misp-circl-feed/feeds/circl/misp/57db9b97-4ad8-41d7-8c98-4cbb950d210f.json

880 lines
No EOL
26 KiB
JSON

{
"Event": {
"analysis": "0",
"date": "2016-09-16",
"extends_uuid": "",
"info": "Malspam 2016-09-16 (.hta in .zip) - campaign: \"(Attached|Emailing|Copy|File): (Scan|Receipt|Document)(integer)\"",
"publish_timestamp": "1474010095",
"published": true,
"threat_level_id": "3",
"timestamp": "1474010070",
"uuid": "57db9b97-4ad8-41d7-8c98-4cbb950d210f",
"Orgc": {
"name": "CIRCL",
"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f"
},
"Tag": [
{
"colour": "#ffffff",
"local": "0",
"name": "tlp:white",
"relationship_type": ""
},
{
"colour": "#3b7500",
"local": "0",
"name": "circl:incident-classification=\"malware\"",
"relationship_type": ""
}
],
"Attribute": [
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010041",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bb9-5e98-4ce0-bcb2-4177950d210f",
"value": "100.42.63.120"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010042",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bba-bae4-4c32-ad7f-4d4e950d210f",
"value": "14.102.148.24"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010042",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bba-69cc-4dcb-be0a-4313950d210f",
"value": "144.76.104.67"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010042",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bba-37f8-4639-b5fa-41a3950d210f",
"value": "160.153.93.132"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010042",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bba-1104-40f6-b376-45af950d210f",
"value": "173.254.44.212"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010043",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbb-b298-46cb-94f9-43c3950d210f",
"value": "186.64.121.131"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010043",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbb-cfb0-4368-965c-49d7950d210f",
"value": "193.218.152.239"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010043",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbb-cb00-4b63-9ec7-4a08950d210f",
"value": "199.59.58.6"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010043",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbb-13c8-448c-845c-4ac2950d210f",
"value": "202.52.146.37"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010043",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbb-f888-4cc1-a573-496e950d210f",
"value": "203.170.192.184"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010044",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbc-d724-4254-90bb-4454950d210f",
"value": "205.134.224.227"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010044",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbc-f5cc-4247-98db-4ec7950d210f",
"value": "208.76.86.168"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010044",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbc-2e6c-47e2-832d-451f950d210f",
"value": "212.175.247.30"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010044",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbc-fc4c-4c55-933c-4e14950d210f",
"value": "212.57.32.7"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010044",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbc-b9b4-4e39-96cb-443a950d210f",
"value": "221.122.111.73"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010044",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbc-5654-41a8-9db3-4e3b950d210f",
"value": "223.130.24.150"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010045",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbd-e1d0-4322-937c-4a35950d210f",
"value": "37.187.75.173"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010045",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbd-7fd8-4ced-8cde-4838950d210f",
"value": "43.245.62.130"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010045",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbd-4ba0-4d91-983e-4131950d210f",
"value": "64.34.157.60"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010045",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbd-77b8-4936-8831-437a950d210f",
"value": "77.245.154.98"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010045",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbd-dd84-4369-a7b3-4163950d210f",
"value": "78.140.209.36"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010046",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbe-04e4-4fd9-8f6f-441e950d210f",
"value": "83.96.174.226"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010046",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbe-2990-47ec-917d-4ead950d210f",
