",
"value": "newsnstat.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535369",
"to_ids": true,
"type": "domain",
"uuid": "57975489-1b10-498f-abde-4f4f950d210f",
"value": "nudtcn.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535370",
"to_ids": true,
"type": "domain",
"uuid": "5797548a-e408-4c05-85cf-4ce9950d210f",
"value": "socialfreakzz.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535370",
"to_ids": true,
"type": "domain",
"uuid": "5797548a-ec98-4902-b3a3-450f950d210f",
"value": "81-cn.net"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535370",
"to_ids": true,
"type": "domain",
"uuid": "5797548a-eb9c-47fc-9d02-4295950d210f",
"value": "cnmilit.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535370",
"to_ids": true,
"type": "domain",
"uuid": "5797548a-f4e0-401e-8c1c-4d27950d210f",
"value": "nduformation.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535371",
"to_ids": true,
"type": "domain",
"uuid": "5797548b-90c0-4765-9180-43a4950d210f",
"value": "expatchina.info"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535371",
"to_ids": true,
"type": "domain",
"uuid": "5797548b-2114-426f-acc5-4a35950d210f",
"value": "climaxcn.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535371",
"to_ids": true,
"type": "domain",
"uuid": "5797548b-49dc-4677-8f01-43d0950d210f",
"value": "miltechcn.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535371",
"to_ids": true,
"type": "domain",
"uuid": "5797548b-d3a8-4737-8d88-4f2f950d210f",
"value": "miltechweb.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535371",
"to_ids": true,
"type": "domain",
"uuid": "5797548b-5664-4229-8207-40f0950d210f",
"value": "securematrixx.com"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535372",
"to_ids": true,
"type": "ip-dst",
"uuid": "5797548c-b6b4-49d3-9578-4ce1950d210f",
"value": "46.166.163.242"
},
{
"category": "Network activity",
"comment": "Suspected domains and IP addresses",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535372",
"to_ids": true,
"type": "ip-dst",
"uuid": "5797548c-97d8-41aa-a48d-4e3e950d210f",
"value": "212.129.13.110"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535408",
"to_ids": true,
"type": "md5",
"uuid": "579754b0-2d60-4fe7-9b65-47b7950d210f",
"value": "0bbff4654d0c4551c58376e6a99dfda0"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535408",
"to_ids": true,
"type": "md5",
"uuid": "579754b0-bd24-485a-ac9a-4dcf950d210f",
"value": "1de10c5bc704d3eaf4f0cfa5ddd63f2d"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535409",
"to_ids": true,
"type": "filename",
"uuid": "579754b1-1404-4402-929e-406f950d210f",
"value": "MilitaryReforms2.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535409",
"to_ids": true,
"type": "md5",
"uuid": "579754b1-80f8-43c8-8a81-4823950d210f",
"value": "2ba26a9cc1af4479e99dcc6a0e7d5d67"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535409",
"to_ids": true,
"type": "filename",
"uuid": "579754b1-1320-4c86-a327-4dff950d210f",
"value": "2016_China_Military_PowerReport.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535409",
"to_ids": true,
"type": "md5",
"uuid": "579754b1-1ad4-4ecd-b2b9-4aa0950d210f",
"value": "375f240df2718fc3e0137e109eef57ee"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535409",
"to_ids": true,
"type": "filename",
"uuid": "579754b1-cc2c-453e-b03a-42e1950d210f",
"value": "PLA_UAV_DEPLOYMENT.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535410",
"to_ids": true,
"type": "md5",
"uuid": "579754b2-f8ac-4e35-bfd9-44e9950d210f",
"value": "38e71afcdd6236ac3ad24bda393a81c6"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535410",
"to_ids": true,
"type": "filename",
"uuid": "579754b2-636c-4fcb-81bc-4100950d210f",
"value": "militarizationofsouthchinasea_1.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535410",
"to_ids": true,
"type": "md5",
"uuid": "579754b2-f9ac-4534-8463-4ce6950d210f",
"value": "3e9d1526addf2ca6b09e2fdb5fd4978f"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535410",
"to_ids": true,
"type": "filename",
"uuid": "579754b2-f880-4580-831f-43cd950d210f",
"value": "How_to_easily_clean_an_infected_computer.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535411",
"to_ids": true,
"type": "md5",
"uuid": "579754b3-9718-44dc-98c2-4abf950d210f",
"value": "475c29ed9373e2c04b7c3df6766761eb"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535411",
"to_ids": true,
"type": "filename",
"uuid": "579754b3-fb10-47ef-ab33-47cb950d210f",
"value": "PLA_Forthcoming_Revolution_in_Doctrinal_Affairs.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535411",
"to_ids": true,
"type": "md5",
"uuid": "579754b3-a724-41f5-9bf7-4503950d210f",
"value": "4dbb8ad1776af25a5832e92b12d4bfff"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535411",
"to_ids": true,
"type": "filename",
"uuid": "579754b3-54ec-4599-a1b7-4ef8950d210f",
"value": "maritime_dispute.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535411",
"to_ids": true,
"type": "filename",
"uuid": "579754b3-fd88-46cc-9d02-4d11950d210f",
"value": "Clingendael_Report_South_China_Sea.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535411",
"to_ids": true,
"type": "md5",
"uuid": "579754b3-b1cc-4d29-86ad-4a44950d210f",
"value": "543d402a56406c93b68622a7e392728d"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535412",
"to_ids": true,
"type": "md5",
"uuid": "579754b4-5ea0-40b6-9cdc-411f950d210f",
"value": "551e244aa85b92fe470ed2eac9d8808a"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535412",
"to_ids": true,
"type": "filename",
"uuid": "579754b4-0858-4899-8bbe-4f5f950d210f",
"value": "Assessing_PLA_Organisational_Reforms.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535412",
"to_ids": true,
"type": "md5",
"uuid": "579754b4-cfb8-4815-8b90-4016950d210f",
"value": "6877e60f141793287169125a08e36941"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535412",
