misp-circl-feed/feeds/circl/misp/5af5a46d-52e8-4740-997c-56790acd0835.json

1882 lines
No EOL
74 KiB
JSON

{
"type": "bundle",
"id": "bundle--5af5a46d-52e8-4740-997c-56790acd0835",
"objects": [
{
"type": "identity",
"spec_version": "2.1",
"id": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-15T15:49:20.000Z",
"modified": "2018-05-15T15:49:20.000Z",
"name": "Synovus Financial",
"identity_class": "organization"
},
{
"type": "report",
"spec_version": "2.1",
"id": "report--5af5a46d-52e8-4740-997c-56790acd0835",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-15T15:49:20.000Z",
"modified": "2018-05-15T15:49:20.000Z",
"name": "Late Emotet yesterday 5/8/2018",
"published": "2018-05-15T16:15:00Z",
"object_refs": [
"indicator--c695e058-ae6b-4b14-aaf9-b970ceef7172",
"indicator--44e80590-a0f1-4bc7-b077-a801bb70f4cf",
"indicator--d8f8b4f9-c450-430d-9578-6db6f9151d22",
"indicator--95c15d64-1df6-4184-ab74-8fd856542a7a",
"indicator--dc819b9d-c67b-4782-aae3-5a24ff795b6e",
"indicator--11ee6bcd-d8e0-44c5-9ae9-3911db3d497d",
"indicator--04e7b369-6287-4dd5-9443-2539116d576b",
"indicator--dcbe53ce-80b6-44c4-9359-4ec4d1d30ff1",
"indicator--465b2446-dc98-4f97-b513-b9d5f4e96039",
"indicator--316096c9-71d5-4b53-a5e0-37d7548af1a1",
"indicator--776d5031-c1fc-4ab1-bc99-ae1bc748f66f",
"indicator--a08de967-2d1c-4161-bc07-244ac80e75b4",
"indicator--676c0164-90cc-4ec5-acd1-1d63930cd9f7",
"indicator--6588ca8d-baf2-423a-9a8e-5f143b8c47df",
"indicator--ca2c98f9-2968-412e-bd58-3656946538f9",
"indicator--62b1d801-aafa-4f87-9f12-401d306c2c60",
"indicator--17358ae3-0fee-457d-8ac7-1c00e7ea40c5",
"indicator--fccf2413-43b9-4ded-a61b-7924930a7ef2",
"indicator--32bf3446-f9e5-4481-80e0-d1a3e3cec01d",
"indicator--fdfac100-16bd-4121-88f5-7fd2f3dd3fea",
"indicator--5ff2a5f7-5510-451f-8971-8bbfbdee56e9",
"indicator--4b3c3165-520a-4d86-810f-db8084c48dfe",
"indicator--6837e7d6-c227-40be-af43-1e1f547e31f4",
"indicator--fac3c165-d8f4-4c1a-a7ea-9ba4d3bf42c7",
"indicator--0818affb-6231-4ed8-94cf-7c2bf444dae6",
"indicator--53ce7e29-0fb7-4f37-a3d2-91bc67fb3e30",
"indicator--4aaeabb2-5e2f-4dd5-8315-7006fe13758f",
"indicator--82426562-9dcb-4ae8-99a0-dd160a4710a4",
"indicator--e12ffd2c-dd46-4f80-a8d4-25fca65a5825",
"indicator--96b22acb-588f-4257-b114-11358e9762db",
"indicator--2ad95171-0f12-475a-b343-ab69e80dc920",
"indicator--b4fd4cfa-7e8b-47cc-a5f0-739581a6e2b3",
"indicator--f3f20da0-2f3f-46dc-879d-4e033ec81f89",
"indicator--c1d1c456-5d73-4286-a0fa-068f8844b2ed",
"indicator--903ca4e6-c48d-47f6-a3f2-8a26f51b88d5",
"indicator--e91dd2cb-55d3-4ea4-8e1a-2c05ef4d0de0",
"indicator--6272b98f-fab7-4949-869f-bb45586d6c47",
"indicator--acc6ed47-b6c1-4e8a-bc72-c21141b09670",
"indicator--2e26029d-cdd7-4d43-aa56-f5019b637149",
"indicator--36e060a5-cdfd-4033-8e36-06cd6c76fc1b",
"indicator--fa1bc5bc-9949-4833-8172-3cd198476298",
"indicator--fc683a62-0a13-4eea-bdc7-0fb1d9353512",
"indicator--54848155-818d-41fe-98e1-b0847dedad68",
"indicator--6767c5c1-7516-4dcc-aa15-f4d74730cf81",
"indicator--50750f6b-f746-4055-81e2-7123be6c0d65",
"indicator--3eb4cba2-3f09-4619-b294-576a383ffbf3",
"indicator--1e8c9f08-b701-4391-a923-dff8bf7c2cc8",
"indicator--9ccc2c51-83bb-41db-ac32-d1460a2afa47",
"indicator--d44c0c6c-4bc1-4c22-9378-f4c57ad7237c",
"indicator--9aae2214-66f8-4041-8d25-40f263f058e8",
"indicator--62a32a48-3265-4994-94e3-d7544fd0b4ba",
"indicator--4b3a84ed-0f9b-48ef-94e4-e3bf43eeebee",
"indicator--78041a53-cf47-4d69-8fd7-92958c4dadee",
"indicator--460d4aa4-4ada-43ac-9433-a15d8c0cccdf",
"indicator--9dbf09b1-e260-4d41-af1c-b59c36822c91",
"indicator--ece4e2f2-e147-4a38-8d6a-585819d9598f",
"indicator--8c4e7f5f-6ee9-47ff-9696-ab16fe3ca168",
"indicator--9d4fd432-ad0e-4827-b1f5-4531de4b3c27",
"observed-data--8cfba633-3aac-43e4-8c0a-14a9607bad03",
"network-traffic--8cfba633-3aac-43e4-8c0a-14a9607bad03",
"ipv4-addr--8cfba633-3aac-43e4-8c0a-14a9607bad03",
"observed-data--0e1da33e-065e-4e59-80cc-b4cbd8027de9",
"network-traffic--0e1da33e-065e-4e59-80cc-b4cbd8027de9",
"ipv4-addr--0e1da33e-065e-4e59-80cc-b4cbd8027de9",
"observed-data--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593",
"network-traffic--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593",
"ipv4-addr--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593",
"observed-data--3338fb06-339b-408d-9e9c-1f1d3521648a",
"network-traffic--3338fb06-339b-408d-9e9c-1f1d3521648a",