"value": "88.198.174.188"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010046",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbe-0d44-4b33-b1f1-40e5950d210f",
"value": "91.186.1.102"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010046",
"to_ids": true,
"type": "ip-dst",
"uuid": "57db9bbe-9a14-45cb-9ad4-4bb8950d210f",
"value": "92.43.113.68"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010046",
"to_ids": true,
"type": "domain",
"uuid": "57db9bbe-ce18-47fd-963b-4068950d210f",
"value": "alexandrkireev.ru"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010047",
"to_ids": true,
"type": "domain",
"uuid": "57db9bbf-f13c-4ff0-ad28-4ae3950d210f",
"value": "bukkuz.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010047",
"to_ids": true,
"type": "hostname",
"uuid": "57db9bbf-1470-45c5-85f7-4deb950d210f",
"value": "demo.website.pl"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010047",
"to_ids": true,
"type": "url",
"uuid": "57db9bbf-54fc-4787-aa10-43d3950d210f",
"value": "http://alexandrkireev.ru/rqcklbm"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010047",
"to_ids": true,
"type": "url",
"uuid": "57db9bbf-db6c-45d1-9e02-4b9d950d210f",
"value": "http://bukkuz.com/qyopafb"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010048",
"to_ids": true,
"type": "url",
"uuid": "57db9bc0-0340-437f-bbf6-4206950d210f",
"value": "http://demo.website.pl/ugfsfed"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010048",
"to_ids": true,
"type": "url",
"uuid": "57db9bc0-9f30-4eec-88ff-42f6950d210f",
"value": "http://jsydjc.com/nakhldo"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010048",
"to_ids": true,
"type": "url",
"uuid": "57db9bc0-f914-4dee-9e66-4a9f950d210f",
"value": "http://kliksiska.com/ciwdpgg"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010049",
"to_ids": true,
"type": "url",
"uuid": "57db9bc1-75a8-45bf-87f3-4a14950d210f",
"value": "http://lv-nexis.com/unicyct"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010049",
"to_ids": true,
"type": "url",
"uuid": "57db9bc1-6fbc-4d16-9487-4497950d210f",
"value": "http://mahovik-bg.com/gnixsfq"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010050",
"to_ids": true,
"type": "url",
"uuid": "57db9bc2-69f4-4ccb-91b3-4f34950d210f",
"value": "http://markanltd.com/rrdmwim"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010050",
"to_ids": true,
"type": "url",
"uuid": "57db9bc2-f4f4-4a55-bfdb-4747950d210f",
"value": "http://mclodesigns.com/edvxmhd"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010051",
"to_ids": true,
"type": "url",
"uuid": "57db9bc3-893c-4210-9f09-48e4950d210f",
"value": "http://nipeldogalgaz.com/dplsdkf"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010051",
"to_ids": true,
"type": "url",
"uuid": "57db9bc3-55e8-4ab2-8272-4a38950d210f",
"value": "http://paraspokeri.net/rvtgffk"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010051",
"to_ids": true,
"type": "url",
"uuid": "57db9bc3-4338-432c-b642-43e1950d210f",
"value": "http://proforceaudio.com/onhejgc"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010052",
"to_ids": true,
"type": "url",
"uuid": "57db9bc4-390c-439e-8201-4d71950d210f",
"value": "http://psychquiz.com/uxpfxgh"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010052",
"to_ids": true,
"type": "url",
"uuid": "57db9bc4-02a8-4808-a187-4e92950d210f",
"value": "http://rentvspb.ru/gtipssu"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010053",
"to_ids": true,
"type": "url",
"uuid": "57db9bc5-d284-426a-b7dd-4b7f950d210f",
"value": "http://samenart.com/nyvsbcl"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010053",
"to_ids": true,
"type": "url",
"uuid": "57db9bc5-581c-497f-85ec-495b950d210f",
"value": "http://sinergica.cl/eveasxb"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010054",
"to_ids": true,
"type": "url",
"uuid": "57db9bc6-e808-4e00-be61-45e8950d210f",
"value": "http://swivelsrus.com/neginnl"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010054",
"to_ids": true,
"type": "url",
"uuid": "57db9bc6-97cc-4aa6-adfa-4761950d210f",
"value": "http://szamba-betonowe.org/eswfxrm"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010054",
"to_ids": true,
"type": "url",
"uuid": "57db9bc6-a5fc-41d8-8f05-4c3d950d210f",
"value": "http://thewebgroup.net/suvahvg"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010055",
"to_ids": true,
"type": "url",
"uuid": "57db9bc7-7620-41a9-b4d5-4e8e950d210f",
"value": "http://tobybender.com/ocwklsy"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010055",
"to_ids": true,
"type": "url",
"uuid": "57db9bc7-41a0-493a-94d6-4570950d210f",
"value": "http://travelvoice.com/jvktjob"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010056",
"to_ids": true,
"type": "url",
