misp-circl-feed/feeds/circl/misp/5b58e29a-cb98-42a6-8b3b-4a6802de0b81.json

2814 lines
No EOL
119 KiB
JSON

{
"type": "bundle",
"id": "bundle--5b58e29a-cb98-42a6-8b3b-4a6802de0b81",
"objects": [
{
"type": "identity",
"spec_version": "2.1",
"id": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-08-02T14:10:22.000Z",
"modified": "2018-08-02T14:10:22.000Z",
"name": "CIRCL",
"identity_class": "organization"
},
{
"type": "report",
"spec_version": "2.1",
"id": "report--5b58e29a-cb98-42a6-8b3b-4a6802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-08-02T14:10:22.000Z",
"modified": "2018-08-02T14:10:22.000Z",
"name": "OSINT - Leafminer: New Espionage Campaigns Targeting Middle Eastern Regions",
"published": "2018-08-02T14:10:22Z",
"object_refs": [
"indicator--5b58e2ee-97bc-4e70-8b0f-4f1502de0b81",
"indicator--5b58e2ef-80b4-4b9c-a511-4db702de0b81",
"indicator--5b58e2ef-6df8-4c94-a941-4e9902de0b81",
"indicator--5b58e2f1-f5a8-48bb-b820-4e4602de0b81",
"indicator--5b58e2f2-73bc-41e5-b021-490b02de0b81",
"indicator--5b58e2f3-86b0-4c1f-963d-471c02de0b81",
"indicator--5b58e2f4-c574-4942-9ac3-415502de0b81",
"indicator--5b58e2f5-0c10-4ead-ac47-402502de0b81",
"indicator--5b58e2f6-f818-4b97-bdff-473f02de0b81",
"indicator--5b58e2f7-f9e0-4e9f-a2ce-4f4b02de0b81",
"indicator--5b58e2f8-f90c-4fed-941a-431202de0b81",
"indicator--5b58e2f9-6164-4f59-aeb1-4bff02de0b81",
"indicator--5b58e2fa-0614-46bf-b24a-43f702de0b81",
"indicator--5b58e2fb-62b8-416a-a4a7-48f602de0b81",
"indicator--5b58e2fc-e124-4d97-84e7-4a5802de0b81",
"indicator--5b58e2fd-f4f8-478b-ad66-41e402de0b81",
"indicator--5b58e2fe-e8a4-4624-9775-4a2a02de0b81",
"indicator--5b58e2ff-5d54-49f4-a53b-466402de0b81",
"indicator--5b58e300-8750-4e1d-9511-4d4d02de0b81",
"indicator--5b58e301-2f44-4654-876b-41c202de0b81",
"indicator--5b58e302-a1c0-4b65-a8c3-46a002de0b81",
"indicator--5b58e303-38d4-46e0-8920-4a0702de0b81",
"indicator--5b58e305-37f0-40fe-b781-428902de0b81",
"indicator--5b58e306-3dc0-4301-b514-434302de0b81",
"indicator--5b58e307-0818-493f-9bb7-4a0c02de0b81",
"indicator--5b58e308-1024-4231-a377-4cdf02de0b81",
"indicator--5b58e308-63d0-4db2-8c0a-44b102de0b81",
"indicator--5b58e309-845c-41bb-bc1c-4bfe02de0b81",
"indicator--5b58e309-12e0-4928-9c49-4bd202de0b81",
"indicator--5b58e309-b644-4688-866d-426702de0b81",
"indicator--5b58e30a-1f44-43cf-b9bd-4e2002de0b81",
"indicator--5b58e30a-c74c-4dff-bfd9-4a6702de0b81",
"indicator--5b58e30b-abbc-4d93-9cb7-4cc002de0b81",
"indicator--5b58e30b-41c0-464a-978c-4de702de0b81",
"indicator--5b58e30c-80e4-4de1-84b9-4a0702de0b81",
"indicator--5b58e30c-ebb4-4f85-a816-4ff902de0b81",
"indicator--5b58e30c-8a90-4753-b5dd-438802de0b81",
"indicator--5b58e30d-c3f8-41fe-9a8d-430d02de0b81",
"indicator--5b58e30d-9f6c-4178-ac25-467f02de0b81",
"indicator--5b58e30e-6ac8-4dbf-abd1-459602de0b81",
"indicator--5b58e30e-ad60-44af-910c-414102de0b81",
"indicator--5b58e30e-8464-4e83-89a5-4d5502de0b81",
"indicator--5b58e30f-b0b4-464d-a382-4cdd02de0b81",
"indicator--5b58e30f-2c54-4980-ac88-426a02de0b81",
"indicator--5b58e310-bd40-4f18-8626-490702de0b81",
"indicator--5b58e310-c520-4489-8a06-487d02de0b81",
"indicator--5b58e310-1644-4ac5-9187-469302de0b81",
"indicator--5b58e323-e58c-4b68-9a15-489d02de0b81",
"indicator--5b58e324-23e8-4481-9f77-4f5502de0b81",
"indicator--5b58e324-6a38-4570-b95f-411002de0b81",
"indicator--5b58e325-8cdc-4058-acf6-446502de0b81",
"indicator--5b58e325-fccc-4093-b3bf-4a4702de0b81",
"indicator--5b58e325-d9a0-4f1a-922b-45b702de0b81",
"indicator--5b58e326-69fc-48f0-8d01-491a02de0b81",
"indicator--5b58e33a-5904-4967-998a-4def02de0b81",
"indicator--5b58e33a-a1b0-4f4a-8c4c-433d02de0b81",
"indicator--5b58e33b-e894-4db9-8753-401002de0b81",
"observed-data--5b58e3c5-2c90-4941-9b8f-479a02de0b81",
"url--5b58e3c5-2c90-4941-9b8f-479a02de0b81",
"x-misp-attribute--5b58e3d9-bd80-43a1-a4c7-4f0702de0b81",
"x-misp-object--b4137388-e6d6-4ad5-9279-cf94b064002a",
"x-misp-object--7e43aced-7d72-4b63-831b-c9fb69c79ec5",
"x-misp-object--2fcc008b-3b14-4ba4-8b42-a7b810102a7c",
"x-misp-object--ad25b1d7-45f7-47ed-a474-a63310ffc5a7",
"x-misp-object--40e176cd-33bf-428f-8dc7-e7eb0657ccc4",
"x-misp-object--30652bda-a360-426f-89ae-f6257c566381",
"x-misp-object--c8a57b71-f1b8-491b-91df-f591fcd2c841",
"x-misp-object--922c585b-1cba-463b-9a0b-6b995bf2c886",
"x-misp-object--4d4867f5-58bd-476d-bbb6-880d35895c1c",
"x-misp-object--910ea1f7-d0cf-4776-8d22-d14dbb5b0d3c",
"x-misp-object--44037150-0f77-4e34-9b1b-f932434486ea",
"x-misp-object--1d1bbb27-8c0f-4c25-811b-e406e8056538",
"x-misp-object--1bfe243a-d171-4eb6-b5a8-6f750ae94dd5",
"x-misp-object--ca66551a-7048-493e-a8c4-23455d756628",
"x-misp-object--d5bf8c36-3135-4442-8fa6-c8f7b46462dd",
"x-misp-object--675a3865-7c5e-42bc-abf6-1051b955ca9a",
"x-misp-object--4ca44390-aea3-4649-b947-87e3382d214e",
"x-misp-object--27f2127a-9dd0-4d0d-b321-fa1c3e5a3abc",
"x-misp-object--87c335c3-8aad-426d-9e25-50b8d69359bc",
"x-misp-object--fa4c3080-e422-4c59-9329-fd4ad1fabae0",
"x-misp-object--1d29953f-0ac9-4077-ae2c-78f16d033b15",
"x-misp-object--712090b0-f46c-4bd2-9c47-1546ec19f1f7",
"x-misp-object--efb30889-667b-4c76-b0ad-f26d45ab1aad",
"x-misp-object--e1ce1e3e-6474-41ab-b48d-ec7fccfd8d1d",
"x-misp-object--0c937616-7955-4a82-ad51-7343884f4b4a",
"x-misp-object--9a9a003c-ee07-4826-8ed5-801368161b7b",
"x-misp-object--65f0ff96-312c-4873-846a-15494be2de1e",
"x-misp-object--880f0101-1add-48aa-b31c-a93caa161553",
"x-misp-object--b97ff240-fb02-48ac-a995-cfe470d09cb0",
"x-misp-object--122569c6-a777-4b6d-b825-92590b0b85c8",
"x-misp-object--1301207f-edce-4810-b7f6-00084264ce54",
"x-misp-object--5048a4e7-752a-4639-93da-136abb92ce3b",
"x-misp-object--6e967f61-6604-4932-bd83-7e54a2862b86",
"x-misp-object--1f3ec55a-7cd1-41d6-ad73-ea62a64a6efd",
"x-misp-object--81ee6e30-8a76-4f90-a300-c1cc5375b3f6",
"x-misp-object--6751acd9-30f4-4045-ae06-746005d73a99",
"x-misp-object--3bd7d553-2d5d-44c9-83fb-bd5ff9ba553d",
"x-misp-object--2a9bd36d-b91f-483d-8b2f-9a5dd2d56d4a",