"ipv4-addr--3338fb06-339b-408d-9e9c-1f1d3521648a",
"observed-data--3a4db54d-6c15-46da-a66d-c685dc147d0e",
"network-traffic--3a4db54d-6c15-46da-a66d-c685dc147d0e",
"ipv4-addr--3a4db54d-6c15-46da-a66d-c685dc147d0e",
"observed-data--c94ccb79-d1b5-481b-b6dc-fa7024739417",
"network-traffic--c94ccb79-d1b5-481b-b6dc-fa7024739417",
"ipv4-addr--c94ccb79-d1b5-481b-b6dc-fa7024739417",
"observed-data--466d4ca1-5838-484c-9d36-7480a35e55ba",
"network-traffic--466d4ca1-5838-484c-9d36-7480a35e55ba",
"ipv4-addr--466d4ca1-5838-484c-9d36-7480a35e55ba",
"observed-data--6c913421-5949-492d-bafc-8895027431c1",
"network-traffic--6c913421-5949-492d-bafc-8895027431c1",
"ipv4-addr--6c913421-5949-492d-bafc-8895027431c1",
"observed-data--45e35989-b850-4f36-80a1-b8cc1b3b239c",
"network-traffic--45e35989-b850-4f36-80a1-b8cc1b3b239c",
"ipv4-addr--45e35989-b850-4f36-80a1-b8cc1b3b239c",
"observed-data--547a0ad8-ecb8-440f-99aa-3849fd42f3b5",
"network-traffic--547a0ad8-ecb8-440f-99aa-3849fd42f3b5",
"ipv4-addr--547a0ad8-ecb8-440f-99aa-3849fd42f3b5",
"observed-data--61164945-d81f-4d25-8970-c98d44aa0b07",
"network-traffic--61164945-d81f-4d25-8970-c98d44aa0b07",
"ipv4-addr--61164945-d81f-4d25-8970-c98d44aa0b07",
"observed-data--6533ca87-423d-423f-bc70-93187ccf8b32",
"network-traffic--6533ca87-423d-423f-bc70-93187ccf8b32",
"ipv4-addr--6533ca87-423d-423f-bc70-93187ccf8b32"
],
"labels": [
"Threat-Report",
"misp:tool=\"MISP-STIX-Converter\"",
"misp-galaxy:tool=\"Emotet\""
],
"object_marking_refs": [
"marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9"
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--c695e058-ae6b-4b14-aaf9-b970ceef7172",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:10:56.000Z",
"modified": "2018-05-11T14:10:56.000Z",
"pattern": "[file:hashes.MD5 = 'a32e1eb8dcd4093525287de2b424c5a9']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:10:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Payload delivery"
}
],
"labels": [
"misp:type=\"md5\"",
"misp:category=\"Payload delivery\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--44e80590-a0f1-4bc7-b077-a801bb70f4cf",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:10:59.000Z",
"modified": "2018-05-11T14:10:59.000Z",
"pattern": "[domain-name:value = 'beton.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:10:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d8f8b4f9-c450-430d-9578-6db6f9151d22",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:02.000Z",
"modified": "2018-05-11T14:11:02.000Z",
"pattern": "[url:value = 'http://equilibreocupacional.com.br/4MEfSSwuuI/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--95c15d64-1df6-4184-ab74-8fd856542a7a",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:05.000Z",
"modified": "2018-05-11T14:11:05.000Z",
"pattern": "[domain-name:value = 'equilibreocupacional.com.br']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:05Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--dc819b9d-c67b-4782-aae3-5a24ff795b6e",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:08.000Z",
"modified": "2018-05-11T14:11:08.000Z",
"pattern": "[url:value = 'http://die3t.de/0L7WojLqP/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:08Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--11ee6bcd-d8e0-44c5-9ae9-3911db3d497d",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:11.000Z",
"modified": "2018-05-11T14:11:11.000Z",
"pattern": "[domain-name:value = 'die3t.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:11Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--04e7b369-6287-4dd5-9443-2539116d576b",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:14.000Z",
"modified": "2018-05-11T14:11:14.000Z",
"pattern": "[url:value = 'http://chuckblier.com/cgi8B8BT/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:14Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--dcbe53ce-80b6-44c4-9359-4ec4d1d30ff1",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:17.000Z",
"modified": "2018-05-11T14:11:17.000Z",
"pattern": "[domain-name:value = 'chuckblier.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:17Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--465b2446-dc98-4f97-b513-b9d5f4e96039",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:20.000Z",
"modified": "2018-05-11T14:11:20.000Z",