"to_ids": true,
"type": "md5",
"uuid": "579754b4-3b54-432e-b090-459f950d210f",
"value": "6d8534597ae05d2151d848d2e6427f9e"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535412",
"to_ids": true,
"type": "filename",
"uuid": "579754b4-f750-4210-bc24-45c8950d210f",
"value": "cn-lshc-hospital-operations-excellence.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535413",
"to_ids": true,
"type": "md5",
"uuid": "579754b5-6f04-4abf-9639-473e950d210f",
"value": "74fea3e542add0f301756581d1f16126"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535413",
"to_ids": true,
"type": "filename",
"uuid": "579754b5-c370-47c2-b672-4d89950d210f",
"value": "Clingendael_Report_South_China_Sea_20160517Downloaded.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535413",
"to_ids": true,
"type": "md5",
"uuid": "579754b5-e3c4-4a8f-a7b8-46df950d210f",
"value": "812a856288a03787d85d2cb9c1e1b3ba"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535413",
"to_ids": true,
"type": "md5",
"uuid": "579754b5-69fc-4154-897a-47a9950d210f",
"value": "8f7b1f320823893e159f6ebfb8ce3e78"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535413",
"to_ids": true,
"type": "md5",
"uuid": "579754b5-ed8c-42bd-86e8-47c5950d210f",
"value": "b163e3906b3521a407910aeefd055f03"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535414",
"to_ids": true,
"type": "filename",
"uuid": "579754b6-5460-4ef7-a6f4-4dd5950d210f",
"value": "china_security_report_2016.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535414",
"to_ids": true,
"type": "md5",
"uuid": "579754b6-0118-4d82-ba1e-49db950d210f",
"value": "d456bbf44d73b1f0f2d1119f16993e93"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535414",
"to_ids": true,
"type": "md5",
"uuid": "579754b6-3ffc-45bd-8b8a-4344950d210f",
"value": "e7b4511cba3bba6983c43c9f9014a49d"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535414",
"to_ids": true,
"type": "filename",
"uuid": "579754b6-797c-4fbd-91b8-4057950d210f",
"value": "netflix2.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535414",
"to_ids": true,
"type": "md5",
"uuid": "579754b6-1e1c-43fa-8b42-4ca5950d210f",
"value": "ebfa776a91de20674a4ae55294d85087"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535415",
"to_ids": true,
"type": "filename",
"uuid": "579754b7-50d0-4d62-ac9c-4f14950d210f",
"value": "Chinese_Influence_Faces_2.pps"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535415",
"to_ids": true,
"type": "md5",
"uuid": "579754b7-c928-4998-a79e-4656950d210f",
"value": "eefcef704b1a7bea6e92dc8711cfd35e"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535415",
"to_ids": true,
"type": "filename",
"uuid": "579754b7-2f7c-467f-981d-4a13950d210f",
"value": "Top_Five_AF.pps"
},
{
"category": "Payload delivery",
"comment": "Malicious rich text files associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469536012",
"to_ids": true,
"type": "filename|md5",
"uuid": "57975522-8fec-4fcf-b790-4706950d210f",
"value": "China_Vietnam_Military_Clash.doc|3d852dea971ced1481169d8f66542dc5"
},
{
"category": "Payload delivery",
"comment": "Malicious rich text files associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469536043",
"to_ids": true,
"type": "filename|md5",
"uuid": "57975522-78e4-4b54-bec3-4e31950d210f",
"value": "Cyber_Crime_bill.doc|4ff89d5341ac36eb9bed79e7afe04cb3"
},
{
"category": "Payload delivery",
"comment": "Malicious rich text files associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469536058",
"to_ids": true,
"type": "filename|md5",
"uuid": "57975522-7a64-4c5f-abd5-4f70950d210f",
"value": "china_report_EN_web_2016_A01.doc|7012f07e82092ab2daede774b9000d64"
},
{
"category": "Payload delivery",
"comment": "Malicious rich text files associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469536124",
"to_ids": true,
"type": "filename|md5",
"uuid": "57975523-6350-4969-b6f0-4365950d210f",
"value": "Cyber_Crime_bill.doc|735f0fbe44b70e184665aed8d1b2c117"
},
{
"category": "Payload delivery",
"comment": "Malicious rich text files associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469536140",
"to_ids": true,
"type": "filename|md5",
"uuid": "57975523-b260-4521-aacc-43cf950d210f",
"value": "PLA_Forthcoming_Revolution_in_Doctrinal_Affairs2.doc|e5685462d8a2825e124193de9fa269d9"
},
{
"category": "Payload delivery",
"comment": "Malicious rich text files associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469536030",
"to_ids": true,
"type": "filename|md5",
"uuid": "57975524-c948-489f-bb6b-45e7950d210f",
"value": "Job_offers.doc|f5c81526acbd830da2f533ae93deb1e1"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535550",
"to_ids": true,
"type": "md5",
"uuid": "5797553e-6cbc-4c5e-a603-4450950d210f",
"value": "2099fcd4a81817171649cb38dac0fb2a"
},
{
"category": "Antivirus detection",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535586",
"to_ids": false,
"type": "text",
"uuid": "5797553e-1cfc-4120-9569-42a3950d210f",
"value": "Trojan.Mdropper"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535551",
"to_ids": true,
"type": "md5",
"uuid": "5797553f-0dd4-43d4-915c-4b92950d210f",
"value": "3d852dea971ced1481169d8f66542dc5"
},
{
"category": "Payload delivery",
"comment": "Malicious rich text files associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535928",
"to_ids": true,
"type": "filename",
"uuid": "5797553f-9bc4-4955-8bd0-4741950d210f",
"value": "China_Vietnam_Military_Clash.doc"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535551",
"to_ids": true,
"type": "md5",
"uuid": "5797553f-dbd4-4e64-b7d8-42b3950d210f",
"value": "4ff89d5341ac36eb9bed79e7afe04cb3"
},
{
"category": "Payload delivery",
"comment": "Malicious rich text files associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535958",
"to_ids": true,
"type": "filename",
"uuid": "5797553f-9e30-42e2-9ab6-49d5950d210f",
"value": "Cyber_Crime_bill.doc"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535552",