"x-misp-object--c3416779-cdc1-49f7-bb9b-55eb69abf547",
"x-misp-object--d26d5a46-004a-4da7-a1db-6d34c0a84d65",
"x-misp-object--341215a7-a4f6-4c73-91c6-bce2fb47563e",
"x-misp-object--66670f5f-0a18-48fb-9fa8-8a0557dfe6d7",
"x-misp-object--d3986e5a-1831-4613-9ded-a8bd4117673c",
"x-misp-object--c92a8a8b-12ca-42df-9edb-08a5e3cfa48c",
"x-misp-object--8bf0ce4c-f54d-442b-a9e4-92a693e079a8",
"x-misp-object--23845d4a-e174-4592-bafd-a4ea6e7bda43",
"x-misp-object--5bdc4683-2cc9-40c4-8a31-2b4d6b0f7688",
"x-misp-object--6108bce3-e69a-4b39-82c3-39257a7cdb82",
"x-misp-object--948044e2-5ce6-422b-944b-539b9512caf1",
"x-misp-object--c854e3e3-b985-43bb-a4ce-691f06c5677d",
"x-misp-object--1c646e8e-6ee8-4c11-8199-aa1060dc6b9e",
"x-misp-object--db181660-68fa-4e97-bf75-86295ba46f1d",
"x-misp-object--af26c4fe-952f-482e-b1c7-64e8ec4587dd",
"x-misp-object--3cc8e8c8-8a37-43dc-ad1b-a3fe8178a358",
"x-misp-object--cb8c1f90-8fa5-40a3-9fa3-dc1415a2be70",
"x-misp-object--37d37c7c-c665-4cc0-b7d2-75a5bae96999",
"x-misp-object--2809ae6d-0f07-46c0-a476-dfeec3076b23",
"x-misp-object--b1df06cf-64e3-4cf9-b7d0-7b7107d06abf",
"x-misp-object--fd9e918c-a015-42aa-8c06-18d603937354",
"x-misp-object--ca56de15-15e7-4dea-b035-1d253f952c52",
"x-misp-object--2ab6ee33-dce7-4fe2-8fc1-9a352a6b58c7",
"x-misp-object--d3dbfdd6-7eae-4dae-953b-6d8d56c6a82d",
"x-misp-object--5e34ef7e-4080-4342-a2ed-a45eaa252537",
"x-misp-object--e409b3d9-42dc-4f10-8b9a-ee88f8b8ad3f",
"x-misp-object--c3d921b7-e61e-4056-aa56-8d697f5768b8",
"x-misp-object--464d3928-33d4-43f4-9685-3fdc23ba76a3",
"relationship--ef3be257-557a-4584-93a6-e1f0e64bf4fe",
"relationship--f73870bf-2bfb-477c-b125-c7e69054580d",
"relationship--3578c16f-3932-4e60-89b0-d369e5f58417",
"relationship--2ec0227b-99e0-43d1-a7d0-e3c5acf36642",
"relationship--faff91f6-cb52-4ab9-86d9-0106294550f7",
"relationship--3b2b8125-ff5c-4e54-9392-0b579a09e06f",
"relationship--07813419-e4f4-421d-87be-3fa3d9d24459",
"relationship--d0488b80-205f-47a9-aac3-b8d5f93264ec",
"relationship--7c801b18-1c7c-4a4a-80e9-0a0406831843",
"relationship--4ec2ba1f-8394-4c3e-8de7-8aac0e0d77e1",
"relationship--3c6fc50f-5cb4-4492-a5aa-8c648dec95ce",
"relationship--75956b13-0518-4d58-937f-be0009626999",
"relationship--b86ad499-026f-442c-984a-62abee2bfbba",
"relationship--25a26f35-e30e-4be7-b1b3-71c63b569ea6",
"relationship--2b70b0ce-fe80-4fe2-a1ad-ff23f3c031c6",
"relationship--02ed1766-2cef-4a19-9a2f-cc1b5870024a",
"relationship--64f1ae63-43d8-4a4d-a941-a6cc39e257ec",
"relationship--6de44a4e-8132-4643-a227-79cd5193e7b1",
"relationship--ef86841b-2dab-495e-8382-3260da082608",
"relationship--07080de0-81ad-4f59-9e5a-12c0f2c945a4",
"relationship--485db1cc-8828-449d-b04d-60fa70af4cf8",
"relationship--a1acac99-afc9-4185-a34c-aba2aecb6cba",
"relationship--9da74435-1899-4f8e-a216-be1c13d291a6",
"relationship--488e09b1-6bbf-4502-bca2-d082e2f2cb6a",
"relationship--fb52b19a-4a77-425b-9bef-44a3be35a962",
"relationship--9db4df21-f7af-4225-ba48-da2ddd7dc777",
"relationship--e77e4a16-77f7-4ce6-a9d8-03fe1e616997",
"relationship--76c26a26-2a95-4d70-ad31-de9cc73f5b17",
"relationship--4ddc1236-8d1e-48a6-b8f8-55735fef47ac",
"relationship--b22d1946-7eea-4e2f-9b09-9b9369c96724",
"relationship--475d780c-1e7e-4d07-a4a6-ed907c7afd02",
"relationship--c3d2cacc-d0ba-4d3e-b00c-d533f00bfd02",
"relationship--1ab41d2f-01a4-4662-84b6-b5f309f6866f"
],
"labels": [
"Threat-Report",
"misp:tool=\"MISP-STIX-Converter\"",
"estimative-language:confidence-in-analytic-judgment=\"moderate\"",
"osint:source-type=\"blog-post\"",
"misp-galaxy:threat-actor=\"RASPITE\""
],
"object_marking_refs": [
"marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2ee-97bc-4e70-8b0f-4f1502de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:51:58.000Z",
"modified": "2018-07-25T20:51:58.000Z",
"pattern": "[file:hashes.SHA256 = '09653415084e64caed272f089610c5218a60372e17755ba71176785736e71c0d']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:51:58Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2ef-80b4-4b9c-a511-4db702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:51:59.000Z",
"modified": "2018-07-25T20:51:59.000Z",
"pattern": "[file:hashes.SHA256 = '09a20ca2db5b75f4ee55874929dec64acfffa46d54a4ed561b9c3f04baa91d52']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:51:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2ef-6df8-4c94-a941-4e9902de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:51:59.000Z",
"modified": "2018-07-25T20:51:59.000Z",
"pattern": "[file:hashes.SHA256 = '1e4f56a1999ffa5376ef0acaaa5da0993f07e9c5aa1c222e297db7a4117d04b1']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:51:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2f1-f5a8-48bb-b820-4e4602de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:01.000Z",
"modified": "2018-07-25T20:52:01.000Z",
"pattern": "[file:hashes.SHA256 = '200ec4e8f16ed205cf94c02fcd73ee43ee511fa44ce34c458a1fca195c4bc737']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:01Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2f2-73bc-41e5-b021-490b02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:02.000Z",
"modified": "2018-07-25T20:52:02.000Z",
"pattern": "[file:hashes.SHA256 = '2591b50355ed8053c8ed2e122f0b5769dd52c6d0b658cd0f2847f39056c6ac8c']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2f3-86b0-4c1f-963d-471c02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:03.000Z",
"modified": "2018-07-25T20:52:03.000Z",
"pattern": "[file:hashes.SHA256 = '332762804dd17f9b81620ea60ca8962daa493df24f6d98799d784d50fd4d0108']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2f4-c574-4942-9ac3-415502de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:04.000Z",
"modified": "2018-07-25T20:52:04.000Z",
"pattern": "[file:hashes.SHA256 = '3373d81a74c1ea75c794244b2c6d4e5fb246224128412b9348291e2f68994d83']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:04Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2f5-0c10-4ead-ac47-402502de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:05.000Z",