"pattern": "[url:value = 'http://candacejean.com/1cQoc0VkUhT1U2/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:20Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--316096c9-71d5-4b53-a5e0-37d7548af1a1",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:23.000Z",
"modified": "2018-05-11T14:11:23.000Z",
"pattern": "[domain-name:value = 'candacejean.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:23Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--776d5031-c1fc-4ab1-bc99-ae1bc748f66f",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:26.000Z",
"modified": "2018-05-11T14:11:26.000Z",
"pattern": "[url:value = 'http://agridron.com/IVJyv3fqg/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:26Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--a08de967-2d1c-4161-bc07-244ac80e75b4",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:29.000Z",
"modified": "2018-05-11T14:11:29.000Z",
"pattern": "[domain-name:value = 'agridron.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:29Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--676c0164-90cc-4ec5-acd1-1d63930cd9f7",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:32.000Z",
"modified": "2018-05-11T14:11:32.000Z",
"pattern": "[url:value = 'http://clickdeal.us/TXvVSYUYasoPT6/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:32Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6588ca8d-baf2-423a-9a8e-5f143b8c47df",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:35.000Z",
"modified": "2018-05-11T14:11:35.000Z",
"pattern": "[domain-name:value = 'clickdeal.us']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:35Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--ca2c98f9-2968-412e-bd58-3656946538f9",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:38.000Z",
"modified": "2018-05-11T14:11:38.000Z",
"pattern": "[url:value = 'http://n3rdz.com/oftHLj8LC/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:38Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--62b1d801-aafa-4f87-9f12-401d306c2c60",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:41.000Z",
"modified": "2018-05-11T14:11:41.000Z",
"pattern": "[domain-name:value = 'n3rdz.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:41Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--17358ae3-0fee-457d-8ac7-1c00e7ea40c5",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:44.000Z",
"modified": "2018-05-11T14:11:44.000Z",
"pattern": "[url:value = 'http://cninin.com/app/2zxBimojWmD1NNX/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:44Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--fccf2413-43b9-4ded-a61b-7924930a7ef2",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:47.000Z",
"modified": "2018-05-11T14:11:47.000Z",
"pattern": "[domain-name:value = 'cninin.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:47Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--32bf3446-f9e5-4481-80e0-d1a3e3cec01d",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:50.000Z",
"modified": "2018-05-11T14:11:50.000Z",
"pattern": "[url:value = 'http://hydrocarbonreports.com/9ZUPGfuBm8RS5X/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:50Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--fdfac100-16bd-4121-88f5-7fd2f3dd3fea",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:53.000Z",
"modified": "2018-05-11T14:11:53.000Z",
"pattern": "[domain-name:value = 'hydrocarbonreports.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:53Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--5ff2a5f7-5510-451f-8971-8bbfbdee56e9",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:56.000Z",
"modified": "2018-05-11T14:11:56.000Z",
"pattern": "[url:value = 'http://amazingmike.net/70vl32a/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:56Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--4b3c3165-520a-4d86-810f-db8084c48dfe",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:11:59.000Z",
"modified": "2018-05-11T14:11:59.000Z",
"pattern": "[domain-name:value = 'amazingmike.net']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:11:59Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6837e7d6-c227-40be-af43-1e1f547e31f4",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:02.000Z",
"modified": "2018-05-11T14:12:02.000Z",
"pattern": "[url:value = 'http://pchost-aeronet.hu/UH4XNeRkct9pw/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:02Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--fac3c165-d8f4-4c1a-a7ea-9ba4d3bf42c7",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:06.000Z",