"to_ids": true,
"type": "md5",
"uuid": "57975540-f9f0-4e3c-b3e5-49e5950d210f",
"value": "7012f07e82092ab2daede774b9000d64"
},
{
"category": "Payload delivery",
"comment": "Malicious rich text files associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535975",
"to_ids": true,
"type": "filename",
"uuid": "57975540-936c-4984-aa17-4fe2950d210f",
"value": "china_report_EN_web_2016_A01.doc"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535552",
"to_ids": true,
"type": "md5",
"uuid": "57975540-46b8-4c36-bd7b-44ee950d210f",
"value": "735f0fbe44b70e184665aed8d1b2c117"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535552",
"to_ids": true,
"type": "md5",
"uuid": "57975540-92dc-4936-95fc-4c0b950d210f",
"value": "7796ae46da0049057abd5cfb9798e494"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535552",
"to_ids": true,
"type": "md5",
"uuid": "57975540-284c-4836-9ae1-4477950d210f",
"value": "e5685462d8a2825e124193de9fa269d9"
},
{
"category": "Payload delivery",
"comment": "Malicious rich text files associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535996",
"to_ids": true,
"type": "filename",
"uuid": "57975541-f388-482a-8f7c-4a8b950d210f",
"value": "PLA_Forthcoming_Revolution_in_Doctrinal_Affairs2.doc"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535553",
"to_ids": true,
"type": "md5",
"uuid": "57975541-0034-456e-a724-4682950d210f",
"value": "f5c81526acbd830da2f533ae93deb1e1"
},
{
"category": "Payload delivery",
"comment": "Backdoor.Steladok",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535675",
"to_ids": true,
"type": "md5",
"uuid": "579755bb-6b1c-452d-a99d-46d9950d210f",
"value": "0f09e24a8d57fb8b1a8cc51c07ebbe3f"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535675",
"to_ids": true,
"type": "md5",
"uuid": "579755bb-d34c-4ea5-b16f-4054950d210f",
"value": "233a71ea802af564dd1ab38e62236633"
},
{
"category": "Payload delivery",
"comment": "Backdoor.Steladok",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535675",
"to_ids": true,
"type": "md5",
"uuid": "579755bb-ebf0-4a6b-acd2-41c2950d210f",
"value": "2c0efa57eeffed228eb09ee97df1445a"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535675",
"to_ids": true,
"type": "md5",
"uuid": "579755bb-b370-42d7-982c-462e950d210f",
"value": "3ac28869c83d20f9b18ebbd9ea3a9155"
},
{
"category": "Payload delivery",
"comment": "Trojan.Gen.2",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535676",
"to_ids": true,
"type": "md5",
"uuid": "579755bc-f610-4f11-ac9f-446d950d210f",
"value": "465de3db14158005ede000f7c0f16efe"
},
{
"category": "Payload delivery",
"comment": "Trojan.Gen.2",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535676",
"to_ids": true,
"type": "md5",
"uuid": "579755bc-19b8-46b0-acff-4853950d210f",
"value": "4fca01f852410ea1413a876df339a36d"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535676",
"to_ids": true,
"type": "md5",
"uuid": "579755bc-a5a4-4cca-a4bc-4bcd950d210f",
"value": "61e0f4ecb3d7c56ea06b8f609fd2bf13"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535676",
"to_ids": true,
"type": "md5",
"uuid": "579755bc-1070-44a2-a90e-4a1f950d210f",
"value": "6b335a77203b566d92c726b939b8d8c9"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535676",
"to_ids": true,
"type": "md5",
"uuid": "579755bc-51dc-4d84-b24e-4cc4950d210f",
"value": "a4fb5a6765cb8a30a8393d608c39d9f7"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535677",
"to_ids": true,
"type": "md5",
"uuid": "579755bd-5984-48c1-b927-4c8c950d210f",
"value": "b594a4d3f7183c3af155375f81ad6c3d"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535677",
"to_ids": true,
"type": "md5",
"uuid": "579755bd-69b8-489b-8feb-4b2a950d210f",
"value": "b7433c57a7111457506f85bdf6592d18"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535677",
"to_ids": true,
"type": "md5",
"uuid": "579755bd-71dc-48e6-ba41-41f0950d210f",
"value": "c575f9b40cf6e6141f0ee40c8a544fb8"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535677",
"to_ids": true,
"type": "md5",
"uuid": "579755bd-fec0-4c03-bb7b-4f68950d210f",
"value": "d8102a24ca00ef3db7d942912765441e"
},
{
"category": "Payload delivery",
"comment": "Backdoor.Steladok",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535678",
"to_ids": true,
"type": "md5",
"uuid": "579755be-7e90-42e7-a6d5-4636950d210f",
"value": "f47484e6705e52a115a3684832296b39"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535678",
"to_ids": true,
"type": "md5",
"uuid": "579755be-e658-4d2a-b859-4f19950d210f",
"value": "f7ce9894c1c99ce64455155377446d9c"
},
{
"category": "Payload delivery",
"comment": "infostealer",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535678",
"to_ids": true,
"type": "md5",
"uuid": "579755be-8bd0-4350-ac3e-41d9950d210f",
"value": "ffab6174860af9a7c3b37a7f1fb8f381"
},
{
"category": "Payload delivery",
"comment": "Backdoor.Steladok - Xchecked via VT: f47484e6705e52a115a3684832296b39",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535762",
"to_ids": true,
"type": "sha256",
"uuid": "57975612-65b0-4380-b001-462902de0b81",
"value": "e0d32df8cc527f8a183550456e3ec5bac6d4aa86576605bb1b770648b1c101b5"
},
{
"category": "Payload delivery",
"comment": "Backdoor.Steladok - Xchecked via VT: f47484e6705e52a115a3684832296b39",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535762",
"to_ids": true,
"type": "sha1",
"uuid": "57975612-425c-48cd-8b21-4efe02de0b81",
"value": "b362d1d91ed93eebb03d240553153f2148209d3a"
},
{
"category": "External analysis",
"comment": "Backdoor.Steladok - Xchecked via VT: f47484e6705e52a115a3684832296b39",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535763",
"to_ids": false,
"type": "link",
"uuid": "57975613-f958-4d4a-ab36-46ae02de0b81",
"value": "https://www.virustotal.com/file/e0d32df8cc527f8a183550456e3ec5bac6d4aa86576605bb1b770648b1c101b5/analysis/1469513487/"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks - Xchecked via VT: d8102a24ca00ef3db7d942912765441e",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535763",
