24051 lines
No EOL
816 KiB
JSON
24051 lines
No EOL
816 KiB
JSON
{
|
|
"Event": {
|
|
"analysis": "2",
|
|
"date": "2020-10-30",
|
|
"extends_uuid": "",
|
|
"info": "OSINT - Ryuk Ransomware: Extensive Attack Infrastructure Revealed",
|
|
"publish_timestamp": "1604049043",
|
|
"published": true,
|
|
"threat_level_id": "2",
|
|
"timestamp": "1604048189",
|
|
"uuid": "cd8b9093-e319-4719-81b3-04a275b2f048",
|
|
"Orgc": {
|
|
"name": "CIRCL",
|
|
"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f"
|
|
},
|
|
"Tag": [
|
|
{
|
|
"colour": "#004646",
|
|
"local": "0",
|
|
"name": "type:OSINT",
|
|
"relationship_type": ""
|
|
},
|
|
{
|
|
"colour": "#0071c3",
|
|
"local": "0",
|
|
"name": "osint:lifetime=\"perpetual\"",
|
|
"relationship_type": ""
|
|
},
|
|
{
|
|
"colour": "#0087e8",
|
|
"local": "0",
|
|
"name": "osint:certainty=\"50\"",
|
|
"relationship_type": ""
|
|
},
|
|
{
|
|
"colour": "#ffffff",
|
|
"local": "0",
|
|
"name": "tlp:white",
|
|
"relationship_type": ""
|
|
},
|
|
{
|
|
"colour": "#0088cc",
|
|
"local": "0",
|
|
"name": "misp-galaxy:ransomware=\"Ryuk ransomware\"",
|
|
"relationship_type": ""
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8dfed048-c049-4ca3-8c61-18e849312303",
|
|
"value": "ns1.aaatus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b88500ac-0313-4587-a31d-1169f2cb698a",
|
|
"value": "ns2.aaatus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "165a272e-1ca2-471c-a546-7d280a93c8d8",
|
|
"value": "ns1.avrenew.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "55cdea8b-75a6-4ab0-93dc-d455cb2d5a85",
|
|
"value": "ns2.avrenew.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f086465e-1c86-4f39-90b2-0f29a3889061",
|
|
"value": "ns1.besttus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b2776b50-8071-4a5b-b2b8-a139a6bcc5ed",
|
|
"value": "ns2.besttus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b115a272-f614-4d78-8db3-4f5993dfb048",
|
|
"value": "ns1.bigtus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "85aceed2-4f89-486b-870c-1400dee522c1",
|
|
"value": "ns2.bigtus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "015f2f6f-df45-465b-95d1-928bf070e005",
|
|
"value": "ns1.checkwinupdate.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "602bf525-e5b4-4dc5-a505-94329b5db176",
|
|
"value": "ns2.checkwinupdate.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "02443c02-506b-4958-abd0-daccb7f77ef5",
|
|
"value": "ns1.ciscocheckapi.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a199f61e-5141-47ea-8425-dc0e924d7774",
|
|
"value": "ns2.ciscocheckapi.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f820ed47-f5a5-442e-9848-81df9b3bc31a",
|
|
"value": "ns1.cleardefencewin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7e54e76d-8e4c-4e7f-936c-83097ecffad3",
|
|
"value": "ns2.cleardefencewin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "bdb8d512-4b26-4ea4-a1b2-84731b47df17",
|
|
"value": "ns1.cmdupdatewin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "15f3bc4c-a33a-4cef-b36d-e064ff92a6b3",
|
|
"value": "ns2.cmdupdatewin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4b82b465-a2f5-4646-beb6-875bc34ec338",
|
|
"value": "ns1.comssite.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0aa27621-17cc-414e-9b59-bc6db1b99199",
|
|
"value": "ns2.comssite.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "15f46a6e-675b-46ef-a3dd-383e253be58b",
|
|
"value": "ns1.cylenceprotect.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8c5e3e2c-3a04-47e5-aa2d-7352d33420e1",
|
|
"value": "ns2.cylenceprotect.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "11c24aa3-d669-42b5-b6d7-d062392832be",
|
|
"value": "ns1.defenswin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c6c924b0-5c08-44d6-aef0-992614080b49",
|
|
"value": "ns2.defenswin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b8fe84f9-053c-40aa-8435-1601ae67c504",
|
|
"value": "ns1.easytus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3f74ca97-6061-4964-8a06-14d22e059efe",
|
|
"value": "ns2.easytus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "52829006-ac3e-43b6-b6e2-43535645482a",
|
|
"value": "ns1.findtus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e7ebb555-7a77-4f0b-8d44-0b7cfa514a43",
|
|
"value": "ns2.findtus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "606abae5-2d9e-41d0-b4c5-eebd578d9c1e",
|
|
"value": "ns1.firsttus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5485ef1f-0fb4-432b-8a21-5fef00d02258",
|
|
"value": "ns2.firsttus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4b8851f4-ced5-4804-b807-9e0e066350bc",
|
|
"value": "ns1.freeallsafe.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "795556f3-4f6d-4064-ab59-2f72a50eca6d",
|
|
"value": "ns2.freeallsafe.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8b83d295-3da3-4e07-b5b9-b803ab88ac08",
|
|
"value": "ns1.freeoldsafe.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0bd721f4-1b9a-40b3-ad43-180f45a36d95",
|
|
"value": "ns2.freeoldsafe.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8d9a797d-2eb4-4a10-8271-936eead18812",
|
|
"value": "ns1.greattus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "da1fdbf7-bc84-459a-83f9-4bdc4550ff51",
|
|
"value": "ns2.greattus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "fddcdca8-e126-4f6a-ada0-6f38a7ee051a",
|
|
"value": "ns1.havesetup.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7650875e-7717-4bf7-8f38-47eb8930c14f",
|
|
"value": "ns2.havesetup.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d06f51f3-1b03-48f7-9d5f-73df56bbfc75",
|
|
"value": "ns1.iexploreservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "681a21c2-28ad-48ff-ab8e-2d1cf815c0fb",
|
|
"value": "ns2.iexploreservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "fa210e30-4f71-46b9-af7d-0b129852b5c7",
|
|
"value": "ns1.jomamba.best"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "eac77d1c-f26e-428f-b03f-78d93a350784",
|
|
"value": "ns2.jomamba.best"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "72080da5-bc9b-47b3-8031-9afcc0eeeba4",
|
|
"value": "ns1.livecheckpointsrs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c007fc23-e8cc-4d0c-8a29-0ca57d381d77",
|
|
"value": "ns2.livecheckpointsrs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4344efe7-991e-4604-a520-63d2567a078a",
|
|
"value": "ns1.livetus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5f1013e5-083a-4326-af9c-bb28524d2eeb",
|
|
"value": "ns2.livetus.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d6544a02-ef46-4609-b4ef-ee0374d91797",
|
|
"value": "ns1.lsassupdate.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "975d6a1a-5bee-4809-8870-79217305825d",
|
|
"value": "ns2.lsassupdate.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "dd0686ad-2784-4f96-82cc-da8564528dd8",
|
|
"value": "ns1.lsasswininfo.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "175bc9fe-05f9-4068-855e-6db13795dcbf",
|
|
"value": "ns2.lsasswininfo.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9994427a-0fb4-4bed-9bee-5e2f71e7b667",
|
|
"value": "ns1.microsoftupdateswin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "73ac4089-6ea4-4f33-8573-86797c5d35d8",
|
|
"value": "ns2.microsoftupdateswin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ffecfa3c-00bf-4bb4-b5ea-5fe1c628c1f5",
|
|
"value": "ns1.renovatesystem.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a1e41a23-057b-4eb5-89b6-98f536f79b67",
|
|
"value": "ns2.renovatesystem.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043483",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0f198735-03ab-4348-bbdf-ff72cedb77b2",
|
|
"value": "ns1.sophosdefence.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "bbb42dd3-05c7-45fb-8950-e561fa3ab255",
|
|
"value": "ns2.sophosdefence.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9a28462d-55c5-4a75-a966-798612124f22",
|
|
"value": "ns1.taskshedulewin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4eae81e3-eaaa-4904-926e-1d37ddabcddc",
|
|
"value": "ns2.taskshedulewin.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f7a3c7e8-a390-4557-b3c9-475656c0bfae",
|
|
"value": "ns1.timesshifts.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "42a05067-6199-420e-afa8-e1dfe1746234",
|
|
"value": "ns2.timesshifts.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1ba50b46-2a36-4c76-a90e-4ed70698e904",
|
|
"value": "ns1.update-wind.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "cb6fb378-09ad-4dc4-b6ea-e746b51cb95f",
|
|
"value": "ns2.update-wind.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f1850f72-bb08-48f6-921d-b3147514be67",
|
|
"value": "ns1.update-wins.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9add5703-dedb-414c-8973-805eefeaf3ac",
|
|
"value": "ns2.update-wins.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a37702ca-0505-49ba-9b2a-e49bd3580576",
|
|
"value": "ns1.updatewinlsass.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ad26464a-7b56-46f2-a2b9-ab10fa2d146b",
|
|
"value": "ns2.updatewinlsass.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "773eeab1-23b9-4237-93ee-68828651f077",
|
|
"value": "ns1.updatewinsoftr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "be110bd7-63b1-4daa-bfa2-cfb1d64de018",
|
|
"value": "ns2.updatewinsoftr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3993b733-9172-4d58-ba15-594082a437f8",
|
|
"value": "ns1.vnuret.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "39373f2a-bbf4-4cd7-99d7-267d7c213f17",
|
|
"value": "ns2.vnuret.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "63ae4a7d-c2bc-4bdd-92cc-6ef9e90cabbc",
|
|
"value": "ns3.vnuret.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "35e82e18-c868-455a-8010-dbd448cebbb5",
|
|
"value": "ns1.windefenceinfo.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "bdd77e67-4199-4199-a388-f4a328a868ef",
|
|
"value": "ns2.windefenceinfo.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "511b7913-beb5-4d2c-8d39-1c5f700797d5",
|
|
"value": "ns1.windefens.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "92cbf44e-1374-4f0d-9854-85d5238cbf43",
|
|
"value": "ns2.windefens.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "36818da6-d744-4079-88a4-849896fca8e7",
|
|
"value": "ns1.winsysteminfo.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1cbc00bf-ec64-4444-9420-c7ae09525e69",
|
|
"value": "ns2.winsysteminfo.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "aa9a22d1-b0b8-41cf-962f-711ce5619da7",
|
|
"value": "ns1.winsystemupdate.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043484",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "369e8d63-60fa-4323-a401-336435f1754e",
|
|
"value": "ns2.winsystemupdate.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f1a33675-c93c-45f6-a07c-4ddcf0582e0b",
|
|
"value": "an.service1boost.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4dd3e70c-38bd-4a61-a00f-3c971d4e158b",
|
|
"value": "nm.service1boost.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "290a87ac-c4a5-44ed-af8c-cc850a488d2c",
|
|
"value": "an.gtrsqer.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "cefbdf5f-3879-4529-b8e1-6e2cd25da0a1",
|
|
"value": "kl.gtrsqer.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "83d0c686-5335-4552-bf94-d9a70ed54ff0",
|
|
"value": "yn.gtrsqer.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "032d3e2e-0f00-4a9c-aad5-d6412ffb9210",
|
|
"value": "ns1.gtrsqer.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6dbdc417-87e9-49eb-92e3-ee5bbfe52575",
|
|
"value": "ns2.gtrsqer.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f4374331-ed4e-436b-8a04-97f22c9dcca0",
|
|
"value": "asd.errvghu.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "07f1e4da-457e-4213-976b-e3a8f410b2cf",
|
|
"value": "nj.errvghu.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "68593fe6-0a49-4f73-83ba-97bbfd5caff1",
|
|
"value": "ns1.errvghu.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "88061115-36e4-4c93-9339-924593946e2b",
|
|
"value": "ns2.errvghu.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d57cf63c-4fd6-4b01-b9f3-b590e7a619fd",
|
|
"value": "uj.errvghu.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "adbfff19-7a7b-4685-95e3-8b0a848e130a",
|
|
"value": "ga.kungfupandasa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f31a9872-23e9-4e1a-9970-2cf7fcc74ad0",
|
|
"value": "rd.kungfupandasa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1579a174-dee9-4bfc-88ca-71cec352fe12",
|
|
"value": "qy.kungfupandasa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2df701d9-7887-4db5-888a-e023ed683f24",
|
|
"value": "ga.biliyilish.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "256321b4-eb04-4efa-a496-df6fbd82589c",
|
|
"value": "uhj.biliyilish.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "bacaa3a7-2d51-45bf-b9c2-a9ed18bee217",
|
|
"value": "yq.biliyilish.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "fc3d7250-dbd4-4167-bac8-190931fe2412",
|
|
"value": "ha.blackhoall.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7a90fefc-2491-4a36-b24c-5194b886d57a",
|
|
"value": "nz.blackhoall.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b7b8f26d-b2eb-4c82-b56f-928b76b528b5",
|
|
"value": "yqs.blackhoall.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "bd9960f4-8621-4c55-8e96-2cb9501a12bc",
|
|
"value": "hs.bouths.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "927fb907-9d4a-4e40-8865-e6a6d1e0609e",
|
|
"value": "ohn.bouths.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d6b84255-5094-47f1-b00c-7f96e74b31a5",
|
|
"value": "yn.bouths.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "30ee0742-9861-43bc-95d2-74e2c73736ed",
|
|
"value": "mn.idrivehepler.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0aeb53e8-43e7-4d86-9d8f-c24eabdd20b8",
|
|
"value": "mn.harddagger.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a10e8c06-b76e-499d-9c4f-96350482590d",
|
|
"value": "nv.harddagger.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a351cd4c-a1c2-4485-aad5-d1f1f6fe4c1c",
|
|
"value": "mv.check1domains.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3dbf2098-d724-4816-8b53-9595dacf5bcf",
|
|
"value": "qwe.check1domains.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e0e38055-b973-4daf-ba07-5d2132ee036c",
|
|
"value": "tt.check1domains.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "410552aa-12e6-4b34-808c-8a15eaeeaaa4",
|
|
"value": "nv.moonshardd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2dffd5d0-95a9-4167-a20f-efbce37cd813",
|
|
"value": "rd.moonshardd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e668cb26-80fa-476f-9b95-dccc8f157733",
|
|
"value": "qw.chalengges.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043529",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "36faefa9-2de7-4c9c-ad3a-4d23a2414bd1",
|
|
"value": "tasa.chalengges.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043530",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ebb228ec-865e-4a14-94cd-1d74ae55532b",
|
|
"value": "tva.chalengges.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043530",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ea6cab36-4618-4308-9f76-bc9fd5d6c545",
|
|
"value": "qwer.toyotacamryy.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043530",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "98ad36bb-19fd-4fb4-b15c-7ae2211a91c7",
|
|
"value": "te.toyotacamryy.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043530",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f4090866-08a5-4340-8573-42cf1b8eb8ba",
|
|
"value": "ty.toyotacamryy.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043530",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "72877c2d-4103-438e-824c-157865180902",
|
|
"value": "pl.reginds.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043530",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3304e7de-d1da-4dd7-a9a1-979a7c7e053e",
|
|
"value": "un.reginds.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Less Common Subdomain Pairings",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604043530",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0d2be2f7-4e5b-4396-b2d0-dd9676b3e0f5",
|
|
"value": "ys.reginds.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "f53772f6-4e4b-4f4d-9b9d-a3886377993f",
|
|
"value": "0684ad4cab1e7a0f7b0abb0984e5b95eb8a5b1a4"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "baa84abe-4146-4f4f-986a-3b4c2faa592c",
|
|
"value": "13373c1eaa04fcf71bd4ad098560a387fe0d6a45"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "9da3863e-53c5-45e2-b5e8-8f0d0f2e0c0d",
|
|
"value": "4cd315fa97ea12b98430d3da639529e974010a17"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "576076c6-f558-427f-871c-1d5e9d4020ac",
|
|
"value": "68d2fb8240ea91a1195777eff11b50a5873191b9"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "af6a0a9f-5403-4a8b-9de0-a26b300de9b2",
|
|
"value": "84f1b30a3897f65c4ab7a13fa01db71a00293e9d"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "de48181e-908e-4d42-8445-2a2dfa37baf6",
|
|
"value": "9acd231253a98af6e43319e1d1de2fed828e09d3"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "a6e460ab-064c-4099-8fa8-ff496465126b",
|
|
"value": "9fad5c0e0ef9be03767d14105f416871ccc96745"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "5ead3dda-2e81-46fa-8eec-56865a7e61ac",
|
|
"value": "a07c36bd830e2514f169bc079817c63378a16b05"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "83b1fe49-47af-4705-9362-ca671564c57e",
|
|
"value": "b4018842f1f8ff0e62686fea3bfe3909956ce192"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "547a2b4a-1eb2-4fd1-a357-f0d2d9459c53",
|
|
"value": "b47c230daebf8c94b85b1f49bf105d21fb708d29"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "f258f723-fa2b-489e-97ff-ab7653b15e51",
|
|
"value": "bf1862fcb564e3e730eaae320e6c79c579979233"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045563",
|
|
"to_ids": true,
|
|
"type": "x509-fingerprint-sha1",
|
|
"uuid": "f389df0e-5d92-4e07-8ebe-42dbe36efe9c",
|
|
"value": "c6223becc004d859f0c63af41c88d7b76462d292"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "47b240f5-3693-495c-a208-93b7cd2a4b76",
|
|
"value": "ad.cantliee.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ff964ad0-0b8c-4ebd-8aad-2fcc1fb74c9f",
|
|
"value": "af.cantliee.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "aa3ccdc6-7443-45d0-b57a-3039e0a41849",
|
|
"value": "as.cantliee.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b86c3c84-4d71-48a2-9bb7-e563a6d0e02a",
|
|
"value": "ad.hungrrybaby.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b7889f44-e9cf-478b-8062-7eaf815965d0",
|
|
"value": "af.hungrrybaby.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9f4f70d9-f493-4571-b959-350a5050c1c0",
|
|
"value": "as.hungrrybaby.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a5b30b0d-b1aa-4c56-ae8e-854032be31e7",
|
|
"value": "ad.imagodd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3e402d85-6649-4da8-a2dd-0d54392fc5f1",
|
|
"value": "af.imagodd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5e8eeda8-8f3d-4abf-9444-25991d122df7",
|
|
"value": "as.imagodd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "29e3bf99-346a-4f40-a106-7ab26fbf1b14",
|
|
"value": "ad.maybebaybe.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "cbf06367-9ff3-401e-ab0a-eb6346be4eaf",
|
|
"value": "af.maybebaybe.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6b94de3f-e060-48b8-b8ba-2fe9531f469a",
|
|
"value": "as.maybebaybe.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "37894cf8-9159-4928-a53b-950949ac7b53",