"modified": "2018-05-11T14:12:06.000Z",
"pattern": "[domain-name:value = 'pchost-aeronet.hu']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--0818affb-6231-4ed8-94cf-7c2bf444dae6",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:09.000Z",
"modified": "2018-05-11T14:12:09.000Z",
"pattern": "[url:value = 'http://cripliver.com/KgqyGXc/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:09Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--53ce7e29-0fb7-4f37-a3d2-91bc67fb3e30",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:12.000Z",
"modified": "2018-05-11T14:12:12.000Z",
"pattern": "[domain-name:value = 'cripliver.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:12Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--4aaeabb2-5e2f-4dd5-8315-7006fe13758f",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:15.000Z",
"modified": "2018-05-11T14:12:15.000Z",
"pattern": "[url:value = 'http://davehale.co.uk/hdKwEZlx9TFo/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:15Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--82426562-9dcb-4ae8-99a0-dd160a4710a4",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:18.000Z",
"modified": "2018-05-11T14:12:18.000Z",
"pattern": "[domain-name:value = 'davehale.co.uk']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--e12ffd2c-dd46-4f80-a8d4-25fca65a5825",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:21.000Z",
"modified": "2018-05-11T14:12:21.000Z",
"pattern": "[url:value = 'http://carlotrhy.cz/ZLy2tPiEAZcWXyI/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:21Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--96b22acb-588f-4257-b114-11358e9762db",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:24.000Z",
"modified": "2018-05-11T14:12:24.000Z",
"pattern": "[domain-name:value = 'carlotrhy.cz']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:24Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--2ad95171-0f12-475a-b343-ab69e80dc920",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:27.000Z",
"modified": "2018-05-11T14:12:27.000Z",
"pattern": "[url:value = 'http://amborzasco.it/foto/sagra2009/nKo6BtjKK/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:27Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--b4fd4cfa-7e8b-47cc-a5f0-739581a6e2b3",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:30.000Z",
"modified": "2018-05-11T14:12:30.000Z",
"pattern": "[domain-name:value = 'amborzasco.it']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:30Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--f3f20da0-2f3f-46dc-879d-4e033ec81f89",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:33.000Z",
"modified": "2018-05-11T14:12:33.000Z",
"pattern": "[url:value = 'http://bobcook.ca/03neOjHto/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:33Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--c1d1c456-5d73-4286-a0fa-068f8844b2ed",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:36.000Z",
"modified": "2018-05-11T14:12:36.000Z",
"pattern": "[domain-name:value = 'bobcook.ca']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:36Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--903ca4e6-c48d-47f6-a3f2-8a26f51b88d5",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:39.000Z",
"modified": "2018-05-11T14:12:39.000Z",
"pattern": "[url:value = 'http://aussiescanners.com/inJ8OR3z6JCp5r/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:39Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--e91dd2cb-55d3-4ea4-8e1a-2c05ef4d0de0",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:42.000Z",
"modified": "2018-05-11T14:12:42.000Z",
"pattern": "[domain-name:value = 'aussiescanners.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:42Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6272b98f-fab7-4949-869f-bb45586d6c47",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:45.000Z",
"modified": "2018-05-11T14:12:45.000Z",
"pattern": "[url:value = 'http://crazy-systems.com/1VtpMEB/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:45Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--acc6ed47-b6c1-4e8a-bc72-c21141b09670",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:48.000Z",
"modified": "2018-05-11T14:12:48.000Z",