"modified": "2018-07-25T20:52:05.000Z",
"pattern": "[file:hashes.SHA256 = '36e9c95b65692b110f4fe2ed27aa6066368c07525c020ec081b59bad272e6172']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2f6-f818-4b97-bdff-473f02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:06.000Z",
"modified": "2018-07-25T20:52:06.000Z",
"pattern": "[file:hashes.SHA256 = '48529fc232a99b8cfa14cdc1b982615e9a96942b4e0a79e4a88d504faac74c7c']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2f7-f9e0-4e9f-a2ce-4f4b02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:07.000Z",
"modified": "2018-07-25T20:52:07.000Z",
"pattern": "[file:hashes.SHA256 = '4b16cb8b0eaeb8449d35290edb00beb3002852ad0225f52e5476e16c853447c5']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:07Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2f8-f90c-4fed-941a-431202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:08.000Z",
"modified": "2018-07-25T20:52:08.000Z",
"pattern": "[file:hashes.SHA256 = '58c9e11a2cd18bc6762753b27225423257b0d8e84592a7fe8b1c9bdd97129546']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:08Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2f9-6164-4f59-aeb1-4bff02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:09.000Z",
"modified": "2018-07-25T20:52:09.000Z",
"pattern": "[file:hashes.SHA256 = '670dc0a8182503b272f8a0f5cf93ea1e9f12fd46afdf4930249bc0fa588bac2d']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:09Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2fa-0614-46bf-b24a-43f702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:10.000Z",
"modified": "2018-07-25T20:52:10.000Z",
"pattern": "[file:hashes.SHA256 = '6f5b1269175d3937a5f92c62ff3ef1dd693827705d0d41456d93d5243c1dbaad']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:10Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2fb-62b8-416a-a4a7-48f602de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:11.000Z",
"modified": "2018-07-25T20:52:11.000Z",
"pattern": "[file:hashes.SHA256 = '70c30b4cc6a9a420bec3ad25a0147c7ff91535a04ece95036334cb23044eda4e']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:11Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2fc-e124-4d97-84e7-4a5802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:12.000Z",
"modified": "2018-07-25T20:52:12.000Z",
"pattern": "[file:hashes.SHA256 = '7897406109e2454e4d99044e24a2d4fe5902473c2c76b82c2569336805989482']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:12Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2fd-f4f8-478b-ad66-41e402de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:13.000Z",
"modified": "2018-07-25T20:52:13.000Z",
"pattern": "[file:hashes.SHA256 = '7b06957c6b8450953967eb9c5f762e389a92fcf761b6885b7cb6dd2407641f3a']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:13Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2fe-e8a4-4624-9775-4a2a02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:14.000Z",
"modified": "2018-07-25T20:52:14.000Z",
"pattern": "[file:hashes.SHA256 = '7b8d27bfd5f2199e984c3038ce7625069f9ee0ec57dbfd7998e37afbe18011f3']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:14Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e2ff-5d54-49f4-a53b-466402de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:15.000Z",
"modified": "2018-07-25T20:52:15.000Z",
"pattern": "[file:hashes.SHA256 = '7d829abe26b30ced467513e95f3448bc9f30de2fdced81c20b0d7699bd69c644']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:15Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e300-8750-4e1d-9511-4d4d02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:16.000Z",
"modified": "2018-07-25T20:52:16.000Z",
"pattern": "[file:hashes.SHA256 = '84803151c5b73a53de91844968f377e6ee33ba82910aa1f612595a19aeb7e529']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:16Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e301-2f44-4654-876b-41c202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:17.000Z",
"modified": "2018-07-25T20:52:17.000Z",
"pattern": "[file:hashes.SHA256 = '85e9b5c3bd88a0c2b535c8d89ed0e9f875895e758228da16b5a46f6ff70e7e77']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:17Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e302-a1c0-4b65-a8c3-46a002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:18.000Z",
"modified": "2018-07-25T20:52:18.000Z",
"pattern": "[file:hashes.SHA256 = '9aa8f2d9245d0e6cef375ed999da6a3c9715fbe2a20589fdb388a8687707133a']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e303-38d4-46e0-8920-4a0702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:19.000Z",
"modified": "2018-07-25T20:52:19.000Z",
"pattern": "[file:hashes.SHA256 = '9d3801af7f8270ee550f0e3bb31e2ead903c45849e099c80d3c34b0076ca7e6f']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:19Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e305-37f0-40fe-b781-428902de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:21.000Z",
"modified": "2018-07-25T20:52:21.000Z",
"pattern": "[file:hashes.SHA256 = 'a115a2a704386293f4c5e7108b9dab6afc42d4647cbff47023f2d2039c6b72ae']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:21Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e306-3dc0-4301-b514-434302de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:22.000Z",
"modified": "2018-07-25T20:52:22.000Z",
"pattern": "[file:hashes.SHA256 = 'a2155e4dd281ef7b01a1490943b7fb06706d7ef02c0f955611e941d06b6e3ccf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:22Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e307-0818-493f-9bb7-4a0c02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:23.000Z",
"modified": "2018-07-25T20:52:23.000Z",
"pattern": "[file:hashes.SHA256 = 'a36fc0d9cb5b415fa8d6fe89434aca931bc4d0f9ac56ada7b7b9a9e601966860']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:23Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e308-1024-4231-a377-4cdf02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:24.000Z",