"to_ids": true,
"type": "sha256",
"uuid": "57975613-b504-4b7d-a762-4b6102de0b81",
"value": "56bad93d98a01a820555357beb03a691f523ebb289b9c821ad85ee65137d29f9"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks - Xchecked via VT: d8102a24ca00ef3db7d942912765441e",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535763",
"to_ids": true,
"type": "sha1",
"uuid": "57975613-5a9c-42ee-9f80-4deb02de0b81",
"value": "83a5074c677a96f1c9f67b758e5e399e401dde41"
},
{
"category": "External analysis",
"comment": "Backodor.Enfourks - Xchecked via VT: d8102a24ca00ef3db7d942912765441e",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535763",
"to_ids": false,
"type": "link",
"uuid": "57975613-c2e0-43fb-b3c3-4e8602de0b81",
"value": "https://www.virustotal.com/file/56bad93d98a01a820555357beb03a691f523ebb289b9c821ad85ee65137d29f9/analysis/1469513480/"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks - Xchecked via VT: c575f9b40cf6e6141f0ee40c8a544fb8",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535763",
"to_ids": true,
"type": "sha256",
"uuid": "57975613-95bc-4ccc-a774-4eaa02de0b81",
"value": "f65eeb136e23d06b54b15834ad15d4bcd2cd51af9e8c134da32da02bdcb68996"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks - Xchecked via VT: c575f9b40cf6e6141f0ee40c8a544fb8",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535764",
"to_ids": true,
"type": "sha1",
"uuid": "57975614-81f4-4181-b51c-47fb02de0b81",
"value": "d09ed8c4b5ad43fb4a6d13a96c2cd083b8795692"
},
{
"category": "External analysis",
"comment": "Backodor.Enfourks - Xchecked via VT: c575f9b40cf6e6141f0ee40c8a544fb8",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535764",
"to_ids": false,
"type": "link",
"uuid": "57975614-8080-45c1-b7fe-428b02de0b81",
"value": "https://www.virustotal.com/file/f65eeb136e23d06b54b15834ad15d4bcd2cd51af9e8c134da32da02bdcb68996/analysis/1469513481/"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks - Xchecked via VT: b7433c57a7111457506f85bdf6592d18",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535764",
"to_ids": true,
"type": "sha256",
"uuid": "57975614-afe4-4a8a-86b1-4c3e02de0b81",
"value": "1da99f69735d203a3d52ff1bb2ede75fe69601259efa6c5a080024ddf9276297"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks - Xchecked via VT: b7433c57a7111457506f85bdf6592d18",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535764",
"to_ids": true,
"type": "sha1",
"uuid": "57975614-bc0c-4000-90c0-4afa02de0b81",
"value": "e0970cd442808dd54cfe3427acee4e1bee0aea17"
},
{
"category": "External analysis",
"comment": "Backodor.Enfourks - Xchecked via VT: b7433c57a7111457506f85bdf6592d18",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535765",
"to_ids": false,
"type": "link",
"uuid": "57975615-1430-4a30-8e24-4e4702de0b81",
"value": "https://www.virustotal.com/file/1da99f69735d203a3d52ff1bb2ede75fe69601259efa6c5a080024ddf9276297/analysis/1468241922/"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks - Xchecked via VT: b594a4d3f7183c3af155375f81ad6c3d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535765",
"to_ids": true,
"type": "sha256",
"uuid": "57975615-0140-4dd2-8102-421402de0b81",
"value": "49d08ff05bbe4a77e748dc8903b9d976a9b2176054ddfaf684c5699e84204f30"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks - Xchecked via VT: b594a4d3f7183c3af155375f81ad6c3d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535765",
"to_ids": true,
"type": "sha1",
"uuid": "57975615-d198-418b-b3bd-46ae02de0b81",
"value": "67d9965c91e96f516de76591e6be651b344095a6"
},
{
"category": "External analysis",
"comment": "Backodor.Enfourks - Xchecked via VT: b594a4d3f7183c3af155375f81ad6c3d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535765",
"to_ids": false,
"type": "link",
"uuid": "57975615-849c-411d-8a60-4e7f02de0b81",
"value": "https://www.virustotal.com/file/49d08ff05bbe4a77e748dc8903b9d976a9b2176054ddfaf684c5699e84204f30/analysis/1469513481/"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks - Xchecked via VT: a4fb5a6765cb8a30a8393d608c39d9f7",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535765",
"to_ids": true,
"type": "sha256",
"uuid": "57975615-cb30-494b-9f14-499402de0b81",
"value": "f5e4d5d5fde978968dce4db4120ecbb68898d5fdf55860e61058d91db29b7d91"
},
{
"category": "Payload delivery",
"comment": "Backodor.Enfourks - Xchecked via VT: a4fb5a6765cb8a30a8393d608c39d9f7",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535766",
"to_ids": true,
"type": "sha1",
"uuid": "57975616-9c80-4a73-85e1-4aac02de0b81",
"value": "8daa2f782e8af92747cfce5d9323653050dbd498"
},
{
"category": "External analysis",
"comment": "Backodor.Enfourks - Xchecked via VT: a4fb5a6765cb8a30a8393d608c39d9f7",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535766",
"to_ids": false,
"type": "link",
"uuid": "57975616-61bc-4a41-89b4-405402de0b81",
"value": "https://www.virustotal.com/file/f5e4d5d5fde978968dce4db4120ecbb68898d5fdf55860e61058d91db29b7d91/analysis/1469513481/"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: f5c81526acbd830da2f533ae93deb1e1",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535766",
"to_ids": true,
"type": "sha256",
"uuid": "57975616-8828-497c-a363-4cf102de0b81",
"value": "79293f3cfa2af27b9d5d2d7afa1d3febb8a02f7480491b0a8afb6eea0d10faab"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: f5c81526acbd830da2f533ae93deb1e1",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535766",
"to_ids": true,
"type": "sha1",
"uuid": "57975616-7c9c-438d-99ef-4bda02de0b81",
"value": "f7d9e0c7714578eb29716c1d2f49ef0defbf112a"
},
{
"category": "External analysis",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: f5c81526acbd830da2f533ae93deb1e1",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535766",