"pattern": "[domain-name:value = 'crazy-systems.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:48Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--2e26029d-cdd7-4d43-aa56-f5019b637149",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:51.000Z",
"modified": "2018-05-11T14:12:51.000Z",
"pattern": "[url:value = 'http://limitedwisdom.com/yOVlSpGAzc2hEnp/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:51Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--36e060a5-cdfd-4033-8e36-06cd6c76fc1b",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:54.000Z",
"modified": "2018-05-11T14:12:54.000Z",
"pattern": "[domain-name:value = 'limitedwisdom.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:54Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--fa1bc5bc-9949-4833-8172-3cd198476298",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:12:57.000Z",
"modified": "2018-05-11T14:12:57.000Z",
"pattern": "[url:value = 'http://cmeaststar.de/mYB2NNQrOx5RRe/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:12:57Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--fc683a62-0a13-4eea-bdc7-0fb1d9353512",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:00.000Z",
"modified": "2018-05-11T14:13:00.000Z",
"pattern": "[domain-name:value = 'cmeaststar.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:00Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--54848155-818d-41fe-98e1-b0847dedad68",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:03.000Z",
"modified": "2018-05-11T14:13:03.000Z",
"pattern": "[url:value = 'http://bluemirage.com/DtQMtqnPLPxF/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:03Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--6767c5c1-7516-4dcc-aa15-f4d74730cf81",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:06.000Z",
"modified": "2018-05-11T14:13:06.000Z",
"pattern": "[domain-name:value = 'bluemirage.com']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:06Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--50750f6b-f746-4055-81e2-7123be6c0d65",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:09.000Z",
"modified": "2018-05-11T14:13:09.000Z",
"pattern": "[url:value = 'http://bgba-visser.de/waVoapzdQTMlt4d/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:09Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--3eb4cba2-3f09-4619-b294-576a383ffbf3",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:12.000Z",
"modified": "2018-05-11T14:13:12.000Z",
"pattern": "[domain-name:value = 'bgba-visser.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:12Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--1e8c9f08-b701-4391-a923-dff8bf7c2cc8",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:15.000Z",
"modified": "2018-05-11T14:13:15.000Z",
"pattern": "[url:value = 'http://ccsweb.com.br/8PFNndSkq9cIsx/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:15Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--9ccc2c51-83bb-41db-ac32-d1460a2afa47",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:18.000Z",
"modified": "2018-05-11T14:13:18.000Z",
"pattern": "[domain-name:value = 'ccsweb.com.br']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:18Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--d44c0c6c-4bc1-4c22-9378-f4c57ad7237c",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:21.000Z",
"modified": "2018-05-11T14:13:21.000Z",
"pattern": "[url:value = 'http://beamdream.de/jNjOK/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:21Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--9aae2214-66f8-4041-8d25-40f263f058e8",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:24.000Z",
"modified": "2018-05-11T14:13:24.000Z",
"pattern": "[domain-name:value = 'beamdream.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:24Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--62a32a48-3265-4994-94e3-d7544fd0b4ba",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:27.000Z",
"modified": "2018-05-11T14:13:27.000Z",
"pattern": "[url:value = 'http://boomer75.de/vIfiK/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:27Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--4b3a84ed-0f9b-48ef-94e4-e3bf43eeebee",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:30.000Z",
"modified": "2018-05-11T14:13:30.000Z",