"modified": "2018-07-25T20:52:24.000Z",
"pattern": "[file:hashes.SHA256 = 'a4ec0964b115cdc7c3e2fd2bd60651a5105981485a4cd9a1ce5e3d29222f6303']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:24Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e308-63d0-4db2-8c0a-44b102de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:24.000Z",
"modified": "2018-07-25T20:52:24.000Z",
"pattern": "[file:hashes.SHA256 = 'ac33d303a9903f8a181e323eff6f0053234546e9b963f6bd1a2867bbb70ce2f9']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:24Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e309-845c-41bb-bc1c-4bfe02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:25.000Z",
"modified": "2018-07-25T20:52:25.000Z",
"pattern": "[file:hashes.SHA256 = 'b13ce2692d7ea4ebf343916d1f4c6de8a73376d486d96f3e7ceddecab5068ccf']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:25Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e309-12e0-4928-9c49-4bd202de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:25.000Z",
"modified": "2018-07-25T20:52:25.000Z",
"pattern": "[file:hashes.SHA256 = 'c05205771d1cb9bfbfd7139a7ec8f8364c2820d6de3bbb93806530f1dc7a4283']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:25Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e309-b644-4688-866d-426702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:25.000Z",
"modified": "2018-07-25T20:52:25.000Z",
"pattern": "[file:hashes.SHA256 = 'c402e570ea5e69c42898cb6a1a6be39fa9f5a90e909c2d1a4a2276df80abca97']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:25Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30a-1f44-43cf-b9bd-4e2002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:26.000Z",
"modified": "2018-07-25T20:52:26.000Z",
"pattern": "[file:hashes.SHA256 = 'caa2bd3596cf15d4d09fad3d110052460bc05933587a16e13f879fe1469a1377']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:26Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30a-c74c-4dff-bfd9-4a6702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:26.000Z",
"modified": "2018-07-25T20:52:26.000Z",
"pattern": "[file:hashes.SHA256 = 'cb34a8f0dacb1ddccd89e0f40822dbdb0a3e32bb22c0801325be53bff55afd85']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:26Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30b-abbc-4d93-9cb7-4cc002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:27.000Z",
"modified": "2018-07-25T20:52:27.000Z",
"pattern": "[file:hashes.SHA256 = 'd01f01cc4832786c2821bb51d1abf40efbdf5127cd1d11e674c76996f1f1b145']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:27Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30b-41c0-464a-978c-4de702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:27.000Z",
"modified": "2018-07-25T20:52:27.000Z",
"pattern": "[file:hashes.SHA256 = 'd152da24739964acc8cc9fbd8f60a8ae7b8f7903c37168ce53e01b451d4aba5d']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:27Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30c-80e4-4de1-84b9-4a0702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:28.000Z",
"modified": "2018-07-25T20:52:28.000Z",
"pattern": "[file:hashes.SHA256 = 'd1e4081b5fdeb09b280674e0c34f5495527a621bb4f42601f97f123761c514c0']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30c-ebb4-4f85-a816-4ff902de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:28.000Z",
"modified": "2018-07-25T20:52:28.000Z",
"pattern": "[file:hashes.SHA256 = 'd1ee0cf551e5fc37d482484d3de1c5718a5b8c9cfadd907b7b3ccf9324a599fe']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30c-8a90-4753-b5dd-438802de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:28.000Z",
"modified": "2018-07-25T20:52:28.000Z",
"pattern": "[file:hashes.SHA256 = 'd94c5bd51cdbdd87ee4eb8005022be2ed763c791660416212a8e6a6b18576ac8']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:28Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30d-c3f8-41fe-9a8d-430d02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:29.000Z",
"modified": "2018-07-25T20:52:29.000Z",
"pattern": "[file:hashes.SHA256 = 'de481b765df8a44dc7b8528bf4822332cbd6105bce780e3c99da2cc67ab1263b']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30d-9f6c-4178-ac25-467f02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:29.000Z",
"modified": "2018-07-25T20:52:29.000Z",
"pattern": "[file:hashes.SHA256 = 'e3612f7e389695f6f4184cbdc5dc9512e370f3f3863afcb38a17d59d6ead8dc0']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30e-6ac8-4dbf-abd1-459602de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:30.000Z",
"modified": "2018-07-25T20:52:30.000Z",
"pattern": "[file:hashes.SHA256 = 'e8f409387c6df73c201776633d44ac97d4fc1958bf79b1b36659e4bf904ccf28']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:30Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30e-ad60-44af-910c-414102de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:30.000Z",
"modified": "2018-07-25T20:52:30.000Z",
"pattern": "[file:hashes.SHA256 = 'e931848dd6e5914e8ed0b287ef27544bf6c444fae05590a174307b437a1ea866']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:30Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30e-8464-4e83-89a5-4d5502de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:30.000Z",
"modified": "2018-07-25T20:52:30.000Z",
"pattern": "[file:hashes.SHA256 = 'ebd01e75c633c212265fe883e869b543b27c34819d8501a52dbd21fc2cb533fc']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:30Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30f-b0b4-464d-a382-4cdd02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:31.000Z",
"modified": "2018-07-25T20:52:31.000Z",
"pattern": "[file:hashes.SHA256 = 'efb340cf61009acc14b8463c185340bae0269b957143469dc7270af85ee2092d']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:31Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e30f-2c54-4980-ac88-426a02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:31.000Z",