"to_ids": false,
"type": "link",
"uuid": "57975617-11d4-4822-952a-4c8b02de0b81",
"value": "https://www.virustotal.com/file/79293f3cfa2af27b9d5d2d7afa1d3febb8a02f7480491b0a8afb6eea0d10faab/analysis/1464792591/"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 7796ae46da0049057abd5cfb9798e494",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535767",
"to_ids": true,
"type": "sha256",
"uuid": "57975617-c5c0-4363-af59-439f02de0b81",
"value": "53429895e699445a717e75ce3539c5b0b3be42b375f518d5c7759bd1c8b48291"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 7796ae46da0049057abd5cfb9798e494",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535767",
"to_ids": true,
"type": "sha1",
"uuid": "57975617-4c60-4cfe-a93b-454902de0b81",
"value": "478a41f254bb7b85e8ae5ac53757fc220e3ab91c"
},
{
"category": "External analysis",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 7796ae46da0049057abd5cfb9798e494",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535767",
"to_ids": false,
"type": "link",
"uuid": "57975617-7150-4f06-88d6-4c8402de0b81",
"value": "https://www.virustotal.com/file/53429895e699445a717e75ce3539c5b0b3be42b375f518d5c7759bd1c8b48291/analysis/1469513478/"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 735f0fbe44b70e184665aed8d1b2c117",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535767",
"to_ids": true,
"type": "sha256",
"uuid": "57975617-7704-4e28-a60f-4f5802de0b81",
"value": "34cdfc67942060ba30c1b9ac1db9bd042f0f8e487b805b8a3e1935b4d2508db6"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 735f0fbe44b70e184665aed8d1b2c117",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535768",
"to_ids": true,
"type": "sha1",
"uuid": "57975618-e68c-4d7f-9fb2-4c6e02de0b81",
"value": "11064dcef86ac1d94c170b24215854efb8aad542"
},
{
"category": "External analysis",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 735f0fbe44b70e184665aed8d1b2c117",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535768",
"to_ids": false,
"type": "link",
"uuid": "57975618-9258-47a9-a454-48a602de0b81",
"value": "https://www.virustotal.com/file/34cdfc67942060ba30c1b9ac1db9bd042f0f8e487b805b8a3e1935b4d2508db6/analysis/1469513478/"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 7012f07e82092ab2daede774b9000d64",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535768",
"to_ids": true,
"type": "sha256",
"uuid": "57975618-36f4-4f47-8b24-403b02de0b81",
"value": "ebd4f62bb85f6de1111cbd613d2d4288728732edda9eb427fe9f51bd1f2d6db2"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 7012f07e82092ab2daede774b9000d64",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535768",
"to_ids": true,
"type": "sha1",
"uuid": "57975618-cd48-4abe-a930-4fa702de0b81",
"value": "1e39ff194c72c74c893b7fd9f9d0e7205c5da115"
},
{
"category": "External analysis",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 7012f07e82092ab2daede774b9000d64",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535768",
"to_ids": false,
"type": "link",
"uuid": "57975618-e028-4a85-b372-46ff02de0b81",
"value": "https://www.virustotal.com/file/ebd4f62bb85f6de1111cbd613d2d4288728732edda9eb427fe9f51bd1f2d6db2/analysis/1469513485/"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 4ff89d5341ac36eb9bed79e7afe04cb3",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535769",
"to_ids": true,
"type": "sha256",
"uuid": "57975619-2f38-410e-9bc8-47b502de0b81",
"value": "20785552d82d461f5b4e480dcf51180e3f7b5d3e7286720f861e7ccfe8a2b067"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 4ff89d5341ac36eb9bed79e7afe04cb3",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535769",
"to_ids": true,
"type": "sha1",
"uuid": "57975619-4d90-4f30-a0a5-41cd02de0b81",
"value": "9034c8bfac8385a29f979b1601896c6edb0113b2"
},
{
"category": "External analysis",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 4ff89d5341ac36eb9bed79e7afe04cb3",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535769",
"to_ids": false,
"type": "link",
"uuid": "57975619-b630-46a2-b7d5-4eeb02de0b81",
"value": "https://www.virustotal.com/file/20785552d82d461f5b4e480dcf51180e3f7b5d3e7286720f861e7ccfe8a2b067/analysis/1469513477/"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 3d852dea971ced1481169d8f66542dc5",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535769",
"to_ids": true,
"type": "sha256",
"uuid": "57975619-9734-4819-92b7-40bb02de0b81",
"value": "0f245244a86a8b36292bc8b0a12b982e2ea366f36256223f8f9bcba37f335fc9"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 3d852dea971ced1481169d8f66542dc5",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535769",
"to_ids": true,
"type": "sha1",
"uuid": "57975619-fee8-47c0-b4c7-444302de0b81",
"value": "5de78801847fe63ce66cf23f3ff3d25a28e2c6fe"
},
{
"category": "External analysis",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 3d852dea971ced1481169d8f66542dc5",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535769",
"to_ids": false,
"type": "link",
"uuid": "57975619-cb00-47d2-a913-474902de0b81",
"value": "https://www.virustotal.com/file/0f245244a86a8b36292bc8b0a12b982e2ea366f36256223f8f9bcba37f335fc9/analysis/1469513489/"
},
{
"category": "Payload delivery",
"comment": "Backdoor.Steladok - Xchecked via VT: 0f09e24a8d57fb8b1a8cc51c07ebbe3f",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535770",
"to_ids": true,
"type": "sha256",
"uuid": "5797561a-ecb4-4e39-b4b0-497502de0b81",
"value": "5b7fdc320e108e58045f210360c0f9486beab37860df605da01deddca9950f1d"
},
{
"category": "Payload delivery",
"comment": "Backdoor.Steladok - Xchecked via VT: 0f09e24a8d57fb8b1a8cc51c07ebbe3f",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535770",
"to_ids": true,
"type": "sha1",
"uuid": "5797561a-f660-4183-beaa-434a02de0b81",
"value": "3b2af1a6dbec193a647d97c4bfaf21f562c27258"
},
{
"category": "External analysis",