"pattern": "[domain-name:value = 'boomer75.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:30Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--78041a53-cf47-4d69-8fd7-92958c4dadee",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:33.000Z",
"modified": "2018-05-11T14:13:33.000Z",
"pattern": "[url:value = 'https://buschwein.de/UOgKvV/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:33Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--460d4aa4-4ada-43ac-9433-a15d8c0cccdf",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:36.000Z",
"modified": "2018-05-11T14:13:36.000Z",
"pattern": "[domain-name:value = 'buschwein.de']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:36Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--9dbf09b1-e260-4d41-af1c-b59c36822c91",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:39.000Z",
"modified": "2018-05-11T14:13:39.000Z",
"pattern": "[url:value = 'https://chergo.es/9feiuN/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:39Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--ece4e2f2-e147-4a38-8d6a-585819d9598f",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:42.000Z",
"modified": "2018-05-11T14:13:42.000Z",
"pattern": "[domain-name:value = 'chergo.es']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:42Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--8c4e7f5f-6ee9-47ff-9696-ab16fe3ca168",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:45.000Z",
"modified": "2018-05-11T14:13:45.000Z",
"pattern": "[url:value = 'http://awas.ws/Fzz7/']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:45Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"url\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "indicator",
"spec_version": "2.1",
"id": "indicator--9d4fd432-ad0e-4827-b1f5-4531de4b3c27",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-11T14:13:48.000Z",
"modified": "2018-05-11T14:13:48.000Z",
"pattern": "[domain-name:value = 'awas.ws']",
"pattern_type": "stix",
"pattern_version": "2.1",
"valid_from": "2018-05-11T14:13:48Z",
"kill_chain_phases": [
{
"kill_chain_name": "misp-category",
"phase_name": "Network activity"
}
],
"labels": [
"misp:type=\"hostname\"",
"misp:category=\"Network activity\"",
"misp:to_ids=\"True\""
]
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--8cfba633-3aac-43e4-8c0a-14a9607bad03",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--8cfba633-3aac-43e4-8c0a-14a9607bad03",
"ipv4-addr--8cfba633-3aac-43e4-8c0a-14a9607bad03"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--8cfba633-3aac-43e4-8c0a-14a9607bad03",
"dst_ref": "ipv4-addr--8cfba633-3aac-43e4-8c0a-14a9607bad03",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--8cfba633-3aac-43e4-8c0a-14a9607bad03",
"value": "50.37.10.78"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--0e1da33e-065e-4e59-80cc-b4cbd8027de9",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--0e1da33e-065e-4e59-80cc-b4cbd8027de9",
"ipv4-addr--0e1da33e-065e-4e59-80cc-b4cbd8027de9"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--0e1da33e-065e-4e59-80cc-b4cbd8027de9",
"dst_ref": "ipv4-addr--0e1da33e-065e-4e59-80cc-b4cbd8027de9",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--0e1da33e-065e-4e59-80cc-b4cbd8027de9",
"value": "75.128.208.218"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593",
"ipv4-addr--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593",
"dst_ref": "ipv4-addr--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--3fdeaa62-81f8-4ffc-b5cd-87b96bbd9593",
"value": "70.167.17.7"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--3338fb06-339b-408d-9e9c-1f1d3521648a",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--3338fb06-339b-408d-9e9c-1f1d3521648a",
"ipv4-addr--3338fb06-339b-408d-9e9c-1f1d3521648a"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--3338fb06-339b-408d-9e9c-1f1d3521648a",
"dst_ref": "ipv4-addr--3338fb06-339b-408d-9e9c-1f1d3521648a",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--3338fb06-339b-408d-9e9c-1f1d3521648a",
"value": "72.49.55.42"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--3a4db54d-6c15-46da-a66d-c685dc147d0e",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--3a4db54d-6c15-46da-a66d-c685dc147d0e",
"ipv4-addr--3a4db54d-6c15-46da-a66d-c685dc147d0e"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--3a4db54d-6c15-46da-a66d-c685dc147d0e",