"modified": "2018-07-25T20:52:31.000Z",
"pattern": "[file:hashes.SHA256 = 'f67d378140f4aca98d4bd427eda7052ad1205dab8b6028a7fa00254d0c60aeea']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:31Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e310-bd40-4f18-8626-490702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:32.000Z",
"modified": "2018-07-25T20:52:32.000Z",
"pattern": "[file:hashes.SHA256 = 'fd026f5f3995b0664cde644da0d21b7488f5baabe0467dcec14092624b86b900']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:32Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e310-c520-4489-8a06-487d02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:32.000Z",
"modified": "2018-07-25T20:52:32.000Z",
"pattern": "[file:hashes.SHA256 = 'ff8c9d8c6f16a466d8e598c25829ec0c2fb4503b74d17f307e13c28fd2e99b93']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:32Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e310-1644-4ac5-9187-469302de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:32.000Z",
"modified": "2018-07-25T20:52:32.000Z",
"pattern": "[file:hashes.SHA256 = 'ffb6acd2715dd988fe3c3fdbd7d45159f8e5b529eea506a856109a8696e93a80']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:32Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"sha256\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e323-e58c-4b68-9a15-489d02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:51.000Z",
"modified": "2018-07-25T20:52:51.000Z",
"pattern": "[domain-name:value = 'adobe-flash.us']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e324-23e8-4481-9f77-4f5502de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:52.000Z",
"modified": "2018-07-25T20:52:52.000Z",
"pattern": "[domain-name:value = 'ilhost.in']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e324-6a38-4570-b95f-411002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:52.000Z",
"modified": "2018-07-25T20:52:52.000Z",
"pattern": "[domain-name:value = 'iqhost.us']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:52Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e325-8cdc-4058-acf6-446502de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:53.000Z",
"modified": "2018-07-25T20:52:53.000Z",
"pattern": "[domain-name:value = 'offiice365.us']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e325-fccc-4093-b3bf-4a4702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:53.000Z",
"modified": "2018-07-25T20:52:53.000Z",
"pattern": "[domain-name:value = 'adobe-plugin.bid']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e325-d9a0-4f1a-922b-45b702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:53.000Z",
"modified": "2018-07-25T20:52:53.000Z",
"pattern": "[domain-name:value = 'microsoft-office-free-templates.in']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"domain\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e326-69fc-48f0-8d01-491a02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:52:54.000Z",
"modified": "2018-07-25T20:52:54.000Z",
"pattern": "[domain-name:value = 'microsoft-office-free-templates-download.btc-int.in']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:52:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e33a-5904-4967-998a-4def02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:53:14.000Z",
"modified": "2018-07-25T20:53:14.000Z",
"description": "Watering Hole SMB URLs",
"pattern": "[url:value = '51.254.173.240/file.gif']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:53:14Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e33a-a1b0-4f4a-8c4c-433d02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:53:14.000Z",
"modified": "2018-07-25T20:53:14.000Z",
"description": "Watering Hole SMB URLs",
"pattern": "[url:value = 'adobe-plugin.bid/file.gif']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:53:14Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5b58e33b-e894-4db9-8753-401002de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:53:15.000Z",
"modified": "2018-07-25T20:53:15.000Z",
"description": "Watering Hole SMB URLs",
"pattern": "[url:value = '188.165.187.235/file.gif']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-07-25T20:53:15Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--5b58e3c5-2c90-4941-9b8f-479a02de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:33.000Z",
"modified": "2018-07-25T20:55:33.000Z",
"first_observed": "2018-07-25T20:55:33Z",
"last_observed": "2018-07-25T20:55:33Z",
"number_observed": 1,
"object_refs": [
"url--5b58e3c5-2c90-4941-9b8f-479a02de0b81"
],
"labels": [
"misp:type=\"link\"",
"misp:category=\"External analysis\""
]
},
{
"type": "url",
"spec_version": "2.1",
"id": "url--5b58e3c5-2c90-4941-9b8f-479a02de0b81",
"value": "https://www.symantec.com/blogs/threat-intelligence/leafminer-espionage-middle-east"
},
{
"type": "x-misp-attribute",
"spec_version": "2.1",
"id": "x-misp-attribute--5b58e3d9-bd80-43a1-a4c7-4f0702de0b81",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:53.000Z",
"modified": "2018-07-25T20:55:53.000Z",
"labels": [
"misp:type=\"text\"",
"misp:category=\"External analysis\""
],
"x_misp_category": "External analysis",
"x_misp_type": "text",
"x_misp_value": "Symantec has uncovered the operations of a threat actor named Leafminer that is targeting a broad list of government organizations and business verticals in various regions in the Middle East since at least early 2017. The group tends to adapt publicly available techniques and tools for their attacks and experiments with published proof-of-concept exploits. Leafminer attempts to infiltrate target networks through various means of intrusion: watering hole websites, vulnerability scans of network services on the internet, and brute-force/dictionary login attempts. The actor\u00e2\u20ac\u2122s post-compromise toolkit suggests that the group is looking for email data, files, and database servers on compromised target systems."