"comment": "Backdoor.Steladok - Xchecked via VT: 0f09e24a8d57fb8b1a8cc51c07ebbe3f",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535770",
"to_ids": false,
"type": "link",
"uuid": "5797561a-4384-4105-9709-41d202de0b81",
"value": "https://www.virustotal.com/file/5b7fdc320e108e58045f210360c0f9486beab37860df605da01deddca9950f1d/analysis/1469513486/"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 2099fcd4a81817171649cb38dac0fb2a",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535770",
"to_ids": true,
"type": "sha256",
"uuid": "5797561a-bcd4-4f5a-9a0f-4e2e02de0b81",
"value": "e9a930f839dbf4a7bdb72278d14fb8d18f5d56a492e4f9aa60b7b79777d3b2b7"
},
{
"category": "Payload delivery",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 2099fcd4a81817171649cb38dac0fb2a",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535770",
"to_ids": true,
"type": "sha1",
"uuid": "5797561a-949c-47da-a5d4-45ef02de0b81",
"value": "9cdbb41f83854ea4827c83ad9809ed0210566fbc"
},
{
"category": "External analysis",
"comment": "Malicious PowerPoint slides associated with this campaign - Xchecked via VT: 2099fcd4a81817171649cb38dac0fb2a",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535771",
"to_ids": false,
"type": "link",
"uuid": "5797561b-bf64-435a-aa1d-44fc02de0b81",
"value": "https://www.virustotal.com/file/e9a930f839dbf4a7bdb72278d14fb8d18f5d56a492e4f9aa60b7b79777d3b2b7/analysis/1462697573/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: ebfa776a91de20674a4ae55294d85087",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535771",
"to_ids": true,
"type": "sha256",
"uuid": "5797561b-df04-4922-8bf7-47db02de0b81",
"value": "db9ecff4368cf87406a0d64ccffd0df72ab875526acf1d1fe0957c9bacacbdeb"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: ebfa776a91de20674a4ae55294d85087",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535771",
"to_ids": true,
"type": "sha1",
"uuid": "5797561b-18e8-42ef-9990-4c6202de0b81",
"value": "f3c9c62869c87fe177a69271b9e7f2b5aabcd66c"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: ebfa776a91de20674a4ae55294d85087",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535771",
"to_ids": false,
"type": "link",
"uuid": "5797561b-fd14-472d-b2e1-4a9c02de0b81",
"value": "https://www.virustotal.com/file/db9ecff4368cf87406a0d64ccffd0df72ab875526acf1d1fe0957c9bacacbdeb/analysis/1469513478/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: e7b4511cba3bba6983c43c9f9014a49d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535771",
"to_ids": true,
"type": "sha256",
"uuid": "5797561b-0854-458e-a43f-429202de0b81",
"value": "2f6ed134adf8d29dd9e25b8f8f863389742dd5ff6d9104329c2fecb66b9e1604"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: e7b4511cba3bba6983c43c9f9014a49d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535772",
"to_ids": true,
"type": "sha1",
"uuid": "5797561c-1de4-433b-b56c-4c3f02de0b81",
"value": "3081aa58cc3d14e557f49f7b3ce4247b0935c6b5"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: e7b4511cba3bba6983c43c9f9014a49d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535772",
"to_ids": false,
"type": "link",
"uuid": "5797561c-4704-4043-80bd-47d602de0b81",
"value": "https://www.virustotal.com/file/2f6ed134adf8d29dd9e25b8f8f863389742dd5ff6d9104329c2fecb66b9e1604/analysis/1469513485/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: d456bbf44d73b1f0f2d1119f16993e93",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535772",
"to_ids": true,
"type": "sha256",
"uuid": "5797561c-e7c4-4aa8-8a6c-45dd02de0b81",
"value": "77c234943878d1e16d508f439b3e4bc2eab17eb68df9a297940dfd58ae0c7300"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: d456bbf44d73b1f0f2d1119f16993e93",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535772",
"to_ids": true,
"type": "sha1",
"uuid": "5797561c-34c0-462c-9791-430f02de0b81",
"value": "c1c723b0d162569224327d888dd9c8096918e49a"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: d456bbf44d73b1f0f2d1119f16993e93",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535773",
"to_ids": false,
"type": "link",
"uuid": "5797561d-e710-4d6d-9f37-44e102de0b81",
"value": "https://www.virustotal.com/file/77c234943878d1e16d508f439b3e4bc2eab17eb68df9a297940dfd58ae0c7300/analysis/1469513484/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: b163e3906b3521a407910aeefd055f03",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535773",
"to_ids": true,
"type": "sha256",
"uuid": "5797561d-7a90-4124-ac02-4e3702de0b81",
"value": "8b486336c770a5fd006b4d56c11d58a3a878ff8978c8c97470eec9819f975a60"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: b163e3906b3521a407910aeefd055f03",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535773",
"to_ids": true,
"type": "sha1",
"uuid": "5797561d-1ea8-4a01-ad56-4b8002de0b81",
"value": "cfb33642b702bb4da43aa6842aa657f1ec89b1f6"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: b163e3906b3521a407910aeefd055f03",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535773",
"to_ids": false,
"type": "link",
"uuid": "5797561d-56f0-4f79-b213-402602de0b81",
"value": "https://www.virustotal.com/file/8b486336c770a5fd006b4d56c11d58a3a878ff8978c8c97470eec9819f975a60/analysis/1464771776/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 8f7b1f320823893e159f6ebfb8ce3e78",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535773",
"to_ids": true,
"type": "sha256",
"uuid": "5797561d-bb88-478f-88a7-464c02de0b81",
"value": "ea1f4678e075a3fa4a096dcdf06fa91f1758365525ce47bc5ec580c63f0b917b"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 8f7b1f320823893e159f6ebfb8ce3e78",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535774",
"to_ids": true,
"type": "sha1",
"uuid": "5797561e-34ac-44d6-b0f6-4ca602de0b81",
"value": "6624b1735b83e5529bd4e25f156f14e352081db7"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 8f7b1f320823893e159f6ebfb8ce3e78",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535774",