|
|
"value": "ad.raaidboss.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "be60ff22-b0f8-49a8-9486-8a7f7a8e6e3c",
|
|
"value": "af.raaidboss.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "40d81876-ef8d-474e-b1b1-6398ab83a431",
|
|
"value": "as.raidbossa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1e4e6cbc-8d53-443b-9b74-f3033a036693",
|
|
"value": "ad.saynoforbubble.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3f4de579-e03b-40c6-b4f8-c309c08ed0c0",
|
|
"value": "af.saynoforbubble.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "28b771d4-b6e2-4dbf-8418-aa6b2706a8dc",
|
|
"value": "as.saynoforbubble.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c5da1e0d-1fcb-4247-b696-0a428276af4f",
|
|
"value": "ad.sunofgodd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f5de0613-fc28-4f6d-b025-2de50ceabd60",
|
|
"value": "af.sunofgodd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7a8cb9ee-dd34-417c-8c8d-bf5684f297b4",
|
|
"value": "as.sunofgodd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f03331c7-48fe-4f1b-a89a-d5fc4d80af00",
|
|
"value": "ad.tarhungangster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3df4a1e1-82ea-41da-92f5-bf2a0bbd3fab",
|
|
"value": "af.tarhungangster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ecf423bc-426c-422e-a9bc-42cdc56a2110",
|
|
"value": "as.tarhungangster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3c55a5b2-fca8-4af7-82fc-58413a5ca35f",
|
|
"value": "an.idrivecheck.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c4cce24e-07c9-4b05-94a1-e2c053167ece",
|
|
"value": "mn.idrivecheck.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "fa6be0dc-10ba-42ca-acca-6d51a68367d9",
|
|
"value": "nm.idrivecheck.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9e6684e7-a420-40d1-a192-e5b179fd4214",
|
|
"value": "an.idrivedownload.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ca3275a0-10bf-4eb1-a087-973ef0b94bcb",
|
|
"value": "mn.idrivedownload.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "fac56ded-07f7-4090-903d-d70af2a53246",
|
|
"value": "nm.idrivedownload.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "39081399-833c-432d-853c-a3090d8d4dc2",
|
|
"value": "an.idrivedwn.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "cc39f74b-3b97-43b3-a98a-0c076d64f7a1",
|
|
"value": "mn.idrivedwn.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e3c72c6c-c1ed-4531-997a-7fc1f8b83ddf",
|
|
"value": "nm.idrivedwn.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8aa3b76c-83b1-4da6-bad3-364c1e2319c7",
|
|
"value": "an.idrivefinder.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "adab092e-dd01-499d-b58e-e42ceb7d60d2",
|
|
"value": "nm.idrivefinder.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "dba8d556-e4d2-410a-a6cf-586eae184fe7",
|
|
"value": "mn.idrivefinder.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "91633569-0baf-4a30-bb64-358c82f86730",
|
|
"value": "an.idriveupdate.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e1414f2b-a6de-417c-b9e3-b9027af50e88",
|
|
"value": "nm.idriveupdate.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f0321d25-371a-4104-9d3a-486bd8864023",
|
|
"value": "mn.idriveupdate.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2dce37d3-2e3c-406a-9ab5-d84d4c3d4428",
|
|
"value": "as.ayiyas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "29035d3f-d8f0-4581-86c9-e83357b64078",
|
|
"value": "qw.ayiyas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1f498b54-d70c-42b4-a6d6-dbc378cb4e05",
|
|
"value": "zx.ayiyas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "943e1000-b7ba-4460-918d-f701357684c3",
|
|
"value": "as.bithunterr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045615",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2c39abc9-6e7a-47c7-b8b3-d887fe1e7116",
|
|
"value": "qw.bithunterr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8b62d131-8b8e-46ef-9bb3-d469937aa372",
|
|
"value": "zx.bithunterr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ae128ae7-0822-4733-b51b-bdbc7e036398",
|
|
"value": "as.chainnss.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1c99be5c-a7dd-434f-8590-e698af8df024",
|
|
"value": "qw.chainnss.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6cd822f2-21fb-404c-8f77-04b10bc00229",
|
|
"value": "zx.chainnss.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "55b4a0ff-26d0-44ef-a53a-193fbed78f8a",
|
|
"value": "as.giveasees.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "483db1e7-349e-4a9b-b46d-140eea2b6ee5",
|
|
"value": "qw.giveasees.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9fad4bd9-0fd9-4af4-b2c7-646d8dc51df6",
|
|
"value": "zx.giveasees.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "51a26adf-fbe4-4f71-9aae-02908402ca8e",
|
|
"value": "as.havemosts.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "124f9ccf-6639-45f7-8b61-129f4e36465f",
|
|
"value": "qw.havemosts.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1282af98-c3c5-45fd-81ab-af3c8a779880",
|
|
"value": "zx.havemosts.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1a17ec2f-d2de-4bf9-baa1-428a0108c195",
|
|
"value": "as.lindasak.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6fbeee56-250c-45cb-91df-edf160abe828",
|
|
"value": "qw.lindasak.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c3b5e848-4ac9-4cec-87b9-6c452d732ad3",
|
|
"value": "zx.lindasak.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "67b7dec0-893f-4204-834e-ef9d0230d45b",
|
|
"value": "as.loockfinderrs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0fa39974-e9f6-464e-b65a-e9952b710c6a",
|
|
"value": "qw.loockfinderrs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6e0bfab4-696e-4d35-a448-ac472c0d48fd",
|
|
"value": "zx.loockfinderrs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "075a4cc8-c45c-455f-8ce0-0626cc2ca2b8",
|
|
"value": "as.mountasd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e83931df-921b-43b9-ab82-e6f5711aa8e4",
|
|
"value": "qw.mountasd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "80b58a77-a699-4018-b0f6-aa319287d841",
|
|
"value": "zx.mountasd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "60bdd54e-25a8-4525-b766-3bc7890724bd",
|
|
"value": "as.puckhunterrr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8e09d384-12dd-45a7-83ea-5a5323538849",
|
|
"value": "qw.puckhunterrr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "68374fd6-d4f3-48b8-8940-9541e72dcfa7",
|
|
"value": "zx.puckhunterrr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "aef6e6a4-b46c-4052-a332-7111b1790071",
|
|
"value": "qw.raidbossa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5fefac5b-1a26-4768-926b-fd7d6acd21d0",
|
|
"value": "zx.raidbossa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "04706cd7-5cc2-4aec-b58f-e1175b264a10",
|
|
"value": "as.rapirasa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e5f6efa7-1ed6-4f27-ae43-0d80cea155d1",
|
|
"value": "qw.rapirasa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "65dea4f8-3d75-4f9b-a9b8-2f700f729c2c",
|
|
"value": "zx.rapirasa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "afa03e80-3c53-43ee-93c3-60403b7e9cb5",
|
|
"value": "as.serviceboosterr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "48e5002a-8537-4fe5-a2c5-5ae8a1199351",
|
|
"value": "qw.serviceboosterr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8b15f06d-d26b-4894-9c2b-2d37a00ca135",
|
|
"value": "zx.serviceboosterr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1fe74af2-21ce-4178-950b-d1b7f1f6465e",
|
|
"value": "as.servicemount.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1242cd21-1499-4019-aa19-23514930741d",
|
|
"value": "qw.servicemount.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e073bfb0-a049-4ea3-8e9e-e50ce5410dce",
|
|
"value": "zx.servicemount.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3e48c676-87c3-4652-9c72-0600ac303b24",
|
|
"value": "as.serviceupdatter.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5feae022-0583-4ed6-bca5-4cd8970fad14",
|
|
"value": "qw.serviceupdatter.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "665179fb-5237-4996-8d56-1fc35091923f",
|
|
"value": "zx.serviceupdatter.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1b230e00-45b1-43e5-9d42-53055806a644",
|
|
"value": "as.servicewikii.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4e0a416a-50a2-41a2-adb3-42e713489b8f",
|
|
"value": "qw.servicewikii.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1d5aa17a-e809-49c3-b633-951c90003a9f",
|
|
"value": "zx.servicewikii.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "05d632a7-b1d2-4685-b416-1778613cfba5",
|
|
"value": "as.sibalsakie.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "473fa15f-360f-43ae-bd6a-9c31b49c8e68",
|
|
"value": "qw.sibalsakie.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3645c172-c292-4368-9643-6b252cee1257",
|
|
"value": "zx.sibalsakie.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d21048f9-2e2c-444e-aafd-473c46b26ec4",
|
|
"value": "as.shabihere.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4af5d025-269b-4298-a13d-00588707a71d",
|
|
"value": "nm.shabihere.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f4f0bd51-d065-4cd6-aaf4-8bd1b82e7ce5",
|
|
"value": "sm.shabihere.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1ba8521f-0e89-46d8-a991-3f75fd0e015d",
|
|
"value": "as.tiancaii.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f075191a-e863-43d8-9bb2-f1f640422f06",
|
|
"value": "qw.tiancaii.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "81c12345-d963-4c76-8987-9b9fd296a309",
|
|
"value": "zx.tiancaii.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a534ac2b-7ddf-4639-8648-bc3dba854d72",
|
|
"value": "as.voiddas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "efa2a49d-bef6-462d-b481-fbc88edc05af",
|
|
"value": "qw.voiddas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "28dfe41e-37d7-4ecc-b7ea-be2e0c72411c",
|
|
"value": "zx.voiddas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f334e275-65ec-4c04-b537-e53379fef535",
|
|
"value": "bn.chekingking.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "61988f14-72cb-49d5-b71f-57a460e9aa7e",
|
|
"value": "gh.chekingking.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "04145b55-019d-4d6f-afe5-925b37158fcb",
|
|
"value": "ty.chekingking.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "70e5fbb9-9818-47ba-b256-f3f38e4170c0",
|
|
"value": "bn.jonsonsbabyy.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ed59cb9b-0c69-4481-8285-3071d8cc0b25",
|
|
"value": "gh.jonsonsbabyy.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d9a80c4e-d479-4134-941c-41b47a8d805e",
|
|
"value": "ty.jonsonsbabyy.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "23671ff8-f711-448c-9a22-d0ee4c53510b",
|
|
"value": "bn.loxliver.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "67db0811-0a9f-4b29-8207-6c2437d5d5e6",
|
|
"value": "gh.loxliver.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d26eef13-27ab-4dd1-975d-77cdf75592c6",
|
|
"value": "ty.loxliver.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5be3bcf0-03c2-4e13-8934-2e441ee4cb51",
|
|
"value": "bn.martahzz.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e873c894-bdf3-4f15-badc-df0fe552d37c",
|
|
"value": "gh.martahzz.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "bd9b2dd8-8723-4f38-acc5-b03db726c673",
|
|
"value": "ty.martahzz.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0053eef9-d437-4b9e-b834-e28ed2f804d5",
|
|
"value": "bn.realgamess.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "883c34b2-e7c4-477d-941c-1a1115f6bb71",
|
|
"value": "gh.realgamess.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f2a055dd-2a84-4d95-99cd-eef573fa5134",
|
|
"value": "ty.realgamess.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d1de6e94-d388-492e-8f90-8e1168fdeafa",
|
|
"value": "bn.servicegungster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d26d6450-4f1f-48da-a8dc-0cb5cc66339b",
|
|
"value": "gh.servicegungster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045616",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f1e9646c-5240-402c-a28f-4266c48dd6e7",
|
|
"value": "ty.servicegungster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "01af9203-2a60-4cb8-b72b-905e0a3b5ee5",
|
|
"value": "bn.wondergodst.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d9e61e6a-0f25-4e4d-b2f8-329e1037aa49",
|
|
"value": "gh.wondergodst.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e63f987b-4248-4814-8e68-6667e1d43cef",
|
|
"value": "ty.wondergodst.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8575a3b7-823b-430b-87b1-1ccdd78d0f3d",
|
|
"value": "bn.zetrexx.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2639130e-2748-4eb6-8bec-f45b86cb6470",
|
|
"value": "gh.zetrexx.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8e21e7da-790d-424a-8afb-609653b003d1",
|
|
"value": "ty.zetrexx.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5e9c8341-24e1-4522-95b4-87f379ae457e",
|
|
"value": "bn.zhameharden.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ba27dc70-f8c0-4999-8a43-5cadec6411a3",
|
|
"value": "gh.zhameharden.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2c8d0b84-8cd7-49da-a48b-c6d6da430eaa",
|
|
"value": "ty.zhameharden.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "fd800e1f-eb59-4bfc-8337-d9e72a6cdfef",
|
|
"value": "bv.backup1services.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "08489cc5-6d5c-4c9b-9a2f-14750957a95d",
|
|
"value": "gf.backup1services.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f906b453-4d6d-4706-a046-4cc3b954ba47",
|
|
"value": "tr.backup1services.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b5ee1de0-94a4-4fdb-bb78-a9bc6a14c890",
|
|
"value": "bv.backupmaster-service.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "aecbbbd4-1257-4067-8dc5-8be4136281d9",
|
|
"value": "gf.backupmaster-service.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8724a1aa-943b-40ff-86b9-4ca5c7d7a1ec",
|
|
"value": "tr.backupmaster-service.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f181f1d9-fff3-4688-b6e4-8d84db72558a",
|
|
"value": "bv.backupmasterservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f3422730-966d-4129-9a32-de5fe08c2e37",
|
|
"value": "gf.backupmasterservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ad412593-3a56-459a-953a-344bc0426abc",
|
|
"value": "tr.backupmasterservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b382511d-15c8-478b-9d6f-ad7d8296a8c3",
|
|
"value": "bv.simple-backupbooster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f29c1079-29b7-4381-ab49-5b0fa4563fe2",
|
|
"value": "gf.simple-backupbooster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "502531c8-7dbe-42d9-bcf1-14b8cd98d67f",
|
|
"value": "tr.simple-backupbooster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ecdeed69-b119-4f1a-904c-68c885c6ccec",
|
|
"value": "bv.top3-services.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8fadb0d4-9a3a-4f41-840e-2166080c086f",
|
|
"value": "gf.top3-services.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c7ca6976-2d6e-457e-8d0d-93804111cf71",
|
|
"value": "tr.top3-services.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "cda14ca5-af0e-440c-b5ba-77fc94982e69",
|
|
"value": "bv.topbackup-helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "af10b7c7-431d-4c39-92fd-5fa9ec897faf",
|
|
"value": "gf.topbackup-helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "36b3c11d-4825-498b-87db-816b2400ca3d",
|
|
"value": "tr.topbackup-helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7b237f58-b13c-4a9c-97be-e35ffa69881e",
|
|
"value": "bv.topbackupintheworld.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f5e4adc9-2cf9-44b1-ada4-3a6dc0b954c8",
|
|
"value": "gf.topbackupintheworld.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "35b6feb7-d983-48cc-83e1-ff4ea7169d71",
|
|
"value": "tr.topbackupintheworld.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "90e7b7d6-2fc5-447e-a87e-08bba3918f85",
|
|
"value": "bv.topservice-masters.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "05035135-ea33-42b2-bb12-ea174b206403",
|
|
"value": "gf.topservice-masters.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3ab2f9cd-1f4c-4fbe-8f0d-c7e08c350f09",
|
|
"value": "tr.topservice-masters.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "29dbfcb1-a550-4a8b-b48b-705550774e76",
|
|
"value": "bv.topservicebooster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5ea3bc25-b6f4-4260-8f28-c82a32d3a2a0",
|
|
"value": "gf.topservicebooster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "40c3a2b4-8680-4efe-857a-528de382814f",
|
|
"value": "tr.topservicebooster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "16532aa5-331c-4f39-a6cf-637854d434c7",
|
|
"value": "cv.bugsbunnyy.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7336f89a-8705-42ce-837f-1155c9d7b44f",
|
|
"value": "df.bugsbunnyy.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9e0497e7-3d23-4c21-a0ce-dbfec579dbe9",
|
|
"value": "er.bugsbunnyy.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "eca175c7-477b-40cc-87d0-45da6e6fcaaf",
|
|
"value": "cv.mixunderax.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d65ee8a5-1728-4d91-a01a-cdda8bf91f23",
|
|
"value": "df.mixunderax.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "65a2bdc2-3c35-4424-a876-bdd00cd8c93f",
|
|
"value": "er.mixunderax.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "58200074-00f6-4fbf-a5ba-f6fb9dc6a92c",
|
|
"value": "cv.qascker.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f7d7cc8b-f8de-4624-9b07-d21cf7259079",
|
|
"value": "df.qascker.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "31d40fd7-6ce6-4e58-8f4a-76ec3c35b02e",
|
|
"value": "er.qascker.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0a68d01e-2dd8-4440-9cc1-9aa6c50ad6bc",
|
|
"value": "cv.sweetmonsterr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "babedccb-a76d-4a03-886f-6e60a2cacb5e",
|
|
"value": "df.sweetmonsterr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "329bc61c-e575-48e9-b583-07e369f29f58",
|
|
"value": "er.sweetmonsterr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f99d45ed-6b8c-4733-afea-005c560c7bff",
|
|
"value": "cv.wodemayaa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c3babb5b-b413-4b25-bb85-f0377d423db7",
|
|
"value": "df.wodemayaa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "09d6eaa4-1888-43f8-896f-3bec781e0541",
|
|
"value": "er.wodemayaa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6e523ad4-0b68-463d-ade4-82b29aad2e88",
|
|
"value": "fg.cheapshhot.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7a10f783-320a-453a-871d-4d88c8111daa",
|
|
"value": "vb.cheapshhot.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0ba646f0-02cb-4633-81e6-410b2696624a",
|
|
"value": "fg.gungameon.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "bec4b36a-3ce1-49fe-b4bc-b97124cca47e",
|
|
"value": "rt.gungameon.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a2715236-1d52-4f3a-8e36-73806b779fed",
|
|
"value": "vb.gungameon.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f06745cf-a0b5-48a0-8d96-878a015599f0",
|
|
"value": "fg.gunsdrag.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "04c2c7ca-30af-4e03-9a5a-8dbe248668d0",
|
|
"value": "rt.gunsdrag.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "86c5bff7-477e-4da9-b4a1-a1d44d1f81ca",
|
|