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--b4137388-e6d6-4ad5-9279-cf94b064002a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:11.000Z",
"modified": "2018-07-25T20:54:11.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--7e43aced-7d72-4b63-831b-c9fb69c79ec5",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:09.000Z",
"modified": "2018-07-25T20:54:09.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--2fcc008b-3b14-4ba4-8b42-a7b810102a7c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:13.000Z",
"modified": "2018-07-25T20:54:13.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--ad25b1d7-45f7-47ed-a474-a63310ffc5a7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:12.000Z",
"modified": "2018-07-25T20:54:12.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--40e176cd-33bf-428f-8dc7-e7eb0657ccc4",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:16.000Z",
"modified": "2018-07-25T20:54:16.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--30652bda-a360-426f-89ae-f6257c566381",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:15.000Z",
"modified": "2018-07-25T20:54:15.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--c8a57b71-f1b8-491b-91df-f591fcd2c841",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:21.000Z",
"modified": "2018-07-25T20:54:21.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--922c585b-1cba-463b-9a0b-6b995bf2c886",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:21.000Z",
"modified": "2018-07-25T20:54:21.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--4d4867f5-58bd-476d-bbb6-880d35895c1c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:26.000Z",
"modified": "2018-07-25T20:54:26.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--910ea1f7-d0cf-4776-8d22-d14dbb5b0d3c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:26.000Z",
"modified": "2018-07-25T20:54:26.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--44037150-0f77-4e34-9b1b-f932434486ea",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:32.000Z",
"modified": "2018-07-25T20:54:32.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--1d1bbb27-8c0f-4c25-811b-e406e8056538",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:32.000Z",
"modified": "2018-07-25T20:54:32.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--1bfe243a-d171-4eb6-b5a8-6f750ae94dd5",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:37.000Z",
"modified": "2018-07-25T20:54:37.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--ca66551a-7048-493e-a8c4-23455d756628",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:37.000Z",
"modified": "2018-07-25T20:54:37.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--d5bf8c36-3135-4442-8fa6-c8f7b46462dd",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:42.000Z",
"modified": "2018-07-25T20:54:42.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--675a3865-7c5e-42bc-abf6-1051b955ca9a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:43.000Z",
"modified": "2018-07-25T20:54:43.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--4ca44390-aea3-4649-b947-87e3382d214e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:48.000Z",
"modified": "2018-07-25T20:54:48.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--27f2127a-9dd0-4d0d-b321-fa1c3e5a3abc",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:49.000Z",
"modified": "2018-07-25T20:54:49.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--87c335c3-8aad-426d-9e25-50b8d69359bc",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:54.000Z",
"modified": "2018-07-25T20:54:54.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--fa4c3080-e422-4c59-9329-fd4ad1fabae0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:54:54.000Z",
"modified": "2018-07-25T20:54:54.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--1d29953f-0ac9-4077-ae2c-78f16d033b15",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:00.000Z",
"modified": "2018-07-25T20:55:00.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--712090b0-f46c-4bd2-9c47-1546ec19f1f7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:00.000Z",
"modified": "2018-07-25T20:55:00.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--efb30889-667b-4c76-b0ad-f26d45ab1aad",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:06.000Z",
"modified": "2018-07-25T20:55:06.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--e1ce1e3e-6474-41ab-b48d-ec7fccfd8d1d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:06.000Z",
"modified": "2018-07-25T20:55:06.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--0c937616-7955-4a82-ad51-7343884f4b4a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:11.000Z",
"modified": "2018-07-25T20:55:11.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--9a9a003c-ee07-4826-8ed5-801368161b7b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:11.000Z",
"modified": "2018-07-25T20:55:11.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--65f0ff96-312c-4873-846a-15494be2de1e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:16.000Z",
"modified": "2018-07-25T20:55:16.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--880f0101-1add-48aa-b31c-a93caa161553",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:17.000Z",
"modified": "2018-07-25T20:55:17.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--b97ff240-fb02-48ac-a995-cfe470d09cb0",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:22.000Z",
"modified": "2018-07-25T20:55:22.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--122569c6-a777-4b6d-b825-92590b0b85c8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:22.000Z",
"modified": "2018-07-25T20:55:22.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--1301207f-edce-4810-b7f6-00084264ce54",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:27.000Z",
"modified": "2018-07-25T20:55:27.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--5048a4e7-752a-4639-93da-136abb92ce3b",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:28.000Z",
"modified": "2018-07-25T20:55:28.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--6e967f61-6604-4932-bd83-7e54a2862b86",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:33.000Z",
"modified": "2018-07-25T20:55:33.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--1f3ec55a-7cd1-41d6-ad73-ea62a64a6efd",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:33.000Z",
"modified": "2018-07-25T20:55:33.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--81ee6e30-8a76-4f90-a300-c1cc5375b3f6",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:40.000Z",
"modified": "2018-07-25T20:55:40.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--6751acd9-30f4-4045-ae06-746005d73a99",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:40.000Z",
"modified": "2018-07-25T20:55:40.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--3bd7d553-2d5d-44c9-83fb-bd5ff9ba553d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:45.000Z",
"modified": "2018-07-25T20:55:45.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--2a9bd36d-b91f-483d-8b2f-9a5dd2d56d4a",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:45.000Z",
"modified": "2018-07-25T20:55:45.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--c3416779-cdc1-49f7-bb9b-55eb69abf547",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:51.000Z",
"modified": "2018-07-25T20:55:51.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--d26d5a46-004a-4da7-a1db-6d34c0a84d65",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:51.000Z",
"modified": "2018-07-25T20:55:51.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--341215a7-a4f6-4c73-91c6-bce2fb47563e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:56.000Z",
"modified": "2018-07-25T20:55:56.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--66670f5f-0a18-48fb-9fa8-8a0557dfe6d7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:55:57.000Z",