"to_ids": false,
"type": "link",
"uuid": "5797561e-3688-4a88-af66-496a02de0b81",
"value": "https://www.virustotal.com/file/ea1f4678e075a3fa4a096dcdf06fa91f1758365525ce47bc5ec580c63f0b917b/analysis/1469513476/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 812a856288a03787d85d2cb9c1e1b3ba",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535774",
"to_ids": true,
"type": "sha256",
"uuid": "5797561e-a138-4529-9288-473702de0b81",
"value": "d20ac3fc362e022c7d09ff6808172fd0dce4e90aee4890455723f638ebff78bf"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 812a856288a03787d85d2cb9c1e1b3ba",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535774",
"to_ids": true,
"type": "sha1",
"uuid": "5797561e-a3a8-4bb9-a6fc-4e0402de0b81",
"value": "406c74e8eb89fa7b712a535dd38c79c1afd0c6fe"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 812a856288a03787d85d2cb9c1e1b3ba",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535774",
"to_ids": false,
"type": "link",
"uuid": "5797561e-9ad0-44b0-aa61-414402de0b81",
"value": "https://www.virustotal.com/file/d20ac3fc362e022c7d09ff6808172fd0dce4e90aee4890455723f638ebff78bf/analysis/1469513484/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 74fea3e542add0f301756581d1f16126",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535775",
"to_ids": true,
"type": "sha256",
"uuid": "5797561f-00f4-42c4-8cf4-4aeb02de0b81",
"value": "67d89c788f6c06ef6f8d8d40687b8a2cd611d3990443df58129428bd7b1c7ecf"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 74fea3e542add0f301756581d1f16126",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535775",
"to_ids": true,
"type": "sha1",
"uuid": "5797561f-8fb8-4712-b7e7-4bbb02de0b81",
"value": "d42a7c41968d937b766d93992ae64d816a8a3f6c"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 74fea3e542add0f301756581d1f16126",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535775",
"to_ids": false,
"type": "link",
"uuid": "5797561f-5084-4c7d-a0e4-458102de0b81",
"value": "https://www.virustotal.com/file/67d89c788f6c06ef6f8d8d40687b8a2cd611d3990443df58129428bd7b1c7ecf/analysis/1469513476/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 6877e60f141793287169125a08e36941",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535775",
"to_ids": true,
"type": "sha256",
"uuid": "5797561f-2d6c-40eb-84af-42b702de0b81",
"value": "6f46cdc5d3af821b84c31d2c221e79f2d75c1750d39227aacf0cc5fd059a687d"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 6877e60f141793287169125a08e36941",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535775",
"to_ids": true,
"type": "sha1",
"uuid": "5797561f-0360-4cc5-9264-496e02de0b81",
"value": "7ee94c8279ee4282041a242985922dedd9b184b4"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 6877e60f141793287169125a08e36941",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535775",
"to_ids": false,
"type": "link",
"uuid": "5797561f-ee14-4d1e-b137-405e02de0b81",
"value": "https://www.virustotal.com/file/6f46cdc5d3af821b84c31d2c221e79f2d75c1750d39227aacf0cc5fd059a687d/analysis/1465118345/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 543d402a56406c93b68622a7e392728d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535776",
"to_ids": true,
"type": "sha256",
"uuid": "57975620-fd00-49e6-be32-406502de0b81",
"value": "a042affc1c30c55b22245fd5e84ba9c78c55b1c1ae1d32d941b63d3f68173a8a"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 543d402a56406c93b68622a7e392728d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535776",
"to_ids": true,
"type": "sha1",
"uuid": "57975620-15f4-4d07-acf4-4ecb02de0b81",
"value": "e89483ada29bdb4128b5faeac1f3d632711d552d"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 543d402a56406c93b68622a7e392728d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535776",
"to_ids": false,
"type": "link",
"uuid": "57975620-1794-4b83-9444-4f8002de0b81",
"value": "https://www.virustotal.com/file/a042affc1c30c55b22245fd5e84ba9c78c55b1c1ae1d32d941b63d3f68173a8a/analysis/1469513482/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 4dbb8ad1776af25a5832e92b12d4bfff",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535776",
"to_ids": true,
"type": "sha256",
"uuid": "57975620-152c-4372-86de-495302de0b81",
"value": "037e92c575949a3570ba5097ee058a96deb1be72d521bb18905c9c33d856a100"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 4dbb8ad1776af25a5832e92b12d4bfff",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535776",
"to_ids": true,
"type": "sha1",
"uuid": "57975620-1088-4e9e-be82-4ef702de0b81",
"value": "1ce0ad3556f5866f309e04084d9a230f9f2ce158"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 4dbb8ad1776af25a5832e92b12d4bfff",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535777",
"to_ids": false,
"type": "link",
"uuid": "57975621-2824-43fa-a90f-4b6f02de0b81",
"value": "https://www.virustotal.com/file/037e92c575949a3570ba5097ee058a96deb1be72d521bb18905c9c33d856a100/analysis/1469513482/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 475c29ed9373e2c04b7c3df6766761eb",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535777",
"to_ids": true,
"type": "sha256",
"uuid": "57975621-5ef8-41ce-a4f6-4abb02de0b81",
"value": "e48c5d26028815956956144c9c7ff71676e4e77297e9e60666babd18925dcee3"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 475c29ed9373e2c04b7c3df6766761eb",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535777",
"to_ids": true,
"type": "sha1",
"uuid": "57975621-cbe0-43f2-b50c-414802de0b81",
"value": "1e226c4ca9cb3dd4ccebaa21c890ba5b83f4b8ce"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 475c29ed9373e2c04b7c3df6766761eb",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535777",
"to_ids": false,
"type": "link",
"uuid": "57975621-3f9c-4cf2-b5cb-4dd502de0b81",