"dst_ref": "ipv4-addr--3a4db54d-6c15-46da-a66d-c685dc147d0e",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--3a4db54d-6c15-46da-a66d-c685dc147d0e",
"value": "65.25.17.131"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--c94ccb79-d1b5-481b-b6dc-fa7024739417",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--c94ccb79-d1b5-481b-b6dc-fa7024739417",
"ipv4-addr--c94ccb79-d1b5-481b-b6dc-fa7024739417"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--c94ccb79-d1b5-481b-b6dc-fa7024739417",
"dst_ref": "ipv4-addr--c94ccb79-d1b5-481b-b6dc-fa7024739417",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--c94ccb79-d1b5-481b-b6dc-fa7024739417",
"value": "173.78.254.86"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--466d4ca1-5838-484c-9d36-7480a35e55ba",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--466d4ca1-5838-484c-9d36-7480a35e55ba",
"ipv4-addr--466d4ca1-5838-484c-9d36-7480a35e55ba"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--466d4ca1-5838-484c-9d36-7480a35e55ba",
"dst_ref": "ipv4-addr--466d4ca1-5838-484c-9d36-7480a35e55ba",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--466d4ca1-5838-484c-9d36-7480a35e55ba",
"value": "105.228.39.7"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--6c913421-5949-492d-bafc-8895027431c1",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--6c913421-5949-492d-bafc-8895027431c1",
"ipv4-addr--6c913421-5949-492d-bafc-8895027431c1"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--6c913421-5949-492d-bafc-8895027431c1",
"dst_ref": "ipv4-addr--6c913421-5949-492d-bafc-8895027431c1",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--6c913421-5949-492d-bafc-8895027431c1",
"value": "179.52.46.11"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--45e35989-b850-4f36-80a1-b8cc1b3b239c",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--45e35989-b850-4f36-80a1-b8cc1b3b239c",
"ipv4-addr--45e35989-b850-4f36-80a1-b8cc1b3b239c"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--45e35989-b850-4f36-80a1-b8cc1b3b239c",
"dst_ref": "ipv4-addr--45e35989-b850-4f36-80a1-b8cc1b3b239c",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--45e35989-b850-4f36-80a1-b8cc1b3b239c",
"value": "192.227.112.57"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--547a0ad8-ecb8-440f-99aa-3849fd42f3b5",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--547a0ad8-ecb8-440f-99aa-3849fd42f3b5",
"ipv4-addr--547a0ad8-ecb8-440f-99aa-3849fd42f3b5"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--547a0ad8-ecb8-440f-99aa-3849fd42f3b5",
"dst_ref": "ipv4-addr--547a0ad8-ecb8-440f-99aa-3849fd42f3b5",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--547a0ad8-ecb8-440f-99aa-3849fd42f3b5",
"value": "70.183.98.85"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--61164945-d81f-4d25-8970-c98d44aa0b07",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--61164945-d81f-4d25-8970-c98d44aa0b07",
"ipv4-addr--61164945-d81f-4d25-8970-c98d44aa0b07"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--61164945-d81f-4d25-8970-c98d44aa0b07",
"dst_ref": "ipv4-addr--61164945-d81f-4d25-8970-c98d44aa0b07",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--61164945-d81f-4d25-8970-c98d44aa0b07",
"value": "69.129.91.38"
},
{
"type": "observed-data",
"spec_version": "2.1",
"id": "observed-data--6533ca87-423d-423f-bc70-93187ccf8b32",
"created_by_ref": "identity--5a68c02d-959c-4c8a-a571-0dcac0a8060a",
"created": "2018-05-14T11:54:48.000Z",
"modified": "2018-05-14T11:54:48.000Z",
"first_observed": "2018-05-14T11:54:48Z",
"last_observed": "2018-05-14T11:54:48Z",
"number_observed": 1,
"object_refs": [
"network-traffic--6533ca87-423d-423f-bc70-93187ccf8b32",
"ipv4-addr--6533ca87-423d-423f-bc70-93187ccf8b32"
],
"labels": [
"misp:type=\"ip-dst\"",
"misp:category=\"Network activity\""
]
},
{
"type": "network-traffic",
"spec_version": "2.1",
"id": "network-traffic--6533ca87-423d-423f-bc70-93187ccf8b32",
"dst_ref": "ipv4-addr--6533ca87-423d-423f-bc70-93187ccf8b32",
"protocols": [
"tcp"
]
},
{
"type": "ipv4-addr",
"spec_version": "2.1",
"id": "ipv4-addr--6533ca87-423d-423f-bc70-93187ccf8b32",
"value": "82.211.30.202"
},
{
"type": "marking-definition",
"spec_version": "2.1",
"id": "marking-definition--613f2e26-407d-48c7-9eca-b8e91df99dc9",
"created": "2017-01-20T00:00:00.000Z",
"definition_type": "tlp",
"name": "TLP:WHITE",
"definition": {
"tlp": "white"
}
}
]
}