"modified": "2018-07-25T20:55:57.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--d3986e5a-1831-4613-9ded-a8bd4117673c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:03.000Z",
"modified": "2018-07-25T20:56:03.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--c92a8a8b-12ca-42df-9edb-08a5e3cfa48c",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:03.000Z",
"modified": "2018-07-25T20:56:03.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--8bf0ce4c-f54d-442b-a9e4-92a693e079a8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:08.000Z",
"modified": "2018-07-25T20:56:08.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--23845d4a-e174-4592-bafd-a4ea6e7bda43",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:08.000Z",
"modified": "2018-07-25T20:56:08.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--5bdc4683-2cc9-40c4-8a31-2b4d6b0f7688",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:14.000Z",
"modified": "2018-07-25T20:56:14.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--6108bce3-e69a-4b39-82c3-39257a7cdb82",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:14.000Z",
"modified": "2018-07-25T20:56:14.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--948044e2-5ce6-422b-944b-539b9512caf1",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:19.000Z",
"modified": "2018-07-25T20:56:19.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--c854e3e3-b985-43bb-a4ce-691f06c5677d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:20.000Z",
"modified": "2018-07-25T20:56:20.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--1c646e8e-6ee8-4c11-8199-aa1060dc6b9e",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:25.000Z",
"modified": "2018-07-25T20:56:25.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--db181660-68fa-4e97-bf75-86295ba46f1d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:25.000Z",
"modified": "2018-07-25T20:56:25.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--af26c4fe-952f-482e-b1c7-64e8ec4587dd",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:31.000Z",
"modified": "2018-07-25T20:56:31.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--3cc8e8c8-8a37-43dc-ad1b-a3fe8178a358",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:31.000Z",
"modified": "2018-07-25T20:56:31.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--cb8c1f90-8fa5-40a3-9fa3-dc1415a2be70",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:36.000Z",
"modified": "2018-07-25T20:56:36.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--37d37c7c-c665-4cc0-b7d2-75a5bae96999",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:36.000Z",
"modified": "2018-07-25T20:56:36.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--2809ae6d-0f07-46c0-a476-dfeec3076b23",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:41.000Z",
"modified": "2018-07-25T20:56:41.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--b1df06cf-64e3-4cf9-b7d0-7b7107d06abf",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:42.000Z",
"modified": "2018-07-25T20:56:42.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--fd9e918c-a015-42aa-8c06-18d603937354",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:47.000Z",
"modified": "2018-07-25T20:56:47.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--ca56de15-15e7-4dea-b035-1d253f952c52",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:47.000Z",
"modified": "2018-07-25T20:56:47.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--2ab6ee33-dce7-4fe2-8fc1-9a352a6b58c7",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:53.000Z",
"modified": "2018-07-25T20:56:53.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--d3dbfdd6-7eae-4dae-953b-6d8d56c6a82d",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:53.000Z",
"modified": "2018-07-25T20:56:53.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--5e34ef7e-4080-4342-a2ed-a45eaa252537",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:56:58.000Z",
"modified": "2018-07-25T20:56:58.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--e409b3d9-42dc-4f10-8b9a-ee88f8b8ad3f",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:59:33.000Z",
"modified": "2018-07-25T20:59:33.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--c3d921b7-e61e-4056-aa56-8d697f5768b8",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:59:39.000Z",
"modified": "2018-07-25T20:59:39.000Z",
"labels": [
"misp:name=\"file\"",
"misp:meta-category=\"file\""
],
"x_misp_meta_category": "file",
"x_misp_name": "file"
},
{
"type": "x-misp-object",
"spec_version": "2.1",
"id": "x-misp-object--464d3928-33d4-43f4-9685-3fdc23ba76a3",
"created_by_ref": "identity--55f6ea5e-2c60-40e5-964f-47a8950d210f",
"created": "2018-07-25T20:59:39.000Z",
"modified": "2018-07-25T20:59:39.000Z",
"labels": [
"misp:name=\"virustotal-report\"",
"misp:meta-category=\"misc\""
],
"x_misp_meta_category": "misc",
"x_misp_name": "virustotal-report"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--ef3be257-557a-4584-93a6-e1f0e64bf4fe",
"created": "2018-07-25T20:59:42.000Z",
"modified": "2018-07-25T20:59:42.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--b4137388-e6d6-4ad5-9279-cf94b064002a",
"target_ref": "x-misp-object--7e43aced-7d72-4b63-831b-c9fb69c79ec5"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--f73870bf-2bfb-477c-b125-c7e69054580d",
"created": "2018-07-25T20:59:42.000Z",
"modified": "2018-07-25T20:59:42.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--2fcc008b-3b14-4ba4-8b42-a7b810102a7c",
"target_ref": "x-misp-object--ad25b1d7-45f7-47ed-a474-a63310ffc5a7"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--3578c16f-3932-4e60-89b0-d369e5f58417",
"created": "2018-07-25T20:59:42.000Z",
"modified": "2018-07-25T20:59:42.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--40e176cd-33bf-428f-8dc7-e7eb0657ccc4",
"target_ref": "x-misp-object--30652bda-a360-426f-89ae-f6257c566381"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--2ec0227b-99e0-43d1-a7d0-e3c5acf36642",
"created": "2018-07-25T20:59:43.000Z",
"modified": "2018-07-25T20:59:43.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--c8a57b71-f1b8-491b-91df-f591fcd2c841",
"target_ref": "x-misp-object--922c585b-1cba-463b-9a0b-6b995bf2c886"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--faff91f6-cb52-4ab9-86d9-0106294550f7",
"created": "2018-07-25T20:59:43.000Z",
"modified": "2018-07-25T20:59:43.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--4d4867f5-58bd-476d-bbb6-880d35895c1c",
"target_ref": "x-misp-object--910ea1f7-d0cf-4776-8d22-d14dbb5b0d3c"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--3b2b8125-ff5c-4e54-9392-0b579a09e06f",
"created": "2018-07-25T20:59:43.000Z",
"modified": "2018-07-25T20:59:43.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--44037150-0f77-4e34-9b1b-f932434486ea",
"target_ref": "x-misp-object--1d1bbb27-8c0f-4c25-811b-e406e8056538"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--07813419-e4f4-421d-87be-3fa3d9d24459",
"created": "2018-07-25T20:59:43.000Z",
"modified": "2018-07-25T20:59:43.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--1bfe243a-d171-4eb6-b5a8-6f750ae94dd5",
"target_ref": "x-misp-object--ca66551a-7048-493e-a8c4-23455d756628"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--d0488b80-205f-47a9-aac3-b8d5f93264ec",
"created": "2018-07-25T20:59:44.000Z",
"modified": "2018-07-25T20:59:44.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--d5bf8c36-3135-4442-8fa6-c8f7b46462dd",
"target_ref": "x-misp-object--675a3865-7c5e-42bc-abf6-1051b955ca9a"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--7c801b18-1c7c-4a4a-80e9-0a0406831843",
"created": "2018-07-25T20:59:44.000Z",
"modified": "2018-07-25T20:59:44.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--4ca44390-aea3-4649-b947-87e3382d214e",
"target_ref": "x-misp-object--27f2127a-9dd0-4d0d-b321-fa1c3e5a3abc"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--4ec2ba1f-8394-4c3e-8de7-8aac0e0d77e1",
"created": "2018-07-25T20:59:44.000Z",