"value": "vb.gunsdrag.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4847ec30-4f53-4b19-8408-44e816491a43",
|
|
"value": "fg.hybriqdjs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d96b9837-842b-46bf-aa96-86a51e47cdca",
|
|
"value": "rt.hybriqdjs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "343c0c05-315d-4d1c-9dae-788108dea0ad",
|
|
"value": "vb.hybriqdjs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4075c448-8392-4ecf-b17f-d002868ae0d5",
|
|
"value": "fg.luckyhunterrs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7762bc38-a6bf-457b-97a8-0a5863b3a01f",
|
|
"value": "rt.luckyhunterrs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "97c21d86-a8a9-46af-bda2-5a3afed3aa39",
|
|
"value": "vb.luckyhunterrs.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c4ccc306-740e-45b2-beca-25249a9db638",
|
|
"value": "fg.quwasd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "15cf26ab-c2c7-48e5-9ca7-fc5e08e288a4",
|
|
"value": "rt.quwasd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4fd03574-8a04-41ef-90fa-08d7c33be726",
|
|
"value": "vb.quwasd.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "44dde33b-8a63-45a9-9752-7757b7e161d0",
|
|
"value": "fg.remotessa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a6fb75da-98ea-4f63-9edc-5ef7a58ce5e6",
|
|
"value": "rt.remotessa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "bfb49304-bab5-465a-90f8-18c395566085",
|
|
"value": "vb.remotessa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7422a969-383b-426d-9bf4-25aaef2ade9a",
|
|
"value": "fg.secondlivve.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045617",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b386587f-020f-4444-bd69-5c382052e43d",
|
|
"value": "rt.secondlivve.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "aae03945-d37f-492f-843b-a52ed9e8b82a",
|
|
"value": "vb.secondlivve.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7088652f-541a-4609-9d6c-c65f6f31c066",
|
|
"value": "fg.sobcase.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1953f225-df30-4b24-a9a2-917466edfe61",
|
|
"value": "rt.sobcase.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "93e4ce38-97e0-4dab-9c9c-01e906630a4e",
|
|
"value": "vb.sobcase.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "252296d6-0a35-44d2-9d9a-a4695900085b",
|
|
"value": "fg.unlockwsa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "82948f4c-8f24-477d-9454-26c9e09171d1",
|
|
"value": "rt.unlockwsa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d3fce3d8-5668-4d98-ad54-84c4cad0e4e4",
|
|
"value": "vb.unlockwsa.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e49699df-ceab-4402-bae3-d847f798e146",
|
|
"value": "hg.backups1helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b3bf090b-987d-4fd8-aad9-4ac8a3bd07ae",
|
|
"value": "nb.backups1helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ed5a5d98-b84d-4956-9bdf-0fe7a1942317",
|
|
"value": "yt.backups1helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "46127a4b-0f87-4dd3-b21d-9608b2132a2f",
|
|
"value": "hg.driver-boosters.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8579e91a-49f4-4d30-9470-61d96287dbd2",
|
|
"value": "nb.driver-boosters.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "20d561a8-6174-40cc-978f-4559b59a3af0",
|
|
"value": "yt.driver-boosters.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8d0540de-2449-40b5-b7a4-5f82a4d030c1",
|
|
"value": "hg.driver1downloads.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "43fe4f9d-21a2-4eab-982c-35063e1cdc4a",
|
|
"value": "nb.driver1downloads.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "852c0b21-020e-4af6-bf9b-144cc8ff0169",
|
|
"value": "yt.driver1downloads.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2bb5b698-3e83-4534-bfb9-712be0f79827",
|
|
"value": "hg.driverjumper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7743d3da-4b1f-4882-b0ce-b420483fdf8b",
|
|
"value": "nb.driverjumper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a1ea2887-8dd1-402e-a26f-6d01a1837425",
|
|
"value": "yt.driverjumper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2472f179-de92-4d29-8689-ef542330adf2",
|
|
"value": "hg.service-hel.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "fd3b068e-af7e-45d5-995b-ec9320c592c1",
|
|
"value": "nb.service-hel.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "693e5fbc-a928-4762-8d89-b9b40a6ffb33",
|
|
"value": "yt.service-hel.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "535b0e96-ea61-4de7-8bd1-c557d7760ea2",
|
|
"value": "hg.service1update.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1d85242b-440e-444f-9d27-5d6fff1963d1",
|
|
"value": "nb.service1update.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4538b840-019d-421e-a878-5e378dbb7323",
|
|
"value": "yt.service1update.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "54ffbf0d-19a4-4378-8801-68e334507788",
|
|
"value": "hg.service1view.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "39246bc1-7625-4e67-90ab-41e05ad35a9a",
|
|
"value": "nb.service1view.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "89d7acf0-153b-474e-b5a4-7d20e1ec1733",
|
|
"value": "yt.service1view.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "70c3808b-2d68-42c9-af29-b67479bf7611",
|
|
"value": "hg.servicehel.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "32e20e50-8cee-4ee7-bf17-949759ed055a",
|
|
"value": "nb.servicehel.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "23922432-7036-4909-980a-1ebc15d911e1",
|
|
"value": "yt.servicehel.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9d209746-ece9-490e-9013-da712c8079fb",
|
|
"value": "hg.servicereader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "caa580c5-ea95-45d6-9484-b6c376d55f5e",
|
|
"value": "nb.servicereader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ddd5c3ba-9730-419e-8c76-37954ed1f651",
|
|
"value": "yt.servicereader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "482f52ae-a552-48e7-9212-11fe105a6e70",
|
|
"value": "hg.top3servicebooster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "951c4df3-7bb0-46a3-90f5-eba0c70ac8ef",
|
|
"value": "nb.top3servicebooster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "cf1b1e74-0acd-408d-bc17-6e219c111257",
|
|
"value": "yt.top3servicebooster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "30d20b4b-7956-4dc8-b356-7fd4f63c19c7",
|
|
"value": "hg.view-backup.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f7d43580-94b9-4d46-92d4-d9d27258db44",
|
|
"value": "nb.view-backup.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "bd77dc73-7750-42e6-975b-e57f102b1813",
|
|
"value": "yt.view-backup.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "dc6d1e87-c191-4790-8bcc-6e79c8d28136",
|
|
"value": "jh.best-backup.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "88214a6d-8d44-4fad-a703-9ac162236468",
|
|
"value": "mn.best-backup.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5c73b189-38d8-428e-b44f-1f7b6e7a94dd",
|
|
"value": "uy.best-backup.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0b0aef8e-be9b-4e91-b01a-4781b90595be",
|
|
"value": "jh.best-nas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "af647f92-c1b6-4bd7-a889-b1c8a58ce3d2",
|
|
"value": "mn.best-nas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0e6b8f7a-52b2-4c3e-b4f2-ee72dc221c2c",
|
|
"value": "uy.best-nas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "aaeb8272-c8a0-484a-a682-628ed3e6e184",
|
|
"value": "jh.bestservicehelper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3450be9f-3b1d-4853-b373-a39f8f5c2646",
|
|
"value": "mn.bestservicehelper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ced1e7c9-9294-40e6-be76-20bd66e8113b",
|
|
"value": "uy.bestservicehelper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c7486bc1-4bf8-4168-a964-d94bd466dcd0",
|
|
"value": "jh.top-backuphelper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "dacac55d-811e-49af-8158-cb422ec21ba0",
|
|
"value": "mn.top-backuphelper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "72d4f1ef-d0e6-434b-8b56-94bb0155f71e",
|
|
"value": "uy.top-backuphelper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f8acb3a8-5e24-4c74-af2c-690771852af6",
|
|
"value": "jh.top-backupservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "70f2728e-e1ad-4b7e-b8de-bc894c225e82",
|
|
"value": "mn.top-backupservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7fb187f8-211e-422a-9f22-e36fac615ee7",
|
|
"value": "uy.top-backupservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0136717b-1b52-4d0d-a3fd-8202c5c9c2bb",
|
|
"value": "mn.backup-helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "dfa4412d-3a95-4a70-8289-22900b8bcefc",
|
|
"value": "nm.backup-helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e4846c02-5493-44f4-b838-bbe04895dfb7",
|
|
"value": "ws.backup-helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f7d04dbf-68d3-4cdd-925e-bf4502a8bce8",
|
|
"value": "mn.backup-leader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "31f8c640-d970-4631-a0de-9287266d3f0c",
|
|
"value": "nm.backup-leader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b173d53c-c6c4-48f3-b43c-af4724505ab9",
|
|
"value": "ws.backup-leader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a02e4db9-2fa3-4f52-a2c5-964470edbefe",
|
|
"value": "mn.backup-simple.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "474fd1a4-a43a-4f3c-bfa5-b6ab250f82b7",
|
|
"value": "nm.backup-simple.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7be68d76-176e-4fdb-b16c-788138ebcc26",
|
|
"value": "ws.backup-simple.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "fd4fd1ec-d805-41de-a500-944ddbceae71",
|
|
"value": "mn.bakcup-checker.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9c69988d-3594-4649-9307-4337027e981f",
|
|
"value": "nm.bakcup-checker.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045618",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d9dc2a7b-6b8a-4cc1-8dde-a98a1619c1f3",
|
|
"value": "ws.bakcup-checker.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "eda1aeee-fce4-4d94-864c-9f6f73a867aa",
|
|
"value": "mn.bakcup-monster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2a88fdac-c56d-4dd8-961f-5e5766b3186d",
|
|
"value": "nm.bakcup-monster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1d6011c4-22c8-4090-b0ab-6d8cb577c849",
|
|
"value": "ws.bakcup-monster.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8ae15166-cbb5-45e9-baf2-fb330d70bc81",
|
|
"value": "mn.boost-servicess.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ec7cc9b8-2fd0-48be-b9df-3c32c410b365",
|
|
"value": "nm.boost-servicess.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9ccbe931-cdef-4eca-8110-aa6d201ccc77",
|
|
"value": "ws.boost-servicess.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "32b05abe-3c7a-44ee-903d-6a520d5efafa",
|
|
"value": "mn.nas-leader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c2175d5f-a057-4d36-b362-61f24daabb7a",
|
|
"value": "nm.nas-leader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "8e62d86c-5c72-47b5-bb4f-2f8d039c8719",
|
|
"value": "ws.nas-leader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d861c76e-222f-4de2-839c-4f4340ea0e39",
|
|
"value": "mn.nas-simple-helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6250a9d3-582a-41f2-b50f-b10150c48ccf",
|
|
"value": "nm.nas-simple-helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b3c9ecaf-a53f-4875-b285-0d96ab9626b2",
|
|
"value": "ws.nas-simple-helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f7559952-870e-455c-bf16-fdd0522427b0",
|
|
"value": "mn.service-checker.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a4c5a2ee-84d3-4cc6-bfb2-21ddf0849f35",
|
|
"value": "nm.service-checker.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d2ee928c-1da5-4ff3-aab7-d3fcdc1a4f85",
|
|
"value": "ws.service-checker.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d77691bc-dce8-4838-a94b-4d7b9d9b6e73",
|
|
"value": "mn.service-leader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5df066fe-9159-410c-bcf7-ad25baf2ea73",
|
|
"value": "nm.service-leader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "00a7c285-2067-4d9e-b698-329377a0d653",
|
|
"value": "ws.service-leader.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d3429c37-781a-4dd3-89db-f643e16489e8",
|
|
"value": "mn.backup1helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "284f938e-10b0-4240-a855-050ab5c52ef3",
|
|
"value": "nm.backup1helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f4330632-7dc1-47b3-850a-a8230a86b79e",
|
|
"value": "rf.backup1helper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "54148e00-a523-4c0c-9803-2c8b857a17b1",
|
|
"value": "mn.backup1master.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4ea20129-4aa2-47b3-9228-ff229cfa993e",
|
|
"value": "nm.backup1master.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9d23c075-1251-482d-baee-85ada35c9b5b",
|
|
"value": "rf.backup1master.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "88bf3280-ee48-435c-9cdd-9efd3d675bc7",
|
|
"value": "mn.boost-yourservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5d85bacb-f0f4-4ce5-9264-2e8a6eee1652",
|
|
"value": "nm.boost-yourservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "91e42527-8643-4a15-b6fa-50176ab7c9b0",
|
|
"value": "rf.boost-yourservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "55ccd03e-9c13-4a2c-a5b4-48d6a55a9b95",
|
|
"value": "mn.checktodrivers.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "40b184cb-7663-42aa-b78a-ec121555013c",
|
|
"value": "nm.checktodrivers.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "46d7588f-2dcb-45c2-a279-4bd75b3c3b0b",
|
|
"value": "rf.checktodrivers.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "fb1ce8f8-9909-41be-9584-79064e070fed",
|
|
"value": "mn.driver1master.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a04bc8a0-b3c3-4612-9288-58e81c4d8355",
|
|
"value": "nm.driver1master.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "101aecf3-ab05-4c67-8bcd-e681c2c0c634",
|
|
"value": "rf.driver1master.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4b747d3a-ee11-4e28-b2e1-94ed973509be",
|
|
"value": "mn.driver1updater.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "82d015f4-a21d-443b-a609-ef83d2e25ccd",
|
|
"value": "nm.driver1updater.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "f32158c7-3fc8-49f0-a962-85c16895dbb4",
|
|
"value": "rf.driver1updater.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "4c647ee1-64b9-442e-a77f-2d8cf9786b26",
|
|
"value": "mn.driverdwl.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e7bcde05-21bf-4d3f-b14a-dfb84c291084",
|
|
"value": "nm.driverdwl.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6bea282a-54c2-40cf-a2f9-5d9c2b22d7dd",
|
|
"value": "rf.driverdwl.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "afd6912b-3484-4ea9-a6a9-4fdf28cb3158",
|
|
"value": "mn.service1updater.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ec234240-c7a9-4535-b646-8e074dbbb800",
|
|
"value": "nm.service1updater.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d5eb7209-d293-45a5-998d-8cac1951174f",
|
|
"value": "rf.service1updater.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7c311194-bcbb-44ff-9c06-a1425545fa15",
|
|
"value": "mn.viewdrivers.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7a4d70d1-469e-4dd1-b6e5-e45a072ccc63",
|
|
"value": "nm.viewdrivers.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e58c0648-bb27-419c-9976-4d9576de1cba",
|
|
"value": "rf.viewdrivers.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ae834617-91b5-48ad-a036-c72589068944",
|
|
"value": "mn.regbed.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "e1d62bf4-7fd6-4531-a13c-9496aee31df2",
|
|
"value": "nm.regbed.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d5369813-8387-489d-9f27-40f633a90eb1",
|
|
"value": "tt.regbed.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6d594cc2-a1d0-4e94-bbf9-a8f15124e963",
|
|
"value": "ns1.regbed.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1e2a86b5-7ebf-464f-8986-07d99191addd",
|
|
"value": "ns2.regbed.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9e90999e-1746-45b4-899c-0ed91f249bfb",
|
|
"value": "ns3.regbed.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3a7a1d8e-3ee1-4677-92b7-2b168e312a0e",
|
|
"value": "mn.serviceswork.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7b41ca1b-a163-416f-b3af-deabeb4ef07f",
|
|
"value": "nm.serviceswork.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "753b5b14-6609-44c6-9c26-372ebb6e9376",
|
|
"value": "tt.serviceswork.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1120d4a3-73bc-4db8-8ef4-5831277385cf",
|
|
"value": "mn.vnuret.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "12e82dfd-c1bb-4315-b968-101436fdbc89",
|
|
"value": "nm.vnuret.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "dfba97d8-dc36-481c-8081-8f5f9b26dd70",
|
|
"value": "tt.vnuret.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "347b6568-c826-4ad0-a3ea-f22bdf0d1775",
|
|
"value": "mn.fastbloodhunter.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c6a7f0d3-db60-4e60-bdfc-8e162d90a1d7",
|
|
"value": "nv.fastbloodhunter.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "73506f1c-cde9-410d-98fe-c1f81e63b87a",
|
|
"value": "qw.fastbloodhunter.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6046b486-39f8-4939-b8b8-d517a0657d12",
|
|
"value": "mn.caonimas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "dce27e05-9eee-4051-b1d8-2c974d9a5c3f",
|
|
"value": "nv.caonimas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3b68eabe-c8a2-43cb-a059-481a8ee6da69",
|
|
"value": "qw.caonimas.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1d869b9c-e2bc-4b85-87f0-32cafa6d9d6b",
|
|
"value": "mn.nomadfunclub.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "034b84f4-18c4-44fa-bbb4-45a4a0966abc",
|
|
"value": "nv.nomadfunclub.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "89910d17-ab37-4ef6-9c4f-e6fa03021629",
|
|
"value": "qw.nomadfunclub.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "c95f0b95-b2ca-4902-ab2c-006b119f164e",
|
|
"value": "mn.razorses.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d9b3fcaa-add9-4064-b118-8c15d1d4f544",
|
|
"value": "nv.razorses.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "61ff0baf-0c19-46b9-8d5c-6adb34f9bed1",
|
|
"value": "qw.razorses.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2f5ea08b-29b0-4baf-b083-ea89f6a72177",
|
|
"value": "sd.backup1service.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1b7998b7-3724-4ced-93ad-2bf684b74c24",
|
|
"value": "xc.backup1service.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d08043a0-b2de-4c11-b987-3f29d653e78a",
|
|
"value": "we.backup1service.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7a5bd8b1-8a48-4728-8913-cca0bb8c1c37",
|
|
"value": "sd.elephantdrrive.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "aad0927c-115d-4424-8220-384edf90118c",
|
|
"value": "xc.elephantdrrive.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "849f7b63-d899-43d2-a0a3-a650a2b62ebe",
|
|
"value": "we.elephantdrrive.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "450a8cb8-3805-4af9-9c38-ca28d68bd1df",
|
|
"value": "sd.nasmastrservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "640fb10a-5786-4eaa-9954-97a042e711b5",
|
|
"value": "xc.nasmastrservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "def6728a-b08f-4fe6-bbb9-ccde0ee75b8a",