"value": "https://www.virustotal.com/file/e48c5d26028815956956144c9c7ff71676e4e77297e9e60666babd18925dcee3/analysis/1469513482/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 3e9d1526addf2ca6b09e2fdb5fd4978f",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535777",
"to_ids": true,
"type": "sha256",
"uuid": "57975621-64c0-4e87-b699-445502de0b81",
"value": "6fa84f3aaba12557129a59501d71f3a9a690e099ae8e3a4a9ec3c4a25c37a493"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 3e9d1526addf2ca6b09e2fdb5fd4978f",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535778",
"to_ids": true,
"type": "sha1",
"uuid": "57975622-7924-40d4-b886-48e402de0b81",
"value": "7d957898fc4323d83ce6b325d403ad62f85463f2"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 3e9d1526addf2ca6b09e2fdb5fd4978f",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535778",
"to_ids": false,
"type": "link",
"uuid": "57975622-e57c-462c-af76-4be302de0b81",
"value": "https://www.virustotal.com/file/6fa84f3aaba12557129a59501d71f3a9a690e099ae8e3a4a9ec3c4a25c37a493/analysis/1469513474/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 38e71afcdd6236ac3ad24bda393a81c6",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535778",
"to_ids": true,
"type": "sha256",
"uuid": "57975622-687c-4cf6-8637-435b02de0b81",
"value": "53a30dfd90bd1208dcfe534ccd0b798d629aa989ccaeae952384cfe9ecb17369"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 38e71afcdd6236ac3ad24bda393a81c6",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535778",
"to_ids": true,
"type": "sha1",
"uuid": "57975622-9068-4870-ab8c-4d8a02de0b81",
"value": "5d61d614731beeb520f767fcbb5afe151341238a"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 38e71afcdd6236ac3ad24bda393a81c6",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535778",
"to_ids": false,
"type": "link",
"uuid": "57975622-3090-4fa5-a399-4ca602de0b81",
"value": "https://www.virustotal.com/file/53a30dfd90bd1208dcfe534ccd0b798d629aa989ccaeae952384cfe9ecb17369/analysis/1469513474/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 375f240df2718fc3e0137e109eef57ee",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535779",
"to_ids": true,
"type": "sha256",
"uuid": "57975623-9840-4ac9-a0d4-487702de0b81",
"value": "8f2340f45861dbc36f8138f5be25ea9109368a31b2d577631f96ff9fff65b26a"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 375f240df2718fc3e0137e109eef57ee",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535779",
"to_ids": true,
"type": "sha1",
"uuid": "57975623-b670-4b49-aaf2-483502de0b81",
"value": "c9dddd6d4858234e1be971c7f66193ea907ac8d8"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 375f240df2718fc3e0137e109eef57ee",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535779",
"to_ids": false,
"type": "link",
"uuid": "57975623-4d64-41f7-a1db-48fe02de0b81",
"value": "https://www.virustotal.com/file/8f2340f45861dbc36f8138f5be25ea9109368a31b2d577631f96ff9fff65b26a/analysis/1469513475/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 2ba26a9cc1af4479e99dcc6a0e7d5d67",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535779",
"to_ids": true,
"type": "sha256",
"uuid": "57975623-24dc-467c-ba30-436702de0b81",
"value": "962ce88813913c907d16b30a1c9f54e6d7281d9c901aa0e11bf6deb9b5ff659a"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 2ba26a9cc1af4479e99dcc6a0e7d5d67",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535779",
"to_ids": true,
"type": "sha1",
"uuid": "57975623-c8c0-4beb-bde6-4f0d02de0b81",
"value": "dcccd7a9886e147ecf01718047e1f911323ca8c9"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 2ba26a9cc1af4479e99dcc6a0e7d5d67",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535780",
"to_ids": false,
"type": "link",
"uuid": "57975624-d77c-4f01-8711-433302de0b81",
"value": "https://www.virustotal.com/file/962ce88813913c907d16b30a1c9f54e6d7281d9c901aa0e11bf6deb9b5ff659a/analysis/1465070384/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 1de10c5bc704d3eaf4f0cfa5ddd63f2d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535780",
"to_ids": true,
"type": "sha256",
"uuid": "57975624-dcc4-408e-b4e3-43b002de0b81",
"value": "09d7cd078a46a33750b002594eb7340af55a1cefe5f4451a8bdfcd6af97449bf"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 1de10c5bc704d3eaf4f0cfa5ddd63f2d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535780",
"to_ids": true,
"type": "sha1",
"uuid": "57975624-aa64-4ab1-ac4e-4b9e02de0b81",
"value": "926162aadd5208b0764c0351074709ecf02bc7b8"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 1de10c5bc704d3eaf4f0cfa5ddd63f2d",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535780",
"to_ids": false,
"type": "link",
"uuid": "57975624-16e4-49aa-9a7a-434702de0b81",
"value": "https://www.virustotal.com/file/09d7cd078a46a33750b002594eb7340af55a1cefe5f4451a8bdfcd6af97449bf/analysis/1469513475/"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 0bbff4654d0c4551c58376e6a99dfda0",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535780",
"to_ids": true,
"type": "sha256",
"uuid": "57975624-ce20-42f4-8932-458102de0b81",
"value": "f671bd2a4f5a4df475c6860bbc8198bcce0e2cf229a596ea169b38cb318a012b"
},
{
"category": "Payload delivery",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 0bbff4654d0c4551c58376e6a99dfda0",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535781",
"to_ids": true,
"type": "sha1",
"uuid": "57975625-937c-40da-bbf0-45ea02de0b81",
"value": "4a575bfe63262d53a765de254f534e830d03f638"
},
{
"category": "External analysis",
"comment": "Imported via the Freetext Import Tool - Xchecked via VT: 0bbff4654d0c4551c58376e6a99dfda0",
"deleted": false,
"disable_correlation": false,
"timestamp": "1469535781",
"to_ids": false,
"type": "link",
"uuid": "57975625-7024-4664-b88b-45a002de0b81",
"value": "https://www.virustotal.com/file/f671bd2a4f5a4df475c6860bbc8198bcce0e2cf229a596ea169b38cb318a012b/analysis/1468316763/"
}
]
}
}
Reference in a new issue View git blame Copy permalink