357 lines
No EOL
10 KiB
JSON
357 lines
No EOL
10 KiB
JSON
{
|
|
"Event": {
|
|
"analysis": "0",
|
|
"date": "2016-08-08",
|
|
"extends_uuid": "",
|
|
"info": "Expansion on OSINT Lost your iPhone? Be on guard for a perfectly-timed Apple ID phishing attack by Hot For Security",
|
|
"publish_timestamp": "1470667688",
|
|
"published": true,
|
|
"threat_level_id": "3",
|
|
"timestamp": "1470667582",
|
|
"uuid": "57a8944a-ac6c-43ac-8cf4-4ebe950d210f",
|
|
"Orgc": {
|
|
"name": "CthulhuSPRL.be",
|
|
"uuid": "55f6ea5f-fd34-43b8-ac1d-40cb950d210f"
|
|
},
|
|
"Tag": [
|
|
{
|
|
"colour": "#33FF00",
|
|
"local": "0",
|
|
"name": "tlp:green",
|
|
"relationship_type": ""
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "External analysis",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470666104",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "57a89578-62b4-4107-8779-4fcb950d210f",
|
|
"value": "https://www.passivetotal.org/passive/show-iphone-location.com"
|
|
},
|
|
{
|
|
"category": "External analysis",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470666104",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "57a89578-b694-453f-b54c-4eda950d210f",
|
|
"value": "https://www.passivetotal.org/passive/5.189.140.84"
|
|
},
|
|
{
|
|
"category": "External analysis",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470666105",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "57a89579-3a20-4d0c-bdba-4761950d210f",
|
|
"value": "https://www.passivetotal.org/passive/31.204.153.197"
|
|
},
|
|
{
|
|
"category": "External analysis",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470666105",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "57a89579-2474-454c-b304-4098950d210f",
|
|
"value": "https://www.passivetotal.org/passive/162.210.99.240"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470666115",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89583-d520-41c5-b259-4f7c950d210f",
|
|
"value": "show-iphone-location.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667306",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "57a89a2a-5fd0-48c5-a663-4b54950d210f",
|
|
"value": "5.189.140.84"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667306",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "57a89a2a-a4dc-42fd-9289-48e9950d210f",
|
|
"value": "162.210.99.240"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667375",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a6f-a260-45ee-ac58-458c950d210f",
|
|
"value": "apple-map-locate.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667375",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a6f-1a84-4870-8d47-4b53950d210f",
|
|
"value": "findmyiphone-system.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667375",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a6f-efac-4647-93db-4a4e950d210f",
|
|
"value": "alert-support.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667375",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a6f-cd44-4887-a61b-4f28950d210f",
|
|
"value": "icloudsecurelogin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667376",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a70-0d94-453e-9739-42e3950d210f",
|
|
"value": "fmi-verify-lost.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667376",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a70-cef0-409a-bda0-4395950d210f",
|
|
"value": "alert-map.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667376",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a70-c450-4212-b708-4ead950d210f",
|
|
"value": "apple-support-apple.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667377",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a71-0728-4871-8dfa-40e9950d210f",
|
|
"value": "lcloud-location-map.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667377",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a71-6da4-424e-8b1f-46f5950d210f",
|
|
"value": "findmyiphones-team.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667377",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a71-bc44-4768-8087-476d950d210f",
|
|
"value": "security-ios.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667377",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a71-014c-4e3d-801b-4c7c950d210f",
|
|
"value": "locationteam-icloud.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667378",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a72-be84-4cad-a2af-4853950d210f",
|
|
"value": "icloud-find.us"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667378",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a72-0328-4289-9558-4c70950d210f",
|
|
"value": "icloudview.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667378",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a72-2904-4980-9957-42ac950d210f",
|
|
"value": "forum.liveplays.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667378",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a72-677c-422a-b98b-4fdc950d210f",
|
|
"value": "iphone-service.us"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667378",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89a72-4208-4b46-adad-43eb950d210f",
|
|
"value": "fmidevice-location.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667582",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89b3e-359c-4ae9-92de-4c5c950d210f",
|
|
"value": "rakgrs.xyz"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667582",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89b3e-04b8-4dfc-bb2f-4405950d210f",
|
|
"value": "verify-apple-id.us"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667582",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89b3e-7b5c-4190-b88e-4468950d210f",
|
|
"value": "trackingiphonelocation.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667582",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89b3e-e428-41e7-86d8-4660950d210f",
|
|
"value": "mmison.xyz"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667583",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89b3f-386c-4b54-a41e-4685950d210f",
|
|
"value": "verify-iphone-location.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667583",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89b3f-f5c4-4db5-a3d3-4c5d950d210f",
|
|
"value": "microexperts.xyz"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1470667583",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "57a89b3f-436c-45dd-a778-46ba950d210f",
|
|
"value": "hamedia.net"
|
|
}
|
|
]
|
|
}
|
|
} |