|
|
"value": "we.nasmastrservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "10a44540-2ac2-454f-b97d-fda1e0607792",
|
|
"value": "sd.service-hellper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a765235f-b566-42eb-ae29-be94bb9ad842",
|
|
"value": "xc.service-hellper.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "Common Subdomain Pairings:",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045619",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "27574dbf-1302-49f6-9360-0785840d4a4b",
|
|
"value": "we.service-hellper.com"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "62ec0c04-da00-4dc1-85aa-888b8866ec16",
|
|
"value": "01ad70e688a4eb070e90538728de699efbaa6bbfeaa728976053384587e45d18"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "81c28e98-9c62-4ae9-9909-37d64728c28a",
|
|
"value": "032a087b0f7c722a64bbced9612e84bb0a7f1872a8b94406ca49827d56aa466d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e47cdf96-2f8e-4c55-acf0-5e98f1dc51db",
|
|
"value": "04a4a9ff0af9fde923fb8203c89be6a57a3c42a517c9d9a047fb7d4b20e24a9f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c494b3f4-b64b-462b-bc83-208415420168",
|
|
"value": "062fc14064495f558e1192b675c1f0eeeb87c5ced5c01f81a38fc6b2591508d6"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "dee40d99-b6ad-4da8-a40a-5b7fcad243bf",
|
|
"value": "0856b3c06805d3935b1db325c4e9c9131572b4cf09f07d989911495807775cab"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "24670c34-ba21-4807-8a90-ed5ae82a1e53",
|
|
"value": "087d2b51bec315fdbd938405c9cdcdf63f0d0bda42c7db89062ef3cccc45b525"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "8a8644a6-b8ba-4147-9575-b8cee0b27e50",
|
|
"value": "093ac1213b112c7eb7c46000f04160af37339ce0d6fff514f0941f2b5ab48829"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4f58a54a-70bd-4909-a347-31acb2d5706d",
|
|
"value": "0e464ad7bde50e55aa42dac985295e22deb78c1a48809563f18cd4a6f47a104a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c028bd4d-69ca-48a7-a6d8-83e9f14dde0f",
|
|
"value": "10f0cb6dc3bb42145482fd3b353b11626283edd62b6a6a6b1505927d6d71a914"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c9cee02c-3e29-4515-916a-3f31bf58126c",
|
|
"value": "118611de57551faa4b7c029e50317cd6f596275725f61a9f9a11fb59e1ad70df"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "0b411a58-444d-40fd-aad5-73c145cecedd",
|
|
"value": "11d2e042f172811cd155e07a8f7a3830e590997b87be68cd9b076477bbc98dcd"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "922434aa-d603-4d22-b1dc-a39128d350e2",
|
|
"value": "151983eab306e5fcd22b110cf36ddc2357564d40399d08ce8a70d7f78b0bfbbf"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "409f5ab8-7060-4b72-a10b-0b0be19048c5",
|
|
"value": "15305978d7c42e26d908feca9aed4efa3df89ae6524ecce10752a2ee3cdf813f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "16b6045f-ca74-4d51-9682-5d0c85c997e5",
|
|
"value": "15fcb756a05b69518be5e32b98b25f398e999d4ec971364fe01f9dd0f78747e3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "94ba7e87-0654-4786-901e-4b5050d008a4",
|
|
"value": "1925d5e283a220497385b4d8ca268665c729d1e029692e23431c327a8378fe23"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "75545163-91fc-4343-ad1f-e10adb036ebb",
|
|
"value": "1bc061bbde8e89345da6461916fc70a4b2b50126ba25f553e15fa692bc22e92e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "806ab885-8301-4b80-9ca7-f9c354c83aee",
|
|
"value": "1c05380af47696f7d7ef84b452fa4f662158d9f1caf7ad01a455061081d13653"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "83206646-17e8-483e-be8f-52ab24e1a762",
|
|
"value": "1c1397233114820f366607896cb9f3d3d412270e79947ce1558fc8db7dcbb602"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "43a645e6-8d10-49d7-af46-d3db385f580b",
|
|
"value": "1dae20a13c71c11f3c2a2010d2577cd2b3601c1092a980c1305991681b178c46"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "5633c5dc-9e1d-411a-a39f-68bc8bbfe085",
|
|
"value": "1f9194a46385dfef7bd1098b3c5da2b8f2d2552c9c1d1b6bf3f7313ee970b9a4"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4f789fc6-874c-4735-bc32-f725ee9d7c57",
|
|
"value": "21ead6c4722d06207332710f2dff6005bc5095034cffa7f60e57a77f651efa1c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "8e19dcd3-9808-4ded-8432-b52ddaf1101e",
|
|
"value": "22caa1e9f4b2e88b7bcd633e4e12104f4d3556c05fc4db1ee6b620a9d5fa6213"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "cacaf83b-10e9-4856-9902-0bd095721c7b",
|
|
"value": "2376a8da650c124b3d916765f82929b4109f20bc4f211a39a4d1cd4391780d1f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c0e12e85-32c6-4a6a-9b52-cf9671c62617",
|
|
"value": "243408d1fa0c8a7a778d8bb224532c649409d0db76fc0ca2be385d193da22b1e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e0553fb9-6462-4ac2-ab4a-1a825ac18136",
|
|
"value": "24e8413c8743a2349be66e1df415f8e8c8326b3e9fb8b4f158f8fde4409626af"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "95c5628f-e67b-48f6-b26e-e32adac74471",
|
|
"value": "25f051fad96d0996708561ce734bb836c4a576f8cb4d6f96927975a08eff9e19"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a56e7b9a-6a64-4708-bbfc-44c111e115d3",
|
|
"value": "2788d54e094014cd18ec11263659c344330b55ff3b0a14941215f14557b77777"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ca88066c-e340-4d99-a842-9d650de470e8",
|
|
"value": "2a2e39586e7232a3339d52453b477454bc44b6305c711dd9eb5ecf4394c55b10"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ea41d209-cce8-44dc-8c94-cb3fae306e0a",
|
|
"value": "2af2ab80575400c191925d15f83726718655b8adad1c7bd02e4abe21d1004b95"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "64b11585-1f77-427e-a13f-39c037bc8d10",
|
|
"value": "2cd01dab44247dee9c0f9511b3b1d11d5a69afcc87efc59446238021d5343aad"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c2b9f441-77cc-45f1-a015-a4c29b104579",
|
|
"value": "2dcb2f1fe7fc145529c31328c150cd9a00a8b02e57a69f09211db334f78fe784"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "038c50ee-f385-478d-940e-b74839e588c8",
|
|
"value": "2facd367c1299ef200934cfd06279f177f9e3145164e4bd595e2b94a403a1b02"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "96ba111a-e1ee-48ae-83ed-9b833c578177",
|
|
"value": "31045ab2d2e8f7074e2d0f312b4b79387a6794c4455100d501f6c5ea220ad207"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "73bf19f1-bf70-484a-ba60-1884edab5382",
|
|
"value": "31e9c92d7dce8b65dded9c40e67d9cfca33bf8870d460e73b02df8a035ca719f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "aa39546c-4008-43b9-ac90-593124041e34",
|
|
"value": "32839e342815cda42bef871d999d76db91dd465972a2b39d4e29fb367a57cfd5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7e6ea32e-92b8-4d46-86f4-9e49c739d13c",
|
|
"value": "328456cc7c585d290ba0543f6183afb0f8e31a1cfd24019644ea6471129bad9d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "975fb8d1-6215-4c44-862a-65583b67b3e6",
|
|
"value": "33a2b228186f8391a15442fc1333827fc2af5468c40d1a1552723245922a6812"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "cbfc9d02-24b8-4d8e-ab5b-f4b7e322b641",
|
|
"value": "38bfb870f8e127f2170175fdd902c0891c9a6c044d8fae6dc9e8ef6d5a9497ab"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "d57f103a-ef7b-4874-b964-7cf80478584b",
|
|
"value": "395173829ff0e957a2d8abbb3c979f470701cd3fd381e7af23b13e7573cca5c1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "62401a13-8283-4430-9ff2-cfb9663173b8",
|
|
"value": "3c484486d455b4c13e8fbbf612b4ab3c4cfc519dd5a81c2478a7e4ab9c08e83a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "84348065-5cc9-493a-9b22-bafa9c6b5015",
|
|
"value": "429650c8e59459c0150ad5cb8853cb46415b70afb92f45ebc04e8c5fbd382bf2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "d1886e17-c396-477e-920b-1395902eab38",
|
|
"value": "42d914b10255499859ee5919b183ca521ae483ac3edc2f1653d52487f9098342"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "77201e27-959a-47cb-b5b8-6173ea24d6cd",
|
|
"value": "4544b478b2029ec38eb4bda111741a10f0684e38f1b29ce092b93df882d11f9e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "b49cc630-c422-416b-bee0-008239e9b7dc",
|
|
"value": "484418a9516fbe04de0d99704ac521b04825bfdbc4abbcbf1ba88a28c26373ea"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "1bd13e25-a3ce-493a-be7f-cf78c2f6aaae",
|
|
"value": "4e4eb3f6f85c8b14003168e9cd9d82c716cf5c04f1d7cb2f003d1ca233d75eed"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7c37cdc4-1f8f-4b85-93b7-c908d04c571f",
|
|
"value": "52951e174db7986b334417d5641b06a80464c9665bf82393857fa6700beef006"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c079c79d-43fa-436f-b67f-79d55d6114fc",
|
|
"value": "57b75ed78a4b94749fe25b14e7a6e3b357089b060b88aeb7a30144c6713e5afc"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "208d6828-ab98-4d3b-8b5a-d6b2cf2de48f",
|
|
"value": "5929962b379c56626a04052bc8e983732b807c34fab6c1ac420d73a8fff9e9a6"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "906a5ef2-13e6-4081-b2a6-80cf5860f03b",
|
|
"value": "5b02e00797b0f396b40dbb8223d034a7aa42798a39a89a41ea70a314ceab478e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "956d46e3-bcc6-44a6-9f9a-8e8d179c1688",
|
|
"value": "5c3569c166654eed781b9a2a563adec8e2047078fdcbafcdef712fabf2dd3f57"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "cbed91e6-b36d-4b9f-ba96-f896f67381a7",
|
|
"value": "5eddf95ec34e512d6db1058fdd9fa886e3fc1e7d4090d1999f1764627db5c1ee"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "312f1089-b7e2-4e02-863e-d5a1d64cc747",
|
|
"value": "5fc68cab9ed345259fa2b452f63e9bc9b1c61285fb0445e60b2744c211bddeb8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "cf0a8e96-59e2-4052-9969-c67953856934",
|
|
"value": "5fc95870132e4709a5a0086593490cd04eb121f2f238b44cb19679125e842115"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "3e650403-2065-4053-84fc-1eae72d18e34",
|
|
"value": "609401cd35b4ede77bb717005bd2875f0a018442e194ec8af78595f185665f12"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "350977e0-1cb4-4d3b-ae9e-03037409efbc",
|
|
"value": "60a45919ec5e67c2843fd08745f26437934ae3ceae76133a23aa0690d6a72f86"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4c0feff8-1a00-4b25-87d8-c037bb605f90",
|
|
"value": "625bd1db4f5fbd8fa9a4c78bc7f1ffe421dead5b0b0b4b2a65be879f9a123a23"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "bc632620-58ba-42f0-96c3-e13c075c196f",
|
|
"value": "641a07800e1e9542d0756a7bb740f80ec49aed633af0add108a6e00671e10757"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f2d925b2-31f4-4dcb-9b53-e99a93efeea2",
|
|
"value": "65783de1310a32a96a2f2ca60093be27ddb32562f91104d7886fac7479ad8afe"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "178a27be-c511-47e0-9fa3-18af8422441c",
|
|
"value": "68547344839166ef8e28dd31b40b35d94759eda2949eab654bf737dfe9d3edae"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "088adf7c-cf5a-4df3-aba0-0f3bc7c9cab7",
|
|
"value": "694818ba3bbbd14949fea1441dd15ec721adc61f7f7de4cc728f449a2ef2c3c8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "79dbc507-b2e1-4f62-83fd-3a8d1e0330d6",
|
|
"value": "6abf2716ace0464a488e5ed4d1935865d4d12886ff54fbb5dd659bf32f1cf23a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ef99f345-1aa1-47d5-97fb-a8019d50e8b5",
|
|
"value": "6f55f3b1415b5bf9dda57158f05fe628edb92b436887ad72f3d4bd108e8542d2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "714d92bd-69e7-4760-bf7c-b7670a5c6b6e",
|
|
"value": "70ffcd7e8663a2aab204eaea3daf86e9cff73872d23ad3da2e91382f8593501a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "b86531e4-9fb0-4bfb-afb9-19e19f0d8233",
|
|
"value": "7187ec55dcd998f3ee207a0733a162604c40dc6920ef47424bcbaaa1dba68da3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "5139aee3-7c32-45e0-bd1d-ed7fe490456b",
|
|
"value": "71fe1f1ce713e265b2c6693f83ed94a359e43e6aa60322baee599ba74a2f2ac0"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4340037c-b6a5-4454-a5e3-fecf0f081900",
|
|
"value": "728a8ea36c4dcaa030c2a8674bd4b65eb636253435c5d43e74d8a176a92f7679"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7d551a62-0a31-4922-9090-a4da23ede89f",
|
|
"value": "75d9c67b853fb26ba28ae5dcfc0631fd9fc4addc69d579edfd98bbbbdb4d9187"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c1c2a7b4-7ac6-4167-92cc-a6da8b5603fe",
|
|
"value": "7753fd8c401e0efd8e5d0db07ea7b60eb45d034b7685b656d708f3885d8e7906"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "9260b076-bad8-46b9-b425-790468d49ddf",
|
|
"value": "798d9d960b1a6dba959831983573ce7de2ea376f13f1e0fe7968beeca37f0540"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7627b293-7fe0-4baf-a017-e5b4e580bb63",
|
|
"value": "7b8f932ca62ecc8e0a071177075118ba4b050f785857925a3dac6835e230d602"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "bce82b2c-f287-48cd-adb0-2495688b4850",
|
|
"value": "7bdaaf431bbf0880b0f1276042bd1adeb192d183795c30834b61e2335d279230"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a85d1713-5193-44d6-8007-bc4b382bca1b",
|
|
"value": "7c64c488a58473d9456d4f2f64b7bcb5eea03c32bd99650c59e38b0993eba7b3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "68db9a6d-7846-4456-af2a-8bd445071218",
|
|
"value": "7f901d8f673d5e1fde07676b3287aa9a24dc92fb48e7ca82a163e0b0581ee7ad"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "eeca3625-b938-47ac-9531-3a65af9131eb",
|
|
"value": "8074bbc62a36ff2c0037634d3c45fdf40bfc372a7123f64c38f159c04d2391c6"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4284890c-11ff-4e01-bb7b-797f6e01dbad",
|
|
"value": "82ccc3e53246b4b931c7d6642b70de245d9896b6481b273ee50aca3c58614027"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7a38b6cb-2b9e-48c4-b64e-f5b1ca7c2b05",
|
|
"value": "836db6bde6f664fa42b020c7b4549713022eac87410c1ed1104b6d4df615a599"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "89b99a47-c136-4c5d-9069-3327bc49be35",
|
|
"value": "841680207f8c57f4e183610f022f01642d86c5a2fd0323463039b751e5559dc4"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "6bd96a88-fa73-4794-aa40-09b621f2aaf2",
|
|
"value": "8447befbf1643aae5219fc13354628f00c61683fb7b86bb0294a95b3eb62a344"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f4499e12-2c0f-42f7-95be-a1d445dc1d5e",
|
|
"value": "849c4687f36eecc3e3e5f68da5ee1b2b5c1fe75811db66633962af9a749ff355"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "035081b6-3511-41fc-8f69-f5a499b0139b",
|
|
"value": "86c18925097fed036b2f63a8c50891266b6d5f0ddde84ee57f6c4da06e77100b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "72d587d8-bb1c-45d5-bd69-df59387b172d",
|
|
"value": "88da60e5764ac7ead4db3a9ad0aa9f40e509a1d2df0380fa2e55cfdc8e3ad70a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ad54a1dd-dd24-4035-b1c5-0209fddc8c3b",
|
|
"value": "8a4515c285fd0779292f0ac7d08f6bb5b6fca00a23ce98133e52625ee11bbf36"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "490dfe50-ebf8-46ec-9192-0d38fec11db2",
|
|
"value": "8b6c3018958e7ae20989045811358b1225606000c879000c779444cc50290d9e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4104d499-0a94-4d90-83fa-93465cef5cfd",
|
|
"value": "8dde9b01b0e4eb47afff7daf5d59abf72e68ec6d944a9404f78ba69fcbd5310d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "8a1a1d83-02c7-45f7-a959-18d38c55098b",
|
|
"value": "8ddf1b190498bcc66f510005f0e1efc2562e189887924ddb7e584f04437e78a2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "939b7541-3f98-487a-bb38-5839db8b0e15",
|
|
"value": "8e421c6145b4ee499c747c7544d16f331d0bfd282b40efddcf66d8eb3fbf51cd"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f8b4fbfa-1a6b-40d9-aa7d-d74dd8819b61",
|
|
"value": "93193c90f568ae1ebdbdd5607c00ce250f6c886cec60724bdcf5e25c6ba82554"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "3d334c20-1771-4d0f-96a1-89b6e3f07b50",
|
|
"value": "956cd22a033de80926083810a0946ad764e0df61dfc0ad09af5e1947327281c9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "874e6a03-c6d4-4b8a-ada6-f4eb75871b4a",
|
|
"value": "959e289a72a49a27d173d5c020969e27aa078a1521b3632ceb5e8c77fa01a342"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "18734a78-83af-4b5b-a436-00f0cee18119",
|
|
"value": "95d4c0e642a3b2c9fab0a2d90b2d127ed12d9ae1e8e721806e9eefc75d77ee3c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "aacc6c90-3e0d-45ff-a184-32693fefbaab",
|
|
"value": "98266835a238797f34d1a252e6af0f029c7823af757df10609f534c4f987e70f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "123e70c3-4b54-4c6a-b3c7-8c69c6afaeca",
|
|
"value": "991a222bdbeb5d25b9f9445496112af904ac7b677b6296810727e6e403f5f5eb"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "28a25adf-9ee6-497f-aaa0-27dd71d2dc56",
|
|
"value": "9bf2fd111962a5634e7b1a5821b08584002cf304d657840a904d3388967a9a65"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e060feee-aaa2-4f1f-99be-7223dd3acce6",
|
|
"value": "9d8cbb2bf4801276de2143ccd64a7d0f66263809a90bea0b664282a15d121d9e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "db517c72-5b23-4fd9-bb2f-e059e11b2e25",
|
|
"value": "9dce80e3b848c6a52a89e89b4d8904635a7a0a6a069f6c164b2becb5eda4d814"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "626584f8-675d-449f-a50f-0c05806c2d5a",
|
|
"value": "9df20496f03f1e916dbaecbe7e99db411cd8044c13572d691febf13c22b7c572"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "88a2a7b5-8efd-4834-b3c5-d5da19a90d07",
|
|
"value": "9e513f9876410f792a0f97c8bead2122c9f26cf07136fe8afbac8da48120953b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ebca33da-d044-4c0c-a559-0ab0fa77bb47",
|
|
"value": "9e99facf8ea4c39a5d2bfc404fbae99b37bae36ab589a2a67acf23d03de96512"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "963ebcee-9aa4-4e9c-bc99-27c8d8787409",
|
|
"value": "9f74293d070390a2f783030eed5de4c64b1d32e2046b8c440cc39984b453b12f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "d8de50a6-335c-4942-94fd-ec52735b45e8",
|
|
"value": "a14e3907f7a12b56bb67b178c722d92d2ee64fb0514daadd902683c799bfdc94"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "0fafc38d-9dd2-49c5-8abb-efc34a2eebf6",
|
|
"value": "ab99e91e1b0951feabd09d049e0ac9d9412c67603415c10cbeadde5842ca02d2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "0a143f0c-2744-4a66-a5c2-a500819c4a41",
|
|
"value": "ad0ee372226ace062473e01b15b52d99eb61a6f3b265bead8f2c534f75d05cea"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e13b3d9a-690e-4b73-97ff-b6c865037813",
|
|
"value": "ae696adba9e93dbc97b2f0a0c13c962cd90e5b03943e68f06e6e1b8f8d6cbd00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7de5453d-a75a-4d6c-9242-83718e050340",
|
|
"value": "af29f3aad49a10827b338f156d4f748bcd9d987f1400c52f979efcb4ef4e5e46"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "0f9b97b6-649d-4bcf-8d0f-083459d574e0",
|
|
"value": "b0a5775907994eea4adf0faa505b28160d22507c1690ca508820e26fb4ca3bca"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "91128171-8510-4022-aa4e-d0523d8574d4",
|
|
"value": "b1232c4080121ac93b5c6f3982f79ee1ed4238d568cefd6eb88e7dfb072f0db8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ad514ed7-8585-499e-8eb6-4b192966ce12",
|
|
"value": "b1798973f8dfce5777905452271f3b3ff23fb2148978ba2943654a72fe5b6387"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "98c96876-e9e7-40ae-9e0f-79b6fd0bda15",
|
|
"value": "b1eb0565b958d4819138a72cf38b16d058cfee00097461c5dad3fae500aa4296"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "2b7cfe27-fc55-4c0f-b415-e088d687c415",
|
|
"value": "b2891d26b7b66dca32f02681a0f1f3866a2efae49d8b5ec6bf4cbbdf5ff35260"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "dfc8bd49-e30d-476d-a09b-bc09ce92d2fa",
|
|
"value": "b294f8636f7ac5318560f3b8f949c1004340923d6aaaceed93481c3ba916d407"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "6585c434-e540-457d-9917-c712be7b7145",