"modified": "2018-07-25T20:59:44.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--87c335c3-8aad-426d-9e25-50b8d69359bc",
"target_ref": "x-misp-object--fa4c3080-e422-4c59-9329-fd4ad1fabae0"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--3c6fc50f-5cb4-4492-a5aa-8c648dec95ce",
"created": "2018-07-25T20:59:44.000Z",
"modified": "2018-07-25T20:59:44.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--1d29953f-0ac9-4077-ae2c-78f16d033b15",
"target_ref": "x-misp-object--712090b0-f46c-4bd2-9c47-1546ec19f1f7"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--75956b13-0518-4d58-937f-be0009626999",
"created": "2018-07-25T20:59:44.000Z",
"modified": "2018-07-25T20:59:44.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--efb30889-667b-4c76-b0ad-f26d45ab1aad",
"target_ref": "x-misp-object--e1ce1e3e-6474-41ab-b48d-ec7fccfd8d1d"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--b86ad499-026f-442c-984a-62abee2bfbba",
"created": "2018-07-25T20:59:45.000Z",
"modified": "2018-07-25T20:59:45.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--0c937616-7955-4a82-ad51-7343884f4b4a",
"target_ref": "x-misp-object--9a9a003c-ee07-4826-8ed5-801368161b7b"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--25a26f35-e30e-4be7-b1b3-71c63b569ea6",
"created": "2018-07-25T20:59:45.000Z",
"modified": "2018-07-25T20:59:45.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--65f0ff96-312c-4873-846a-15494be2de1e",
"target_ref": "x-misp-object--880f0101-1add-48aa-b31c-a93caa161553"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--2b70b0ce-fe80-4fe2-a1ad-ff23f3c031c6",
"created": "2018-07-25T20:59:45.000Z",
"modified": "2018-07-25T20:59:45.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--b97ff240-fb02-48ac-a995-cfe470d09cb0",
"target_ref": "x-misp-object--122569c6-a777-4b6d-b825-92590b0b85c8"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--02ed1766-2cef-4a19-9a2f-cc1b5870024a",
"created": "2018-07-25T20:59:46.000Z",
"modified": "2018-07-25T20:59:46.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--1301207f-edce-4810-b7f6-00084264ce54",
"target_ref": "x-misp-object--5048a4e7-752a-4639-93da-136abb92ce3b"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--64f1ae63-43d8-4a4d-a941-a6cc39e257ec",
"created": "2018-07-25T20:59:47.000Z",
"modified": "2018-07-25T20:59:47.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--6e967f61-6604-4932-bd83-7e54a2862b86",
"target_ref": "x-misp-object--1f3ec55a-7cd1-41d6-ad73-ea62a64a6efd"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--6de44a4e-8132-4643-a227-79cd5193e7b1",
"created": "2018-07-25T20:59:47.000Z",
"modified": "2018-07-25T20:59:47.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--81ee6e30-8a76-4f90-a300-c1cc5375b3f6",
"target_ref": "x-misp-object--6751acd9-30f4-4045-ae06-746005d73a99"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--ef86841b-2dab-495e-8382-3260da082608",
"created": "2018-07-25T20:59:47.000Z",
"modified": "2018-07-25T20:59:47.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--3bd7d553-2d5d-44c9-83fb-bd5ff9ba553d",
"target_ref": "x-misp-object--2a9bd36d-b91f-483d-8b2f-9a5dd2d56d4a"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--07080de0-81ad-4f59-9e5a-12c0f2c945a4",
"created": "2018-07-25T20:59:48.000Z",
"modified": "2018-07-25T20:59:48.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--c3416779-cdc1-49f7-bb9b-55eb69abf547",
"target_ref": "x-misp-object--d26d5a46-004a-4da7-a1db-6d34c0a84d65"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--485db1cc-8828-449d-b04d-60fa70af4cf8",
"created": "2018-07-25T20:59:48.000Z",
"modified": "2018-07-25T20:59:48.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--341215a7-a4f6-4c73-91c6-bce2fb47563e",
"target_ref": "x-misp-object--66670f5f-0a18-48fb-9fa8-8a0557dfe6d7"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--a1acac99-afc9-4185-a34c-aba2aecb6cba",
"created": "2018-07-25T20:59:48.000Z",
"modified": "2018-07-25T20:59:48.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--d3986e5a-1831-4613-9ded-a8bd4117673c",
"target_ref": "x-misp-object--c92a8a8b-12ca-42df-9edb-08a5e3cfa48c"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--9da74435-1899-4f8e-a216-be1c13d291a6",
"created": "2018-07-25T20:59:48.000Z",
"modified": "2018-07-25T20:59:48.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--8bf0ce4c-f54d-442b-a9e4-92a693e079a8",
"target_ref": "x-misp-object--23845d4a-e174-4592-bafd-a4ea6e7bda43"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--488e09b1-6bbf-4502-bca2-d082e2f2cb6a",
"created": "2018-07-25T20:59:48.000Z",
"modified": "2018-07-25T20:59:48.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--5bdc4683-2cc9-40c4-8a31-2b4d6b0f7688",
"target_ref": "x-misp-object--6108bce3-e69a-4b39-82c3-39257a7cdb82"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--fb52b19a-4a77-425b-9bef-44a3be35a962",
"created": "2018-07-25T20:59:49.000Z",
"modified": "2018-07-25T20:59:49.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--948044e2-5ce6-422b-944b-539b9512caf1",
"target_ref": "x-misp-object--c854e3e3-b985-43bb-a4ce-691f06c5677d"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--9db4df21-f7af-4225-ba48-da2ddd7dc777",
"created": "2018-07-25T20:59:49.000Z",
"modified": "2018-07-25T20:59:49.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--1c646e8e-6ee8-4c11-8199-aa1060dc6b9e",
"target_ref": "x-misp-object--db181660-68fa-4e97-bf75-86295ba46f1d"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--e77e4a16-77f7-4ce6-a9d8-03fe1e616997",
"created": "2018-07-25T20:59:49.000Z",
"modified": "2018-07-25T20:59:49.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--af26c4fe-952f-482e-b1c7-64e8ec4587dd",
"target_ref": "x-misp-object--3cc8e8c8-8a37-43dc-ad1b-a3fe8178a358"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--76c26a26-2a95-4d70-ad31-de9cc73f5b17",
"created": "2018-07-25T20:59:49.000Z",
"modified": "2018-07-25T20:59:49.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--cb8c1f90-8fa5-40a3-9fa3-dc1415a2be70",
"target_ref": "x-misp-object--37d37c7c-c665-4cc0-b7d2-75a5bae96999"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--4ddc1236-8d1e-48a6-b8f8-55735fef47ac",
"created": "2018-07-25T20:59:50.000Z",
"modified": "2018-07-25T20:59:50.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--2809ae6d-0f07-46c0-a476-dfeec3076b23",
"target_ref": "x-misp-object--b1df06cf-64e3-4cf9-b7d0-7b7107d06abf"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--b22d1946-7eea-4e2f-9b09-9b9369c96724",
"created": "2018-07-25T20:59:50.000Z",
"modified": "2018-07-25T20:59:50.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--fd9e918c-a015-42aa-8c06-18d603937354",
"target_ref": "x-misp-object--ca56de15-15e7-4dea-b035-1d253f952c52"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--475d780c-1e7e-4d07-a4a6-ed907c7afd02",
"created": "2018-07-25T20:59:50.000Z",
"modified": "2018-07-25T20:59:50.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--2ab6ee33-dce7-4fe2-8fc1-9a352a6b58c7",
"target_ref": "x-misp-object--d3dbfdd6-7eae-4dae-953b-6d8d56c6a82d"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--c3d2cacc-d0ba-4d3e-b00c-d533f00bfd02",
"created": "2018-07-25T20:59:50.000Z",
"modified": "2018-07-25T20:59:50.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--5e34ef7e-4080-4342-a2ed-a45eaa252537",
"target_ref": "x-misp-object--e409b3d9-42dc-4f10-8b9a-ee88f8b8ad3f"
},
{
"type": "relationship",
"spec_version": "2.1",
"id": "relationship--1ab41d2f-01a4-4662-84b6-b5f309f6866f",
"created": "2018-07-25T20:59:50.000Z",
"modified": "2018-07-25T20:59:50.000Z",
"relationship_type": "analysed-with",
"source_ref": "x-misp-object--c3d921b7-e61e-4056-aa56-8d697f5768b8",
"target_ref": "x-misp-object--464d3928-33d4-43f4-9685-3fdc23ba76a3"
},
{
"type": "marking-definition",
"spec_version": "2.1",
"id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",
"created": "2017-01-20T00:00:00.000Z",
"definition_type": "tlp",
"name": "TLP:WHITE",
"definition": {
"tlp": "white"
}
}
]
}