misp-circl-feed/feeds/circl/misp/57b5adc4-9f48-4cb4-9a0b-4471950d210f.json

282 lines
No EOL
8.4 KiB
JSON

{
"Event": {
"analysis": "0",
"date": "2016-08-18",
"extends_uuid": "",
"info": "Malspam 2016-08-18 (.wsf in .zip) - campaign: \"Emailing: Label\"",
"publish_timestamp": "1471529525",
"published": true,
"threat_level_id": "3",
"timestamp": "1471524564",
"uuid": "57b5adc4-9f48-4cb4-9a0b-4471950d210f",
"Orgc": {
"name": "CIRCL",
"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f"
},
"Tag": [
{
"colour": "#ffffff",
"name": "tlp:white"
},
{
"colour": "#3b7500",
"name": "circl:incident-classification=\"malware\""
}
],
"Attribute": [
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524342",
"to_ids": true,
"type": "url",
"uuid": "57b5adf6-4820-48ff-9a19-4dca950d210f",
"value": "http://cs-czosnusie.cba.pl/jkYTFhb7"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524342",
"to_ids": true,
"type": "hostname",
"uuid": "57b5adf6-3130-480c-ab96-4904950d210f",
"value": "cs-czosnusie.cba.pl"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524342",
"to_ids": true,
"type": "ip-dst",
"uuid": "57b5adf6-9bb4-4a7c-b821-4aab950d210f",
"value": "95.211.144.65"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524342",
"to_ids": true,
"type": "url",
"uuid": "57b5adf6-6228-4762-a72c-47d0950d210f",
"value": "http://entree22.homepage.t-online.de/jkYTFhb7"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524342",
"to_ids": true,
"type": "hostname",
"uuid": "57b5adf6-33a8-495d-b3bf-41cd950d210f",
"value": "entree22.homepage.t-online.de"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524343",
"to_ids": true,
"type": "ip-dst",
"uuid": "57b5adf7-14f0-4ef2-adb7-4f11950d210f",
"value": "80.150.6.138"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524343",
"to_ids": true,
"type": "url",
"uuid": "57b5adf7-1d70-4f73-b6f9-4804950d210f",
"value": "http://www.ceccatobassano.it/jkYTFhb7"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524343",
"to_ids": true,
"type": "hostname",
"uuid": "57b5adf7-ecd0-4781-8d14-4a81950d210f",
"value": "www.ceccatobassano.it"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524343",
"to_ids": true,
"type": "ip-dst",
"uuid": "57b5adf7-a434-49bc-9955-4415950d210f",
"value": "213.205.40.169"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524358",
"to_ids": true,
"type": "url",
"uuid": "57b5ae06-c614-484f-b6bb-433d950d210f",
"value": "http://www.unice.it/jkYTFhb7"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524358",
"to_ids": true,
"type": "hostname",
"uuid": "57b5ae06-9994-4cb9-b0f5-4530950d210f",
"value": "www.unice.it"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524358",
"to_ids": true,
"type": "url",
"uuid": "57b5ae06-6060-4943-86d4-4aab950d210f",
"value": "http://detlevs-homepage.de/jkYTFhb7"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524359",
"to_ids": true,
"type": "domain",
"uuid": "57b5ae07-01f0-4a8f-ad1e-477f950d210f",
"value": "detlevs-homepage.de"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524359",
"to_ids": true,
"type": "ip-dst",
"uuid": "57b5ae07-5a84-4e0f-8273-4bef950d210f",
"value": "81.169.145.156"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524359",
"to_ids": true,
"type": "url",
"uuid": "57b5ae07-3438-44a4-822d-46fe950d210f",
"value": "http://www.beneli.be/jkYTFhb7"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524359",
"to_ids": true,
"type": "hostname",
"uuid": "57b5ae07-7374-427f-b571-45a4950d210f",
"value": "www.beneli.be"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524360",
"to_ids": true,
"type": "ip-dst",
"uuid": "57b5ae08-4a58-4a43-b305-4405950d210f",
"value": "195.130.132.84"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524389",
"to_ids": true,
"type": "url",
"uuid": "57b5ae25-5f38-4b1c-8a8a-4a04950d210f",
"value": "http://www.alexpalmieri.com/jkYTFhb7"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524390",
"to_ids": true,
"type": "hostname",
"uuid": "57b5ae26-ef78-44a0-b564-4009950d210f",
"value": "www.alexpalmieri.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524390",
"to_ids": true,
"type": "url",
"uuid": "57b5ae26-b860-406c-8190-4015950d210f",
"value": "http://a-plusrijopleiding.nl/jkYTFhb7"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524390",
"to_ids": true,
"type": "domain",
"uuid": "57b5ae26-5c90-4569-8843-4b58950d210f",
"value": "a-plusrijopleiding.nl"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524390",
"to_ids": true,
"type": "ip-dst",
"uuid": "57b5ae26-00ac-4768-82ad-46d9950d210f",
"value": "62.129.139.129"
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1471524461",
"to_ids": false,
"type": "email-subject",
"uuid": "57b5ae6d-c600-4ecd-a842-4fab950d210f",
"value": "Emailing: Labe"
}
]
}
}