|
|
"value": "b43bb3af257e2c29ecf9add2ef4ad41c62e6b1298dc9af220ab0a285e23cb9db"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "497f2ad6-c5a9-4c5d-bc10-abc0d9cec3f6",
|
|
"value": "b485bcb29c5bf53269960a243b051d4fafcd4ae2b17839e96afbf8f8fec8b244"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "baa3f650-7c1e-4e54-9959-f002a16919a4",
|
|
"value": "b62ba19f3f6ab6200a764a14a268cbf21efe3b48030f7a8bccd96300d56ec950"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f26402e1-d6fb-4c89-9f32-45e514329223",
|
|
"value": "b89742731932a116bd973e61628bbe4f5d7d92b53df3402e404f63003bac5104"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "1b21bbd3-ee45-4f7e-b6c5-180177712c42",
|
|
"value": "b91b4d45b41d0d0ca1bdfac917c4cd732d32754bcfd7590ac521dc4fe414ebd5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "20315b07-41a2-4142-886b-9ba93d4a5a9a",
|
|
"value": "b95be82b7682341cf7e2b8e33f1ca0c8915ee005bd71c50ad877da99c7ec39f6"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7276da86-78c3-48c7-96fd-132e3c3fc47b",
|
|
"value": "ba2a96dae66324df5bbb0751a04c538722ad49daa12d51625f8a1890608b1168"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a73e8a32-47f6-42d3-823b-6e2670f7eda2",
|
|
"value": "bb412455c3988a845ee04cd9f665df285bb00dfb62af377ff9a06d6f032e3aa1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "5f3e5d29-4e4d-424a-8688-94b5d3da8af6",
|
|
"value": "bc08bc584b06c8866c6b4feeeef745e187a8ce0e924d159d5044e6368e4bf31a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "09e4d686-af78-4f5d-a844-813ce691826a",
|
|
"value": "bc84fa150decef8b33811a646be2fe517f2550bfa03036b8766ff338c3d37df1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "80f0aae0-fbb2-405a-b2d6-57c49a764d40",
|
|
"value": "c0595bfea597e67c4e7291e60ed124c5b6fd47eca5d2a2dee4ac61864ac6dc5f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "662017e4-ca26-4555-a24e-ad898be0f123",
|
|
"value": "c0af45fb5b5ecaff8130bed61a8cdb4bac98f2c9ccc774bd6034576f865aaf6f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "6ea4c004-26c9-48de-8988-8170609138af",
|
|
"value": "c498a138ca1fb1ae1c834cbe5f76eda226b0fa7b29bc6cbd8b92478e394b287f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c0a2c502-0cca-4937-8dc9-4292fdbca33c",
|
|
"value": "c9b06152ac1c851eaed84ee052c374341ed89d9a6e5a5d97bd0e4b941c01a274"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "39731264-e210-451b-891f-94d41d99ee52",
|
|
"value": "c9ffb0e9c3df23bba54debf0f6875ade683fe29f4ca720d2abc780179a2781cf"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "296d968c-a0d5-4f0b-975d-08a12718eba7",
|
|
"value": "ca4963745454cc8584cec4e53d27d78c86a4766a4f69b0b37617efcd915621c8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "219f70d1-2630-4cd8-904b-29fb48baa865",
|
|
"value": "ca8d8d55c30ed37ce1bc36e514a3fee5b0bc00ef5c88b8d07d51dbd9a141ff33"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "95c28e84-fd2f-44d0-85d9-56ddfff217a4",
|
|
"value": "cb039efaebc29c1cc5c0fcf8567de534993f447245a45db03c927af56f7096d7"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "fe110200-3abd-44c0-8e37-42a76f80621b",
|
|
"value": "ceb4bfe175798179b0947da1ffd8eda13777b9d7b02bc75599b6f6907cf2c2c0"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f37139ec-f0b6-4dcf-9359-44811b6b4374",
|
|
"value": "d22cfa87be0f204ae7da13897dfcd075c9f25414e1792762412e9ae61d0ce3f0"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "43e2295d-72e2-48d2-8dc1-88daf5dcb92c",
|
|
"value": "d6f97c6dbe021f02adb2139fc990996ca0d670ceab0189017e69171298ea9c27"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "bdd748a5-83e9-480b-9ce5-db7b7c427f32",
|
|
"value": "d8ab0c6982ea7674ed4e53e4bfc7234a56b018090819b79f67a9cc6034fc98e2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4bbf331f-00df-4f27-9811-c077248ed1bc",
|
|
"value": "d931fe8da243e359e9e14f529eafe590b8c2dd1e76ca1ad833dd0f927648f88b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "9fa0c03e-a6f9-492b-a41b-6485347f58dd",
|
|
"value": "d9dc572d6e446ec7629479eb60119b57a135e77aae22ea9f5a29a543af85b7da"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "227a591a-8e74-4e33-ba13-a29345146169",
|
|
"value": "dd913d2b8a29eae792097e2d2b81a94e62b3e90636a9564f56dc302b50901ccb"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "75f61a24-d88e-48c2-a25d-957c5fb1fa04",
|
|
"value": "dee7fbf9d55f5ed197463d65694accc6861a181248f3e79b99f5444183d39805"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a093f8b6-cfc8-4375-b2ff-9fed810c81fc",
|
|
"value": "e1e154590062bab331805d1657cbdea323053e25e0c5efe4a93d2deeca689452"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a8c6be4c-c8e4-4199-b07f-14b0f00ccbab",
|
|
"value": "e5da410cbba9e76ea9510985653984b63e5af501a2e542c9c29def8c1ded23c3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "93022e25-6f85-48d1-9bf1-10d8fc7984ce",
|
|
"value": "ede75c0a88d80043f79025dfd8ef91c3d1b01a1613f4a0347b2ceb29f8b19578"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "1ad75d94-a808-47fc-ba9f-2e150f3ab485",
|
|
"value": "eeadc13b1d59ada3851f56162796ef9d901a1fd74c457ced14d72b8df54e79ba"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a8d7509a-2927-47bc-9fde-7b1c68ce020f",
|
|
"value": "f0bb1027787cd589b6c6ff6eba755d916f837d8753342f9ffa391fbbab718841"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ff3cd744-61d3-4131-80ba-d47200788fb3",
|
|
"value": "f20c78fb33d42d874ed6fdf7096a4dad9b3637e05ccc8ae52ee6cc4e5dd8a0bf"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "8cc815b7-8bc8-4c36-9199-992fd1e398fc",
|
|
"value": "f6b74d7a2b2e2c1f2b0f088c6b5cd7d26d4d40b756e76bcb7ad06cd7c6c17ded"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "01910748-31e6-4050-85c8-2e489664bc0b",
|
|
"value": "f6f3d1d060274e114c80bcd35c3f5e97909cf6ffd793bdab27d1eb913a0d391e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c9d1848d-7f37-4570-9b44-f8a9ef57b782",
|
|
"value": "f7a66c1ed76f696c0d3d3d5c49e88b6cebf35ff232c5094d3284f7fe484a90a3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4153e52c-b69e-4422-9995-0491c7ee0819",
|
|
"value": "f9507a76801d5b1b83704a5019cdc312de18b004f16c5547b91b7dba086b2e29"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "47edc405-c9ec-4a04-bddb-3f2ff0058af7",
|
|
"value": "f9c459824e223d5523ac6edfea7b842cf168ae135045258b04b4760f4002a86f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7fadd49d-41d2-42de-b185-0c8f2a7d5cea",
|
|
"value": "f9c6dca22e336cf71ce4be540905b34b5a63a7d02eb9bbd8a40fc83e37154c22"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "0dac7190-11b4-45f5-bde6-011011bbc46c",
|
|
"value": "fb780f623a78c9b5aa8a279430731b84d0efe937ea5684f80182e4f896e8e288"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "41d0d1c9-e028-4d1b-9973-fcfac8db0924",
|
|
"value": "fec4655a9f99931692ecc28d35e2e17ae03f0acbfe8bdf9de00a05437049ce69"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "35e4b949-f5e6-4a14-8224-bc8ac205576f",
|
|
"value": "ff5e6fbf14c5eb35c1b4f24e4b08b30ba2e512a4b25ab7b652f0567edb94097e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "23d34b48-7a1f-4dac-a111-a7bfc1b240cc",
|
|
"value": "ffd51f3de4ba08508ca7c19dd15676c2c8f4a61891c1dea297bb648633485bcd"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "702b6c78-c785-4688-9182-b5e6ce8c54a5",
|
|
"value": "134.122.114.248"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "47e5cfae-9b6a-4576-a6f1-bd55c535bfd1",
|
|
"value": "142.93.122.23"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "858930eb-f5be-45a4-9828-5d5858006a5d",
|
|
"value": "149.28.215.46"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "e7aa22ef-3ad4-4e01-a1bd-66f483ef1bdb",
|
|
"value": "157.245.88.69"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "a0893b92-97c0-477b-b0ff-6c73d42619f3",
|
|
"value": "159.89.53.108"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "4f3b5b43-f563-456b-97bf-134bc94c2574",
|
|
"value": "192.81.211.69"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "28621163-e20b-41d2-941b-891964d97783",
|
|
"value": "213.252.246.185"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "5c8e5497-79e3-4aad-95d9-2e4630052185",
|
|
"value": "45.138.172.51"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "3355fd17-d163-4f9a-9adf-9142e3ba6ec0",
|
|
"value": "45.141.86.136"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "f44ec647-d38a-4d64-9d5f-5b80a0f095f0",
|
|
"value": "45.141.86.146"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "e8e92754-db73-4cff-be00-473b00c8216d",
|
|
"value": "45.141.86.194"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "29e2f188-e39c-40fe-a872-dea94feb25fd",
|
|
"value": "45.141.86.207"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "47bb1cae-74ac-4632-a5d3-ad14198b4ac6",
|
|
"value": "45.147.228.77"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "cde9c129-5080-4186-9f7c-2c3fd61528f6",
|
|
"value": "45.147.229.128"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "30697e86-d051-46d1-933c-5350160f0999",
|
|
"value": "45.147.230.241"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "48569ca6-269d-4442-8086-dfafee3966a7",
|
|
"value": "45.147.230.30"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "3e23aa03-95ec-4aed-886c-c40cd9e6b9c5",
|
|
"value": "45.32.134.62"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "0ef68601-3d4f-450c-9845-62ec5d3fe2f9",
|
|
"value": "5.2.70.149"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "d81912f7-0267-4577-8f3a-5cbea35289cb",
|
|
"value": "64.44.131.107"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "8e804c75-4826-478f-9bba-8247f45448cb",
|
|
"value": "88.119.174.129"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "0129bf9a-c122-429f-b25c-1f675562aa86",
|
|
"value": "88.119.174.130"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "82760aae-1fa8-441e-bbde-e277e9d9be23",
|
|
"value": "88.119.174.131"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "c5bb800c-9b45-4d51-bc69-ce033752b6c2",
|
|
"value": "88.119.174.132"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "b04af1fe-5278-4830-9606-c8231d0d3d22",
|
|
"value": "88.119.175.237"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "94cd5094-7287-4a86-b1c9-17ff1fd7c3ff",
|
|
"value": "94.177.12.161"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "5c5808ce-abab-4b48-b487-26c94058fabf",
|
|
"value": "96.9.209.156"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "b1a1028f-3500-43ee-9988-260790d4480a",
|
|
"value": "96.9.209.161"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "a766c8f5-a1ce-40fd-864a-0a6dd86c3556",
|
|
"value": "96.9.209.177"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045662",
|
|
"to_ids": true,
|
|
"type": "ip-dst",
|
|
"uuid": "9c76e32b-88f4-4943-b12d-d4cdda21a761",
|
|
"value": "96.9.209.215"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045687",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b5914a21-282c-4ddc-8dd9-f95e393562b4",
|
|
"value": "ad.daemon-update.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045687",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "0443c5b6-f385-4997-92e4-c8c02b7f276d",
|
|
"value": "as.raingamess.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045687",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "b57c9ea2-8748-47be-a7c0-8c1b13acbee5",
|
|
"value": "balanarr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045687",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5a1ba601-56fd-41f5-a51f-2f53769b702f",
|
|
"value": "bf.primeviref.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045687",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "1b14ed33-34f6-43fb-ab57-ea021fdd533e",
|
|
"value": "bukaguka.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045687",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "dc332d89-3e81-4d64-8f32-acc6b421d3c0",
|
|
"value": "bv.myobtain.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045687",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "90c31521-b6a5-4311-aed1-d98c30e8a86b",
|
|
"value": "cc.hotlable.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045687",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "a79f1ede-a17e-4d7d-94a8-32e609c754c1",
|
|
"value": "cv.myobtain.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b89b1e70-6f4c-451f-9a35-093de1bf6042",
|
|
"value": "cv.webxyz.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b9ba5105-b8df-4825-a5a6-3958b55f615c",
|
|
"value": "cx.hotlable.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6625e5cd-528d-4660-a437-4478044469e8",
|
|
"value": "cx.webxyz.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "d2a9e2ad-61af-46b4-8aab-f08e1445bab9",
|
|
"value": "cz.webxyz.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "34852992-488f-4d64-8405-f76fa4993410",
|
|
"value": "daemon-update.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5e6a7432-bcad-4a5d-9de0-8562cd07e3cb",
|
|
"value": "ea.daemon-update.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "16675d5a-d5c1-4f1d-b3fa-e819fecd16dd",
|
|
"value": "er.primeviref.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7ef71494-4ab3-4c65-96dd-35dd7c4d6e58",
|
|
"value": "er.starcyclone.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "5ea80a24-ac79-4c75-809c-946b03eb5ddd",
|
|
"value": "gg.raingamess.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "a1ce24ff-3506-4f7b-8bd0-01cadf3fc38a",
|
|
"value": "hotlable.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "710f297f-6060-48cb-b3c2-e08dba785e1c",
|
|
"value": "hunbabe.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "b8aef791-7f57-4a78-a443-590e3efc9ee9",
|
|
"value": "ju.daemon-update.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "7916a9da-b207-4061-89e4-0daccca4da07",
|
|
"value": "mn.balanarr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "259f72a0-4108-475e-a050-dedc086d4d0d",
|
|
"value": "mn.hunbabe.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "0a1a5d64-7019-4cad-87e8-b4180ba80081",
|
|
"value": "myobtain.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "71e3bc9e-979a-44fa-9a40-3845fa661273",
|
|
"value": "nasmasterservice.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "08b33068-32ba-4c1b-bc95-092c308c5b72",
|
|
"value": "nm.hunbabe.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "60d4f133-53fc-401a-a5c4-a99d8edde86c",
|
|
"value": "nv.balanarr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "feb3c23d-431d-4e57-994b-fd960afe8742",
|
|
"value": "po.starcyclone.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "f2c02e43-6c2e-4d4f-afd9-6c5c8355d7de",
|
|
"value": "primeviref.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "9dc396b0-8482-4856-b7d4-2ef98cc07f78",
|
|
"value": "qw.balanarr.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "20ebe5c9-06ca-467f-888d-4a6cdde5103c",
|
|
"value": "qw.raingamess.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "ab1e9441-e95c-49fa-8d4f-5b80710b30e1",
|
|
"value": "qw.servicemusthave.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "abedc7d3-adf4-44e3-b77e-3074a889c65a",
|
|
"value": "raingamess.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3bf5012c-38d6-4cc9-a91b-db48defbacd3",
|
|
"value": "rt.servicemusthave.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "a02f09db-267a-4be1-95e0-4aeb2b3ff934",
|
|
"value": "servicemusthave.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "047574f1-6ea1-4ebc-860a-cc2690f15aca",
|
|
"value": "starcyclone.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "dc27706c-41f7-4b9c-8cce-33805b2b4102",
|
|
"value": "toyotacamryy.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "1949f9a0-b81f-4f53-8fd9-b2caa910876f",
|
|
"value": "tt.servicemusthave.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "6084e4a1-ed44-4291-b52e-b7e658f4cd2d",
|
|
"value": "vc.myobtain.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "3fc11220-b06a-4d00-adfe-51b2b8efd2b8",
|
|
"value": "we.primeviref.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "domain",
|
|
"uuid": "232f0f1b-279f-4b4c-807b-51438e657bf7",
|
|
"value": "webxyz.net"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "2c45f488-bf17-435e-bda0-39b4c3ba93d0",
|
|
"value": "xo.starcyclone.com"
|
|
},
|
|
{
|
|
"category": "Network activity",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"timestamp": "1604045688",
|
|
"to_ids": true,
|
|
"type": "hostname",
|
|
"uuid": "60e27794-2ea8-4b7d-b876-93c944692ff9",
|
|
"value": "xx.hotlable.com"
|
|
}
|
|
],
|
|
"Object": [
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "Metadata used to generate an executive level report",
|
|
"meta-category": "misc",
|
|
"name": "report",
|
|
"template_uuid": "70a68471-df22-4e3f-aa1a-5a3be19f82df",
|
|
"template_version": "1",
|
|
"timestamp": "1604043437",
|
|
"uuid": "62d87168-ecd2-46aa-b749-057e78ef86fb",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "summary",
|
|
"timestamp": "1604043437",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "730a37c1-0bba-4be8-aa22-f75d0b321b38",
|
|
"value": "In service to the general public, RiskIQ is today releasing the entirety of its unique and expansive holdings relating to the Ryuk strain of ransomware, exposing all known infrastructure upon which the threat actors behind the attacks currently rely. Organizations will be able to use this intelligence to search their networks for signs of attack, as well as to prevent malicious connections to other Ryuk command-and-control servers.\r\nThe decision to release these indicators of compromise is meant to complement recent efforts made public by US federal agencies and researchers at FireEye, who have responded to a spate of reported attacks against hospitals around the country with alerts and intelligence designed to aid network defenders.\r\nAs cases of COVID-19 rise, news reports are warning that \u201cdozens\u201d of hospitals across the US have been targeted with the Ryuk strain of ransomware. The malware is thought to be deployed by Eastern European criminals and to be delivered by the same threat actors behind the Trickbot malware platform. Trickbot was the subject of a massive takedown attempt carried out by Microsoft earlier this month, reportedly in cooperation with US CYBERCOM.\r\nYesterday, federal agencies issued an alert aimed at the nation\u2019s healthcare industry, providing context on the Ryuk threat and releasing indicators of compromise. The alert was issued by the Federal Bureau of Investigation (FBI), the Department of Homeland Security\u2019s Cybersecurity & Infrastructure Security Agency (CISA), and the Department of Health and Human Services (HHS) in a joint advisory. The agencies also hosted a conference call for health care industry leaders to further advise them that ransomware attacks are actively targeting the industry, including hospital systems.\r\nIn addition to the government advisory, FireEye also publicly released all relevant Ryuk IOCs (https://www.fireeye.com/blog/threat-research/2020/10/kegtap-and-singlemalt-with-a-ransomware-chaser.html) it has observed in attacks against their customers in 2020.\r\nBelow, the public will find still more IOCs associated with Ryuk ransomware that RiskIQ has observed via its Global Internet Intelligence Graph. It has been organized in a way to include all IP addresses, domains, and SHA-256 samples we have identified, in addition to what has previously been released publicly. Users are encouraged to check back on this article daily, to keep up-to-date with the latest developments and intelligence on this threat."