"uuid": "57db9bc8-6398-4c3e-ab07-4f0c950d210f",
"value": "http://turkmennews.com/ucqwjvy"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010056",
"to_ids": true,
"type": "url",
"uuid": "57db9bc8-0de4-405a-8fd2-4d99950d210f",
"value": "http://urachart.com/vtnqgoc"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010057",
"to_ids": true,
"type": "url",
"uuid": "57db9bc9-472c-4f24-8dcf-42bd950d210f",
"value": "http://walterssigns.com/turjsty"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010057",
"to_ids": true,
"type": "url",
"uuid": "57db9bc9-3aac-423a-98fe-4469950d210f",
"value": "http://wongcs.com/ytcccbr"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010058",
"to_ids": true,
"type": "url",
"uuid": "57db9bca-ca6c-4f09-a5c4-49d0950d210f",
"value": "http://xsolution.sk/ljkyemd"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010059",
"to_ids": true,
"type": "domain",
"uuid": "57db9bcb-7584-422c-868d-4269950d210f",
"value": "jsydjc.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010059",
"to_ids": true,
"type": "domain",
"uuid": "57db9bcb-3ed8-4e8d-af3d-4d0c950d210f",
"value": "kliksiska.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010060",
"to_ids": true,
"type": "domain",
"uuid": "57db9bcc-329c-4a01-bb9b-41f1950d210f",
"value": "lv-nexis.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010060",
"to_ids": true,
"type": "domain",
"uuid": "57db9bcc-0b4c-41f2-88b2-4805950d210f",
"value": "mahovik-bg.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010061",
"to_ids": true,
"type": "domain",
"uuid": "57db9bcd-6cac-4fa7-9d35-43a7950d210f",
"value": "markanltd.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010061",
"to_ids": true,
"type": "domain",
"uuid": "57db9bcd-31f8-4607-895a-4eee950d210f",
"value": "mclodesigns.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010062",
"to_ids": true,
"type": "domain",
"uuid": "57db9bce-420c-4482-b546-45b9950d210f",
"value": "nipeldogalgaz.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010062",
"to_ids": true,
"type": "domain",
"uuid": "57db9bce-ebc0-4d2f-acd3-45a9950d210f",
"value": "paraspokeri.net"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010063",
"to_ids": true,
"type": "domain",
"uuid": "57db9bcf-1d84-4c0e-ab39-4d9c950d210f",
"value": "proforceaudio.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010063",
"to_ids": true,
"type": "domain",
"uuid": "57db9bcf-c8a8-4f7f-8b4e-41a0950d210f",
"value": "psychquiz.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010064",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd0-d268-4507-8aef-4c83950d210f",
"value": "rentvspb.ru"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010064",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd0-90c4-457b-9991-4bf6950d210f",
"value": "samenart.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010065",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd1-9ee8-4958-a637-48b1950d210f",
"value": "sinergica.cl"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010065",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd1-43c0-4a06-9515-4dd3950d210f",
"value": "swivelsrus.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010066",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd2-513c-4f44-beb4-4ae4950d210f",
"value": "szamba-betonowe.org"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010066",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd2-6930-4d90-b198-4c10950d210f",
"value": "thewebgroup.net"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010066",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd2-0748-422f-a735-45b8950d210f",
"value": "tobybender.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010067",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd3-16a8-4c1c-b4d3-4216950d210f",
"value": "travelvoice.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010067",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd3-06d0-4738-a11f-4464950d210f",
"value": "turkmennews.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010068",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd4-bf14-49f0-9cd3-4acd950d210f",
"value": "urachart.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010069",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd5-2a60-4eb0-bd93-475b950d210f",
"value": "walterssigns.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010069",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd5-e3ec-4641-b63d-4796950d210f",
"value": "wongcs.com"
},
{
"category": "Network activity",
"comment": "download location",
"deleted": false,
"disable_correlation": false,
"timestamp": "1474010069",
"to_ids": true,
"type": "domain",
"uuid": "57db9bd5-33ac-4342-8db1-4e09950d210f",
"value": "xsolution.sk"
}
]
}
}