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048173",
|
|
"uuid": "5e4b3ebd-ca0a-464f-ad10-70aea4b7ae7d",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "5e4b3ebd-ca0a-464f-ad10-70aea4b7ae7d",
|
|
"referenced_uuid": "00e2ce66-809e-426b-a464-03a3c73515af",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "0fe5d3f3-f7aa-483e-a042-ba45f277a3fe"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "83a7643f-7409-49ef-b48b-f716b25999b7",
|
|
"value": "27197265ac57027fd51ee66fd401b882"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "5e9fb3c8-0b24-4565-8c89-f68cb47d4df5",
|
|
"value": "98920c69627c38787d08586c38268b945e4c9e6d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "fc4a068b-4d7a-498e-b5b6-e5b9c8474cae",
|
|
"value": "6abf2716ace0464a488e5ed4d1935865d4d12886ff54fbb5dd659bf32f1cf23a"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048173",
|
|
"uuid": "00e2ce66-809e-426b-a464-03a3c73515af",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "1dfc91ba-98f0-47ba-a32c-a14bc14eb870",
|
|
"value": "2020-10-30T00:43:54+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "423fd4a4-d04c-429f-834f-d91e5c4b98d1",
|
|
"value": "https://www.virustotal.com/gui/file/6abf2716ace0464a488e5ed4d1935865d4d12886ff54fbb5dd659bf32f1cf23a/detection/f-6abf2716ace0464a488e5ed4d1935865d4d12886ff54fbb5dd659bf32f1cf23a-1604018634"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "1d55864d-2658-4ade-82c6-02fcfe4b07f1",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048173",
|
|
"uuid": "ac882397-2143-439d-a35c-29d75328afc1",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "ac882397-2143-439d-a35c-29d75328afc1",
|
|
"referenced_uuid": "2fd08d36-d4b0-46d2-b04b-e73b5d0dab09",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "7a015540-7050-477b-b682-f7da4a1b4b4f"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "bca661f8-f044-46a8-b912-35fc164ad658",
|
|
"value": "1c835dbc0454e448563c6fecb481250e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "95949917-546a-49df-97be-0b54e9189721",
|
|
"value": "d3a5b3018962079ecd33c5d80c8dfc6b0a2aed61"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c035e62a-8ad2-44ae-b514-780597257baa",
|
|
"value": "849c4687f36eecc3e3e5f68da5ee1b2b5c1fe75811db66633962af9a749ff355"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048173",
|
|
"uuid": "2fd08d36-d4b0-46d2-b04b-e73b5d0dab09",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "13e8f75b-1bef-48b1-b273-825d5e80e83b",
|
|
"value": "2020-10-30T00:44:28+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "344d9039-4052-492b-ba16-d346957405b3",
|
|
"value": "https://www.virustotal.com/gui/file/849c4687f36eecc3e3e5f68da5ee1b2b5c1fe75811db66633962af9a749ff355/detection/f-849c4687f36eecc3e3e5f68da5ee1b2b5c1fe75811db66633962af9a749ff355-1604018668"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "efb7cc87-9392-427e-9017-2960a32c6f02",
|
|
"value": "60/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048173",
|
|
"uuid": "6fd4b80d-ab64-4af1-a3a8-ad9b6d395c75",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "6fd4b80d-ab64-4af1-a3a8-ad9b6d395c75",
|
|
"referenced_uuid": "9b52878f-f520-4816-a7e5-7d612600a435",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "4b6b0c7f-c7ac-4c27-b53b-120dcfc53359"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "ac319aca-1287-428e-9f56-3d2066900eaf",
|
|
"value": "e83921068f58178919357d72f7da4b54"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e4f989c8-920d-40dc-a8d3-ecbd0be81e0f",
|
|
"value": "4a0ba17833ebe3df630b45c6ee5175187a94a25c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "444b08e0-311c-486d-bfae-89de1fe1417a",
|
|
"value": "b485bcb29c5bf53269960a243b051d4fafcd4ae2b17839e96afbf8f8fec8b244"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048173",
|
|
"uuid": "9b52878f-f520-4816-a7e5-7d612600a435",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "2edf15bb-e87a-4070-ae0b-74a26a198bbf",
|
|
"value": "2020-10-17T16:45:17+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "5ffc849b-ca66-407e-adf3-f4167b38d1ad",
|
|
"value": "https://www.virustotal.com/gui/file/b485bcb29c5bf53269960a243b051d4fafcd4ae2b17839e96afbf8f8fec8b244/detection/f-b485bcb29c5bf53269960a243b051d4fafcd4ae2b17839e96afbf8f8fec8b244-1602953117"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "bef11a5d-e137-48a3-828d-175033ecf3bb",
|
|
"value": "59/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048173",
|
|
"uuid": "b6522bbe-f37c-489b-8e4c-c2876a8dbbe4",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "b6522bbe-f37c-489b-8e4c-c2876a8dbbe4",
|
|
"referenced_uuid": "529bb072-ec45-4bc8-9cbe-327e2a8c87fb",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "27760f41-9d03-432e-8586-2cd52f03ae1f"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "56dda908-1d26-4e1a-805d-ed7a0cc46c69",
|
|
"value": "f0e418d8703c9fe05518526b5a110437"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "9389ab0d-192f-4c02-9c69-1d4a0f347c6b",
|
|
"value": "e0a1c2dc8bc85bbd54a68766e042e260a4aeaba9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "147a86d5-6b85-4bca-b79c-cf346d64cc00",
|
|
"value": "33a2b228186f8391a15442fc1333827fc2af5468c40d1a1552723245922a6812"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048173",
|
|
"uuid": "529bb072-ec45-4bc8-9cbe-327e2a8c87fb",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "d0360e7e-3859-49a3-ab34-d7a7df69a4d3",
|
|
"value": "2020-10-19T04:38:37+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "6b3e3d74-ef4e-4943-90ed-90b2b17defa5",
|
|
"value": "https://www.virustotal.com/gui/file/33a2b228186f8391a15442fc1333827fc2af5468c40d1a1552723245922a6812/detection/f-33a2b228186f8391a15442fc1333827fc2af5468c40d1a1552723245922a6812-1603082317"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "3065abd5-88a2-45aa-9356-0a9e94864d18",
|
|
"value": "31/59"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048174",
|
|
"uuid": "3f2c3c0f-8e53-4526-97e6-2f13c526f330",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3f2c3c0f-8e53-4526-97e6-2f13c526f330",
|
|
"referenced_uuid": "576829d7-5640-4605-910e-d1d6874e0686",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "fcafbbaf-b2bf-4e02-9622-bbf65fa2587f"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "a6da5ffe-c1d0-4c98-ba76-09675029f97c",
|
|
"value": "8765876a56e35f4a21b7fac4792a4148"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "00299f3a-22b9-4276-ad62-618486316f31",
|
|
"value": "07b332e50b279739189888048256c61725edb8a6"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "766e6046-5d29-45b1-941d-4704ab4e2738",
|
|
"value": "1c1397233114820f366607896cb9f3d3d412270e79947ce1558fc8db7dcbb602"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048174",
|
|
"uuid": "576829d7-5640-4605-910e-d1d6874e0686",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "dac1c416-5be3-40e8-ae5d-ecf1f821de38",
|
|
"value": "2020-10-29T20:07:41+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "1ce8067b-5821-4eec-8a00-edeae2da5559",
|
|
"value": "https://www.virustotal.com/gui/file/1c1397233114820f366607896cb9f3d3d412270e79947ce1558fc8db7dcbb602/detection/f-1c1397233114820f366607896cb9f3d3d412270e79947ce1558fc8db7dcbb602-1604002061"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "f8e804e4-d702-498f-ba52-0bf25dfdaee5",
|
|
"value": "42/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048174",
|
|
"uuid": "908358ba-5ed0-4297-b786-12a4289242f8",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "908358ba-5ed0-4297-b786-12a4289242f8",
|
|
"referenced_uuid": "b43ea474-a729-4dfd-9e40-0822f358eb91",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "bb54f7f0-1a3c-4240-8975-35a1142caa34"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "ce0d5407-5c1a-4b78-a4f8-44d4ea7d5d2f",
|
|
"value": "2b14db199e034461e2302c90d61b0e1a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "72323ffc-d46a-4f2c-98d0-b26214c32f32",
|
|
"value": "49131ff6a3cfcb5d95b2fa8f15d4ecb27380682a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c916c120-10ea-4b46-84d8-d751778ded2f",
|
|
"value": "eeadc13b1d59ada3851f56162796ef9d901a1fd74c457ced14d72b8df54e79ba"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048174",
|
|
"uuid": "b43ea474-a729-4dfd-9e40-0822f358eb91",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "886a5d70-9d35-4ec2-97ae-20f359a3acd3",
|
|
"value": "2020-10-29T07:38:20+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "7e156070-65e5-44f7-ab28-c804720047f9",
|
|
"value": "https://www.virustotal.com/gui/file/eeadc13b1d59ada3851f56162796ef9d901a1fd74c457ced14d72b8df54e79ba/detection/f-eeadc13b1d59ada3851f56162796ef9d901a1fd74c457ced14d72b8df54e79ba-1603957100"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "dbb67355-b864-4703-9f89-e2f9bcecced9",
|
|
"value": "50/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048174",
|
|
"uuid": "ead61ca6-0171-45e8-866e-d771f0dff221",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "ead61ca6-0171-45e8-866e-d771f0dff221",
|
|
"referenced_uuid": "75db51bf-03f3-48b7-b91e-a61105c01f5e",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "57ebffd5-b084-44b9-89e9-2022ac38cf25"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "97f06670-0614-4f08-8bd4-a81da3b30559",
|
|
"value": "12963009969137f99d02129f98465975"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "8af22356-e20a-4714-bd14-d352e21e96ef",
|
|
"value": "5a2fbefccac3bcf330ed6f5c57372e5056817094"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "432424bb-6136-44fe-ab01-0fffa413cf21",
|
|
"value": "c0595bfea597e67c4e7291e60ed124c5b6fd47eca5d2a2dee4ac61864ac6dc5f"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048174",
|
|
"uuid": "75db51bf-03f3-48b7-b91e-a61105c01f5e",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "3f9038c4-b9e5-496a-9224-a213067fbd1e",
|
|
"value": "2020-10-30T00:48:50+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "6060f3eb-ffbd-4b85-a1e4-5771b50cd36c",
|
|
"value": "https://www.virustotal.com/gui/file/c0595bfea597e67c4e7291e60ed124c5b6fd47eca5d2a2dee4ac61864ac6dc5f/detection/f-c0595bfea597e67c4e7291e60ed124c5b6fd47eca5d2a2dee4ac61864ac6dc5f-1604018930"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "905e21fa-6ed7-4aa7-bf89-6879afc961d5",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048174",
|
|
"uuid": "d29baa9f-3cb5-417d-8a99-0036be91261f",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "d29baa9f-3cb5-417d-8a99-0036be91261f",
|
|
"referenced_uuid": "72cae686-0ad4-42f7-938e-640b8cf6c173",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "4a895559-55e4-476a-900a-37322559cf49"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "edc33f15-9879-4f9f-afc6-1f1f4798e71a",
|
|
"value": "8eef3411f7938ddae15cfba34807d33f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "41969ec5-4281-419c-b7f6-47c576115156",
|
|
"value": "8a96fc4090eb2719504abac1e11a40cda0ab2d1d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f9f29a36-d2a6-4440-bd4f-18627b6c237d",
|
|
"value": "82ccc3e53246b4b931c7d6642b70de245d9896b6481b273ee50aca3c58614027"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048174",
|
|
"uuid": "72cae686-0ad4-42f7-938e-640b8cf6c173",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "d7ea2627-fe9d-476a-9273-f1231b17fb34",
|
|
"value": "2020-10-30T00:44:21+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "3e4c869f-83cc-495d-ad39-5580a36d0465",
|
|
"value": "https://www.virustotal.com/gui/file/82ccc3e53246b4b931c7d6642b70de245d9896b6481b273ee50aca3c58614027/detection/f-82ccc3e53246b4b931c7d6642b70de245d9896b6481b273ee50aca3c58614027-1604018661"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ba7318e3-e60e-40dd-bbb2-7df90104a41f",
|
|
"value": "32/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048174",
|
|
"uuid": "b1f6ca3d-e038-406a-84a1-16f010a477fb",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "b1f6ca3d-e038-406a-84a1-16f010a477fb",
|
|
"referenced_uuid": "7449d241-4e95-4a07-b3d4-e5aaf770bf80",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "f42d171a-a7a2-4eeb-bee4-89f41104eaff"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "e202bed2-440a-4f6b-aeea-9d00abb304f8",
|
|
"value": "5c1fce8fa3e228b8f2641bb1f7a29c3f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "63c887e4-2afa-491f-8d46-0b61d61acede",
|
|
"value": "29234654f799ff6ea89fada6af32763c02fff1eb"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ae65b3e3-b8e1-4174-a116-839acb20b49c",
|
|
"value": "991a222bdbeb5d25b9f9445496112af904ac7b677b6296810727e6e403f5f5eb"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048174",
|
|
"uuid": "7449d241-4e95-4a07-b3d4-e5aaf770bf80",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "371eac32-7a01-4b21-aa99-9c211d26e69a",
|
|
"value": "2020-10-14T13:50:13+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "98782b08-3cb9-4519-bacf-cc0f79370fa5",
|
|
"value": "https://www.virustotal.com/gui/file/991a222bdbeb5d25b9f9445496112af904ac7b677b6296810727e6e403f5f5eb/detection/f-991a222bdbeb5d25b9f9445496112af904ac7b677b6296810727e6e403f5f5eb-1602683413"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "1ad9a3e3-ec87-419d-bbbd-2bb9a2e3e4cc",
|
|
"value": "39/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048174",
|
|
"uuid": "63c96554-bdeb-460e-a6fc-f34d987c6f9a",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "63c96554-bdeb-460e-a6fc-f34d987c6f9a",
|
|
"referenced_uuid": "fc3eeb39-1a76-4f90-b349-5b18765ffbc6",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "118334e4-0cca-4c16-8934-fe67c7233702"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "7a4de2b5-a062-4489-9620-7feea687b030",
|
|
"value": "cfe3c64842d025295eeda7b6ab470d89"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "b9d5c44a-588e-464d-be09-d093179dec2d",
|
|
"value": "9be1e7531ab8f274f8fec3d56508f064dae91468"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "b096949a-6067-4662-9126-ed6d222cf314",
|
|
"value": "ceb4bfe175798179b0947da1ffd8eda13777b9d7b02bc75599b6f6907cf2c2c0"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048174",
|
|
"uuid": "fc3eeb39-1a76-4f90-b349-5b18765ffbc6",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "ccd64e68-9210-468b-824b-c67743d4c0c8",
|
|
"value": "2020-10-30T00:49:06+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "c0900208-909a-4f1a-b796-068450e90c98",
|
|
"value": "https://www.virustotal.com/gui/file/ceb4bfe175798179b0947da1ffd8eda13777b9d7b02bc75599b6f6907cf2c2c0/detection/f-ceb4bfe175798179b0947da1ffd8eda13777b9d7b02bc75599b6f6907cf2c2c0-1604018946"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "1a4f0f04-9c4a-42b4-a8ef-493c5696ed0e",
|
|
"value": "58/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048174",
|
|
"uuid": "7cc421fe-a7f7-4ce1-8350-e097b2d323a4",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "7cc421fe-a7f7-4ce1-8350-e097b2d323a4",
|
|
"referenced_uuid": "8007aa8a-ca37-4ade-927f-5a18d2494e6c",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "84dfc56c-3e43-4162-b6e5-852af537109d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "d1306fcf-b394-4520-9a04-7bdf684ca24e",
|
|
"value": "45ed8898bead32070cf1eb25640b414c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "484e5dd9-fdae-4542-a83d-e9a089474b0f",
|
|
"value": "dd77cee3d418a6462b2e31fabc76510b8f2320d5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "80804e94-31cf-4390-ba80-8897fcd02212",
|
|
"value": "836db6bde6f664fa42b020c7b4549713022eac87410c1ed1104b6d4df615a599"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048174",
|
|
"uuid": "8007aa8a-ca37-4ade-927f-5a18d2494e6c",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "48e8ad8d-5ac9-4216-92ad-6cfde0859a04",
|
|
"value": "2020-10-25T10:53:30+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "b91ef160-3a78-42b8-a9bd-79c2deda76cd",
|
|
"value": "https://www.virustotal.com/gui/file/836db6bde6f664fa42b020c7b4549713022eac87410c1ed1104b6d4df615a599/detection/f-836db6bde6f664fa42b020c7b4549713022eac87410c1ed1104b6d4df615a599-1603623210"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "17cdd15b-0a53-4c60-928e-79d700a670e6",
|
|
"value": "37/60"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048174",
|
|
"uuid": "88bb68aa-24a7-43b4-aa66-2664b2d7a6fe",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "88bb68aa-24a7-43b4-aa66-2664b2d7a6fe",
|
|
"referenced_uuid": "4deb19ef-d3a2-469c-8867-ec0068cdecd0",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "00b5aab9-0dc2-4ba6-b731-5e26fb50acbf"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "f7ca912b-3c2a-46cb-8496-6819adb18836",
|
|
"value": "6c4dacbefca90dad7ef318604e635e89"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "658d6b4d-8e76-4952-8d01-6cc886c8fbc1",
|
|
"value": "5810d3a052d459760defbf479be15df1eebff48f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "0f54a585-203b-4f0e-bf66-ea82a1f4b57e",
|
|
"value": "1c05380af47696f7d7ef84b452fa4f662158d9f1caf7ad01a455061081d13653"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048174",
|
|
"uuid": "4deb19ef-d3a2-469c-8867-ec0068cdecd0",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "b6047dc1-e4ec-42cf-8a21-83ef4dd14dfb",
|
|
"value": "2020-10-27T08:46:00+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "19ddb205-c2d4-45a9-86f5-b7c7ea2a6dbf",
|
|
"value": "https://www.virustotal.com/gui/file/1c05380af47696f7d7ef84b452fa4f662158d9f1caf7ad01a455061081d13653/detection/f-1c05380af47696f7d7ef84b452fa4f662158d9f1caf7ad01a455061081d13653-1603788360"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "2d846543-7036-4739-bde0-5384d0c6862c",
|
|
"value": "21/64"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048174",
|
|
"uuid": "87954ab5-4409-4ea3-94f8-165babf4c710",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "87954ab5-4409-4ea3-94f8-165babf4c710",
|
|
"referenced_uuid": "088808e2-c340-49e6-96a5-9b0bc41b85c4",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "47b8beb6-14f8-4951-a67e-9e13e4972e4f"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "39318d2a-742b-4303-af8d-fef90c44731e",
|
|
"value": "7787793cbd6267fd2b90d959bf332bf4"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "dd19fa25-009c-48cd-baff-9aa13816fca1",
|
|
"value": "2e563c126e52fea3e2dc6ae7cb3e61d0ff00f65b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "9aeb83e5-3e09-438e-b7c5-a6f9c396fde1",
|
|
"value": "68547344839166ef8e28dd31b40b35d94759eda2949eab654bf737dfe9d3edae"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048174",
|
|
"uuid": "088808e2-c340-49e6-96a5-9b0bc41b85c4",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "c02e3e5a-7dbd-4966-bba3-0a2f9d7807d7",
|
|
"value": "2020-03-03T14:58:16+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "0086255f-45f8-4e5e-a8b0-127db41cac66",
|
|
"value": "https://www.virustotal.com/gui/file/68547344839166ef8e28dd31b40b35d94759eda2949eab654bf737dfe9d3edae/detection/f-68547344839166ef8e28dd31b40b35d94759eda2949eab654bf737dfe9d3edae-1583247496"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "c05d9519-2f1b-4579-af41-e30957c0ff8e",
|
|
"value": "37/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048174",
|
|
"uuid": "2a2dd0a7-5011-4981-9b67-f02c12b8f45e",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "2a2dd0a7-5011-4981-9b67-f02c12b8f45e",
|
|
"referenced_uuid": "31caa127-b831-4dba-a175-597008420dfd",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "e6b66047-1a13-4018-89a5-f2c439799afc"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "40c798ce-6068-4ecc-85a4-1c58df5a0af9",
|
|
"value": "bee5e78994ab779ebc2419af945d41bd"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "41d745c0-11d5-47a5-ab9f-a2517ec56eeb",
|
|
"value": "e51c0e251dd24eb2aa561f1e0b01fab249674b53"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "bbc53eea-8580-43b1-9894-c1348d22c7e2",
|
|
"value": "956cd22a033de80926083810a0946ad764e0df61dfc0ad09af5e1947327281c9"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048175",
|
|
"uuid": "31caa127-b831-4dba-a175-597008420dfd",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "13a774b8-0fe4-4d5b-bd62-22ddb97585e3",
|
|
"value": "2020-10-30T00:47:39+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "71c21224-1315-4446-9cbb-3dbb0ac083bd",
|
|
"value": "https://www.virustotal.com/gui/file/956cd22a033de80926083810a0946ad764e0df61dfc0ad09af5e1947327281c9/detection/f-956cd22a033de80926083810a0946ad764e0df61dfc0ad09af5e1947327281c9-1604018859"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "076cb55f-71e5-4843-ac9b-da129e7f5cbb",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048175",
|
|
"uuid": "8bb6b5f9-1eec-437c-b4e4-9f383f4cda2c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "8bb6b5f9-1eec-437c-b4e4-9f383f4cda2c",
|
|
"referenced_uuid": "c14b090b-a2e7-4aa9-88dc-22ce1ec164f5",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "59aef0f8-7a70-4509-823d-f792a12bff75"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "bb7d0e34-79f5-4330-a47d-89c1f1f0fc62",
|
|
"value": "a8ed5d85a362e3593a5c2e811ef705d1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "71dcb817-290a-4278-9452-1462cd68317e",
|
|
"value": "10f70fcc77e24a44601194f2aefc2477106bba17"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7e6e6dcf-69b8-4cac-812d-d9d66695e2d8",
|
|
"value": "71fe1f1ce713e265b2c6693f83ed94a359e43e6aa60322baee599ba74a2f2ac0"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048175",
|
|
"uuid": "c14b090b-a2e7-4aa9-88dc-22ce1ec164f5",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "ca7c3792-8d4a-44be-9417-57f031ca2e75",
|
|
"value": "2020-10-06T01:52:28+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "e32403e4-8c8b-437b-bcff-908bf9ecb27f",
|
|
"value": "https://www.virustotal.com/gui/file/71fe1f1ce713e265b2c6693f83ed94a359e43e6aa60322baee599ba74a2f2ac0/detection/f-71fe1f1ce713e265b2c6693f83ed94a359e43e6aa60322baee599ba74a2f2ac0-1601949148"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "7e2a64c1-2d3f-4e69-9349-6f5195238bfe",
|
|
"value": "56/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048175",
|
|
"uuid": "ad88c285-5054-45f9-ace8-cdcfa5353a47",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "ad88c285-5054-45f9-ace8-cdcfa5353a47",
|
|
"referenced_uuid": "a5bb37a9-4148-4e6d-af0a-9f0236e9081c",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "8bf6f4fa-6166-459d-9dab-e6b3a5a505f0"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "9866d8f5-6059-419a-97bf-d0ce905751f3",
|
|
"value": "8f044ca3d947bacaa6eb3102d002b10a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "b97645bd-dc46-4d09-82c3-c79942796368",
|
|
"value": "9a454f50ec48736a36cf6e317dae93330ca2279a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "89eb7bf3-6ce0-41d1-a8e7-f11bea586956",
|
|
"value": "ca4963745454cc8584cec4e53d27d78c86a4766a4f69b0b37617efcd915621c8"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048175",
|
|
"uuid": "a5bb37a9-4148-4e6d-af0a-9f0236e9081c",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "80a0277c-c012-4ac4-bdb5-6b056ff577d8",
|
|
"value": "2020-10-30T00:48:58+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "18d87866-da97-49cb-8b71-cdde168bd4c7",
|
|
"value": "https://www.virustotal.com/gui/file/ca4963745454cc8584cec4e53d27d78c86a4766a4f69b0b37617efcd915621c8/detection/f-ca4963745454cc8584cec4e53d27d78c86a4766a4f69b0b37617efcd915621c8-1604018938"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ba2073ee-1ef0-4d38-b3b0-b3f989437158",
|
|
"value": "58/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048175",
|
|
"uuid": "c2cc0844-2ef9-4a4f-8073-8d562ec641b4",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "c2cc0844-2ef9-4a4f-8073-8d562ec641b4",
|
|
"referenced_uuid": "2e469fab-9d51-49a5-8853-f1d932426d8e",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "40eac1b1-741f-4e28-9e16-4a59b7b3eaa8"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "897b6474-d1be-4215-a6b9-ea20c02c4f0a",
|
|
"value": "5628e7821300674c1d2d197c36ae27de"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "510082d8-4dac-4af0-9556-35bfbce97e01",
|
|
"value": "3b48dcb3c2c812c595531b71a686c12d3a568a5a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f3321c87-cd69-4b70-b793-7fc51f304e23",
|
|
"value": "7f901d8f673d5e1fde07676b3287aa9a24dc92fb48e7ca82a163e0b0581ee7ad"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048175",
|
|
"uuid": "2e469fab-9d51-49a5-8853-f1d932426d8e",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "5503d3b5-e4e9-40d0-97d9-7c1d182d084c",
|
|
"value": "2020-10-18T06:57:45+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "ab037109-c5d6-40c8-a459-baa3d2071072",
|
|
"value": "https://www.virustotal.com/gui/file/7f901d8f673d5e1fde07676b3287aa9a24dc92fb48e7ca82a163e0b0581ee7ad/detection/f-7f901d8f673d5e1fde07676b3287aa9a24dc92fb48e7ca82a163e0b0581ee7ad-1603004265"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "e2a3eecc-d632-484b-ad02-a4b79dccb224",
|
|
"value": "60/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048175",
|
|
"uuid": "c0afae13-062d-49a7-a713-9a51b448b3a9",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "c0afae13-062d-49a7-a713-9a51b448b3a9",
|
|
"referenced_uuid": "d578e159-ed9c-4d51-b571-5222bd7c89b9",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "22b069cb-0b80-4e9f-9fc9-f06c0e8ba63c"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "e07f6c07-ce81-4e70-93f2-a3f37993acbe",
|
|
"value": "54bd58f706c85cfbb0f79b93a1ef5647"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "62c1c6b7-ade6-4788-96fe-a240562e424a",
|
|
"value": "be1d0d758a601b28fe3e4b9ee89c11bb4efd714a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "65bba056-4a34-49b0-8543-cad48b556f80",
|
|
"value": "31e9c92d7dce8b65dded9c40e67d9cfca33bf8870d460e73b02df8a035ca719f"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048175",
|
|
"uuid": "d578e159-ed9c-4d51-b571-5222bd7c89b9",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "fc33538d-1b12-4e89-b31f-38dee195406e",
|
|
"value": "2020-10-15T05:04:41+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "7b00b926-e966-44e2-8889-362205ae50bb",
|
|
"value": "https://www.virustotal.com/gui/file/31e9c92d7dce8b65dded9c40e67d9cfca33bf8870d460e73b02df8a035ca719f/detection/f-31e9c92d7dce8b65dded9c40e67d9cfca33bf8870d460e73b02df8a035ca719f-1602738281"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "e7e3daa1-8f49-44f0-a3f1-05a3a3700692",
|
|
"value": "57/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048175",
|
|
"uuid": "d024baa3-1fec-4c1a-8553-0e6f98f25421",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "d024baa3-1fec-4c1a-8553-0e6f98f25421",
|
|
"referenced_uuid": "313aaa43-c6cf-4b04-bbd2-2445367ac02c",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "f3074279-aca7-414c-8363-0a7c25feffba"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "a2b8e846-f721-4948-9a16-83bd66f0203b",
|
|
"value": "52fd3e86aad283c1958c2babbba5d0bc"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "baba590d-ce60-4d05-9d68-d75b35be3d90",
|
|
"value": "ed235c4335d0e5791ae2d183e2e41e4ec33ca769"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "566351a2-e8d0-4619-8e68-add03e7dab5d",
|
|
"value": "7c64c488a58473d9456d4f2f64b7bcb5eea03c32bd99650c59e38b0993eba7b3"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048175",
|
|
"uuid": "313aaa43-c6cf-4b04-bbd2-2445367ac02c",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "25c17078-8d97-4cd1-8d1d-2cb8a0353988",
|
|
"value": "2020-10-30T00:44:18+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "b03c5cba-5200-40f6-8eb7-02f44ca96b76",
|
|
"value": "https://www.virustotal.com/gui/file/7c64c488a58473d9456d4f2f64b7bcb5eea03c32bd99650c59e38b0993eba7b3/detection/f-7c64c488a58473d9456d4f2f64b7bcb5eea03c32bd99650c59e38b0993eba7b3-1604018658"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "f37f7338-d308-462d-bfa3-95039c416bba",
|
|
"value": "61/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048175",
|
|
"uuid": "26310581-f95c-4206-abc1-7bf5c0a488ac",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "26310581-f95c-4206-abc1-7bf5c0a488ac",
|
|
"referenced_uuid": "798d4c42-9a74-4124-9c97-4d480a05aec4",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "a8f2bf08-81a9-4c3e-83f1-c7d484cba395"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "102b2426-3d22-494c-a747-91f3300b0400",
|
|
"value": "51f052e28e66fc3735dd2977680bccf1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "9ecb79b9-e496-4a57-bb60-cf01d95b2e56",
|
|
"value": "1ae29d6fd93da47903fd001e83b39919698c258a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7476fd1b-26e0-4292-88a5-039f0c7cd2f9",
|
|
"value": "2a2e39586e7232a3339d52453b477454bc44b6305c711dd9eb5ecf4394c55b10"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048175",
|
|
"uuid": "798d4c42-9a74-4124-9c97-4d480a05aec4",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "c6cfbf69-23b7-4400-81a3-e0f6dcebba5c",
|
|
"value": "2020-10-30T00:42:45+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "ac4f2d3a-0c28-4034-aef9-b66b233a1ba5",
|
|
"value": "https://www.virustotal.com/gui/file/2a2e39586e7232a3339d52453b477454bc44b6305c711dd9eb5ecf4394c55b10/detection/f-2a2e39586e7232a3339d52453b477454bc44b6305c711dd9eb5ecf4394c55b10-1604018565"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "8f6249f0-08f0-4386-93c3-f8e7f71d2b6a",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048175",
|
|
"uuid": "e8b4a663-ff85-43cb-8398-8f1fbbc197cf",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "e8b4a663-ff85-43cb-8398-8f1fbbc197cf",
|
|
"referenced_uuid": "55b4925d-4e59-40cf-918c-5cdf333dacfb",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "3d5867b7-cab8-48f1-b9e0-2da5d41fae09"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "71d110a7-2dd1-44a2-92d8-b661de000a4c",
|
|
"value": "5830d56abdd025531c75081a591cd65c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "22123621-e388-45fc-b8e7-63240a8b1e58",
|
|
"value": "c508aef5aed97581b724999797659e695e1ea25a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "81367d9a-36d8-4306-8eb0-c50a0f929d11",
|
|
"value": "42d914b10255499859ee5919b183ca521ae483ac3edc2f1653d52487f9098342"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048175",
|
|
"uuid": "55b4925d-4e59-40cf-918c-5cdf333dacfb",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "cca767bd-c4e1-42dc-81dd-b7983eaaf19b",
|
|
"value": "2020-09-10T22:43:11+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "b958872c-ba36-46ac-9ce8-73c5232fdf49",
|
|
"value": "https://www.virustotal.com/gui/file/42d914b10255499859ee5919b183ca521ae483ac3edc2f1653d52487f9098342/detection/f-42d914b10255499859ee5919b183ca521ae483ac3edc2f1653d52487f9098342-1599777791"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "4ee86566-a988-4eea-a649-b857f235f1f0",
|
|
"value": "41/68"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048175",
|
|
"uuid": "ac1d0ce6-08f6-4b69-8614-6ab3044ecc44",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "ac1d0ce6-08f6-4b69-8614-6ab3044ecc44",
|
|
"referenced_uuid": "7ceb59f0-3fa1-43ec-aeb8-16a783f01fe3",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "13d3af77-4d1c-4729-8376-1bcfddd75b8f"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "fd167b9d-a55a-4a3e-a9fd-882ff67f67dc",
|
|
"value": "ae273a9fcffc596bd3590e25358df530"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "3a1d1ea3-0b4a-4b64-b372-035bf5419116",
|
|
"value": "3b08a9eb4d3e9d0117d47e8d17dd59651f40855f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ce7bfa8c-60b9-434d-961b-65cdb2c3176e",
|
|
"value": "8074bbc62a36ff2c0037634d3c45fdf40bfc372a7123f64c38f159c04d2391c6"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048175",
|
|
"uuid": "7ceb59f0-3fa1-43ec-aeb8-16a783f01fe3",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "7d99d950-1776-4171-95c9-07a168da0eae",
|
|
"value": "2020-10-30T00:44:19+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "91aec557-872c-4c30-96cb-81488d493945",
|
|
"value": "https://www.virustotal.com/gui/file/8074bbc62a36ff2c0037634d3c45fdf40bfc372a7123f64c38f159c04d2391c6/detection/f-8074bbc62a36ff2c0037634d3c45fdf40bfc372a7123f64c38f159c04d2391c6-1604018659"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "bed5bf59-4422-4bcc-99e0-c7fe226bdb4c",
|
|
"value": "60/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048175",
|
|
"uuid": "e1ca9c54-2ce8-44bb-bfca-350de81502ba",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "e1ca9c54-2ce8-44bb-bfca-350de81502ba",
|
|
"referenced_uuid": "aa951bc9-ef07-4251-aa0f-4538eee478de",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "233d0675-8758-4562-89ef-55c382a6aac3"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "9b89c557-7b18-49c0-9b33-65f2cb180dc2",
|
|
"value": "338f61ec72842816598ad2e4119898db"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "2617161d-0de2-477c-913f-959d4124466c",
|
|
"value": "76e509a899030337e6e34c0b6fa420b6b6201ec3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "53280cb8-d060-4a7b-bb78-0301b0569367",
|
|
"value": "959e289a72a49a27d173d5c020969e27aa078a1521b3632ceb5e8c77fa01a342"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048175",
|
|
"uuid": "aa951bc9-ef07-4251-aa0f-4538eee478de",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "1d468b29-f437-475a-9eff-8c794c1971dd",
|
|
"value": "2020-10-30T00:47:41+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "c3bd2c20-7967-4a0f-8351-f904c90cd95b",
|
|
"value": "https://www.virustotal.com/gui/file/959e289a72a49a27d173d5c020969e27aa078a1521b3632ceb5e8c77fa01a342/detection/f-959e289a72a49a27d173d5c020969e27aa078a1521b3632ceb5e8c77fa01a342-1604018861"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "0980d278-861c-47e6-b560-d446580a4ff7",
|
|
"value": "58/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048176",
|
|
"uuid": "6fc8fff8-49cf-4081-a039-736633c0ed58",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "6fc8fff8-49cf-4081-a039-736633c0ed58",
|
|
"referenced_uuid": "383142fa-6e3a-4f81-9235-567eeb5b0ab6",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "b7103c09-e06e-4872-83cd-1c2058485622"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "fb827381-672a-40ac-b240-3fd62df76aff",
|
|
"value": "f9bef2eb1093eede8045e9dc61ba3939"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "09b03086-21a7-44fd-ba8c-2958687ca432",
|
|
"value": "0c2f2c04650b744bbb772bbdf5633f33b3f71e36"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "d45223bf-c012-44cd-9484-8ddd766bf0d1",
|
|
"value": "cb039efaebc29c1cc5c0fcf8567de534993f447245a45db03c927af56f7096d7"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048176",
|
|
"uuid": "383142fa-6e3a-4f81-9235-567eeb5b0ab6",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "a062c9d3-7ead-448b-b064-ef67e0f432cf",
|
|
"value": "2020-10-30T00:49:04+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "8439f342-9226-4652-8931-947b4b9d421e",
|
|
"value": "https://www.virustotal.com/gui/file/cb039efaebc29c1cc5c0fcf8567de534993f447245a45db03c927af56f7096d7/detection/f-cb039efaebc29c1cc5c0fcf8567de534993f447245a45db03c927af56f7096d7-1604018944"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "8bc07bbc-b914-4852-9d8e-ce77c21b474e",
|
|
"value": "58/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048176",
|
|
"uuid": "3481a175-cb01-4840-9abe-cbd87234807a",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3481a175-cb01-4840-9abe-cbd87234807a",
|
|
"referenced_uuid": "8e613b40-bd32-45a9-93f9-f3339ef5265a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "d601f1fd-c700-4318-be03-1c61cfbd80ca"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "9e246682-3d4c-4b41-a411-fec75495e905",
|
|
"value": "8a07acd8c2a5a00df18315f76b1b2667"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "1df0d9c9-bf64-438e-88da-f2fc35dee87e",
|
|
"value": "3f82b5a53429ae95dce9a9b2f88f6635e08128ff"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "92cd94a2-a6e2-4419-8a9b-9af1d6bc757f",
|
|
"value": "dee7fbf9d55f5ed197463d65694accc6861a181248f3e79b99f5444183d39805"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048176",
|
|
"uuid": "8e613b40-bd32-45a9-93f9-f3339ef5265a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "d9272af9-92a8-46ca-8dd4-6a48d3bbeb7c",
|
|
"value": "2020-10-29T09:53:21+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "744bc77a-f620-4fad-9468-315d778f2d2e",
|
|
"value": "https://www.virustotal.com/gui/file/dee7fbf9d55f5ed197463d65694accc6861a181248f3e79b99f5444183d39805/detection/f-dee7fbf9d55f5ed197463d65694accc6861a181248f3e79b99f5444183d39805-1603965201"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "214bb321-0783-4159-8c57-1737686e182c",
|
|
"value": "51/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048176",
|
|
"uuid": "ee57c4f1-12e8-4d02-9d9b-7aff080fb603",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "ee57c4f1-12e8-4d02-9d9b-7aff080fb603",
|
|
"referenced_uuid": "09432c45-43fc-42cd-be4f-dadab4fedd84",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "b5948470-fa83-4d7a-9d6b-db9d031d20f4"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "ca4478eb-cd48-4e90-bd18-49e7d7488dbb",
|
|
"value": "c6baec0946bf6ccde48a0413a9c49c1b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "661bb7ec-c210-40ef-8df2-24f6baa3b03c",
|
|
"value": "277410845de23288c4aa12507ce264d88874aa63"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7a24a437-40da-4551-920e-8c8f78f8a6e0",
|
|
"value": "087d2b51bec315fdbd938405c9cdcdf63f0d0bda42c7db89062ef3cccc45b525"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048176",
|
|
"uuid": "09432c45-43fc-42cd-be4f-dadab4fedd84",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "f5d393fb-0d72-44f1-bc09-62153b3be469",
|
|
"value": "2020-10-30T00:41:55+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "56410225-5040-4a54-9998-5579ae6c6306",
|
|
"value": "https://www.virustotal.com/gui/file/087d2b51bec315fdbd938405c9cdcdf63f0d0bda42c7db89062ef3cccc45b525/detection/f-087d2b51bec315fdbd938405c9cdcdf63f0d0bda42c7db89062ef3cccc45b525-1604018515"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "d1a52f48-fa0f-4ccd-ac12-1318997a5cad",
|
|
"value": "59/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048176",
|
|
"uuid": "b78c654a-eb99-40d0-8b4f-598364a838d0",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "b78c654a-eb99-40d0-8b4f-598364a838d0",
|
|
"referenced_uuid": "b9366adb-2b69-4fa3-9d43-aa29ebe4b2cd",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "4dad4a28-43f5-4682-a61c-c641c2907dea"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "0a008232-4e63-4df8-ae33-8671f3e36d70",
|
|
"value": "6b657b9e2aee50530ac89f7a1a970695"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "4fc9779a-fbfd-4904-9d7c-d9a163ad5187",
|
|
"value": "b82bc4fdf974cbda29193f63c8a04ea35cef3129"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "247dd6ff-b5dc-48be-b45d-51589e5d7b6f",
|
|
"value": "641a07800e1e9542d0756a7bb740f80ec49aed633af0add108a6e00671e10757"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048176",
|
|
"uuid": "b9366adb-2b69-4fa3-9d43-aa29ebe4b2cd",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "2bd8a028-c314-4446-832d-fe5bad4cca4b",
|
|
"value": "2020-10-30T00:43:46+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "a594c2da-789f-47b8-95c1-813a48e82b9d",
|
|
"value": "https://www.virustotal.com/gui/file/641a07800e1e9542d0756a7bb740f80ec49aed633af0add108a6e00671e10757/detection/f-641a07800e1e9542d0756a7bb740f80ec49aed633af0add108a6e00671e10757-1604018626"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "cb24ce39-4522-4ff4-9deb-cdaf4dccc18a",
|
|
"value": "58/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048176",
|
|
"uuid": "2a3fb881-8056-4765-aa9a-27a80acc6bf2",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "2a3fb881-8056-4765-aa9a-27a80acc6bf2",
|
|
"referenced_uuid": "4bd2979b-dbc0-40c3-9479-14121d9d47c7",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "c25c31b7-55cf-4457-b164-b542d8253f24"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "cb8c7cfa-0966-46da-b38a-8a8226dba1de",
|
|
"value": "f11a64a174727afd094940241b337d06"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "888ae18c-90d3-4af6-88d5-94215427a45c",
|
|
"value": "252699f458ebca8f86ee784d2bada1a183f8e482"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "8e7e3652-5d42-4ab8-b074-1e1363ee4d3a",
|
|
"value": "243408d1fa0c8a7a778d8bb224532c649409d0db76fc0ca2be385d193da22b1e"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048176",
|
|
"uuid": "4bd2979b-dbc0-40c3-9479-14121d9d47c7",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "2dd8b90a-cd25-4468-9525-508b11626f29",
|
|
"value": "2020-05-29T08:05:35+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "d829e613-9ca2-4103-aac0-7cb1c863e8d2",
|
|
"value": "https://www.virustotal.com/gui/file/243408d1fa0c8a7a778d8bb224532c649409d0db76fc0ca2be385d193da22b1e/detection/f-243408d1fa0c8a7a778d8bb224532c649409d0db76fc0ca2be385d193da22b1e-1590739535"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "4c6179c7-5232-4046-ba23-c9cd02165f6d",
|
|
"value": "4/58"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048176",
|
|
"uuid": "aef19916-9097-40ef-a7d3-243415f3d0d8",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "aef19916-9097-40ef-a7d3-243415f3d0d8",
|
|
"referenced_uuid": "2b85fa93-dc70-4992-81eb-df1175ee277e",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "bd4b4407-3a0c-44eb-930b-77b0a8ede1ec"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "654a5084-3f20-44f0-a56e-c4a4feca25ad",
|
|
"value": "63f6b2067577f2ed002eb2bd1dd51238"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "7c627f65-a1d0-43fb-bf91-bc5858a677b0",
|
|
"value": "9087c9b5b704145db9cbc0b806300f9ff94b0a27"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "53c04e80-cb56-4bcb-8a61-abbe2a682935",
|
|
"value": "2dcb2f1fe7fc145529c31328c150cd9a00a8b02e57a69f09211db334f78fe784"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048176",
|
|
"uuid": "2b85fa93-dc70-4992-81eb-df1175ee277e",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "66d7ebc3-44b5-46cb-a3aa-feea8257ae63",
|
|
"value": "2020-10-13T05:41:52+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "e23c25c2-9e88-4cb0-a944-721f311315f9",
|
|
"value": "https://www.virustotal.com/gui/file/2dcb2f1fe7fc145529c31328c150cd9a00a8b02e57a69f09211db334f78fe784/detection/f-2dcb2f1fe7fc145529c31328c150cd9a00a8b02e57a69f09211db334f78fe784-1602567712"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ba628f14-6bed-462b-b8fe-0f7971307a6d",
|
|
"value": "56/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048176",
|
|
"uuid": "cd330673-923f-4a4b-8ceb-46b108f3e454",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "cd330673-923f-4a4b-8ceb-46b108f3e454",
|
|
"referenced_uuid": "e2c9a6cc-d8c4-4f67-8c61-5d407dcbba9a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "fa5aa9f3-cd51-49a7-a991-0d6d3e3ef918"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "a0abf98e-598c-40ff-a3e5-d90cd5a5e8df",
|
|
"value": "120cf4d1f8e624642afa69869ae1af6b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "4a8dce54-256f-4a1b-890f-d3647e363fb8",
|
|
"value": "5137162d579ffdb90013b212f7655f74d7d8cc64"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "03cf917b-8379-4033-bd87-d76303a183d0",
|
|
"value": "ff5e6fbf14c5eb35c1b4f24e4b08b30ba2e512a4b25ab7b652f0567edb94097e"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048176",
|
|
"uuid": "e2c9a6cc-d8c4-4f67-8c61-5d407dcbba9a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "6e84ada4-b972-4764-a962-1ca023c89d48",
|
|
"value": "2020-10-17T15:26:19+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "88b2e4a7-4aef-4320-8283-0aec5a8f9bba",
|
|
"value": "https://www.virustotal.com/gui/file/ff5e6fbf14c5eb35c1b4f24e4b08b30ba2e512a4b25ab7b652f0567edb94097e/detection/f-ff5e6fbf14c5eb35c1b4f24e4b08b30ba2e512a4b25ab7b652f0567edb94097e-1602948379"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ad262e62-5f2f-4486-ab72-71261e6b7414",
|
|
"value": "46/68"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048176",
|
|
"uuid": "0de8f154-20b4-4cbb-bff4-8387a4018315",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "0de8f154-20b4-4cbb-bff4-8387a4018315",
|
|
"referenced_uuid": "176ed5ae-6f90-4672-9199-96121aaf2700",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "91b90c04-cb21-4423-8fac-de3d42159821"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "155571af-bea8-4307-a7b2-35079c114170",
|
|
"value": "9e4b4cb4f9a898c267597feac791dbdd"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "7d4e27eb-a63c-48b5-8e02-d244e10b4575",
|
|
"value": "fff33ee129006a824955f2704ff288d97dace950"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "351b218a-105c-486f-a3e4-080b3f7b3eeb",
|
|
"value": "24e8413c8743a2349be66e1df415f8e8c8326b3e9fb8b4f158f8fde4409626af"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048176",
|
|
"uuid": "176ed5ae-6f90-4672-9199-96121aaf2700",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "7a624ea1-5fb1-4607-b95f-b5253d8e7b2b",
|
|
"value": "2020-10-30T00:42:39+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "06fb9cdb-c9d9-4277-b623-37e3313d87c7",
|
|
"value": "https://www.virustotal.com/gui/file/24e8413c8743a2349be66e1df415f8e8c8326b3e9fb8b4f158f8fde4409626af/detection/f-24e8413c8743a2349be66e1df415f8e8c8326b3e9fb8b4f158f8fde4409626af-1604018559"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "dc6db485-b10a-4218-8de7-1a72cd8f04f6",
|
|
"value": "56/68"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048176",
|
|
"uuid": "7648e2bb-97f3-4136-8638-19438312c1f0",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "7648e2bb-97f3-4136-8638-19438312c1f0",
|
|
"referenced_uuid": "bb073d81-1582-4442-96c3-3154f7c5175a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "324dcaeb-928d-4472-b1ce-218b05728880"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "2e4a931a-402c-4882-bdf2-2a42bd7934a5",
|
|
"value": "9143d36eb003675f475253b58a551fe9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "f0e13b51-1d0a-4200-8292-e906cbf85a6a",
|
|
"value": "37d90ecaf4c83fde3bcf0cafe5ed67f88c1bfaca"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f3e07c42-3437-48f6-925b-536a41d4c621",
|
|
"value": "57b75ed78a4b94749fe25b14e7a6e3b357089b060b88aeb7a30144c6713e5afc"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048177",
|
|
"uuid": "bb073d81-1582-4442-96c3-3154f7c5175a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "58c5e97e-1f64-4825-a8f9-4e1c546ba11d",
|
|
"value": "2020-08-31T07:23:50+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "a4e829eb-4907-4f49-af82-c0738efc4516",
|
|
"value": "https://www.virustotal.com/gui/file/57b75ed78a4b94749fe25b14e7a6e3b357089b060b88aeb7a30144c6713e5afc/detection/f-57b75ed78a4b94749fe25b14e7a6e3b357089b060b88aeb7a30144c6713e5afc-1598858630"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "3248870e-d3d1-42ef-8543-0c44975f1de2",
|
|
"value": "41/68"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048177",
|
|
"uuid": "f3f44c88-aac0-4659-ba55-ec85914a6a43",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "f3f44c88-aac0-4659-ba55-ec85914a6a43",
|
|
"referenced_uuid": "223881fc-7e22-4e6e-8e2e-5ef678fe01fa",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "542ec6b1-44e5-4d3a-851c-3b265fd92a74"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "37256513-b40b-4588-897b-df2d652b3a52",
|
|
"value": "50dd30bc1cca41ed34143287247e668e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "aba69126-50d7-45d8-ac42-b2da93a8863e",
|
|
"value": "f1248a89ee385a6f4fc6195a83c91870b5f600a4"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "41cd6b1c-5c1e-4f79-b82d-cdfdaf127460",
|
|
"value": "1dae20a13c71c11f3c2a2010d2577cd2b3601c1092a980c1305991681b178c46"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048177",
|
|
"uuid": "223881fc-7e22-4e6e-8e2e-5ef678fe01fa",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "02591bd8-73b6-4fdb-93d4-7ebaf0cb3f92",
|
|
"value": "2020-10-12T04:17:44+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "6f9be60c-2fc7-454b-9d6b-13f01dee4d85",
|
|
"value": "https://www.virustotal.com/gui/file/1dae20a13c71c11f3c2a2010d2577cd2b3601c1092a980c1305991681b178c46/detection/f-1dae20a13c71c11f3c2a2010d2577cd2b3601c1092a980c1305991681b178c46-1602476264"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "9a646a0c-be9d-45f2-b095-e0d89d985448",
|
|
"value": "55/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048177",
|
|
"uuid": "d96379c5-a04f-450d-a1fa-5130b7a9cb47",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "d96379c5-a04f-450d-a1fa-5130b7a9cb47",
|
|
"referenced_uuid": "1a591c5c-22e2-4927-b929-cd9648cce64f",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "3ca30d98-6c5b-4a49-aa65-a2b945fcfe8a"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "5cd9fe83-b773-4379-87ec-ce3b27b21388",
|
|
"value": "b17a9f6d1916471dc4862aee9a76c26a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "405ab8c1-d7c2-4025-b39f-5fd0a6c4fc5b",
|
|
"value": "2a92911b56f79bddeb6cb8b7869acb7ab9370b5e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "6fbcc30c-17db-4fe6-87f6-b0e2c7983c9a",
|
|
"value": "151983eab306e5fcd22b110cf36ddc2357564d40399d08ce8a70d7f78b0bfbbf"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048177",
|
|
"uuid": "1a591c5c-22e2-4927-b929-cd9648cce64f",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "fd42f2ba-e93c-48af-ae88-bf0dcc7fbe59",
|
|
"value": "2020-10-06T20:56:53+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "193cc6c0-3252-4f88-badf-620984ef8643",
|
|
"value": "https://www.virustotal.com/gui/file/151983eab306e5fcd22b110cf36ddc2357564d40399d08ce8a70d7f78b0bfbbf/detection/f-151983eab306e5fcd22b110cf36ddc2357564d40399d08ce8a70d7f78b0bfbbf-1602017813"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "1fbef84f-f595-4842-8121-5ec58f592443",
|
|
"value": "37/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048177",
|
|
"uuid": "a18de543-51a8-473e-bce8-8bd40a06da42",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "a18de543-51a8-473e-bce8-8bd40a06da42",
|
|
"referenced_uuid": "41054227-3150-48aa-9ff9-e4107aead60e",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "da065d83-7d6f-4326-92c3-883402bbfe87"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "bb18cae7-29c5-4881-b20c-4ac4d0aecef0",
|
|
"value": "442b0435ef029da1e47e9cf08c333e7c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "ba0a504e-5cef-4e87-9533-c65be76db754",
|
|
"value": "b5bb04e2d7e5f931fd56e82f95f6cfed7c02dffc"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "73f422d0-4ee2-4ac6-aba7-c93dc604f507",
|
|
"value": "fec4655a9f99931692ecc28d35e2e17ae03f0acbfe8bdf9de00a05437049ce69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048177",
|
|
"uuid": "41054227-3150-48aa-9ff9-e4107aead60e",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "f47c866f-1b46-47af-8cc9-ef5d2165f551",
|
|
"value": "2020-10-30T00:50:07+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "f09b880b-4ae9-4f2a-8d7b-f32a100ae0c0",
|
|
"value": "https://www.virustotal.com/gui/file/fec4655a9f99931692ecc28d35e2e17ae03f0acbfe8bdf9de00a05437049ce69/detection/f-fec4655a9f99931692ecc28d35e2e17ae03f0acbfe8bdf9de00a05437049ce69-1604019007"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "3784340f-31d5-4a9d-b316-b4253333e004",
|
|
"value": "45/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048177",
|
|
"uuid": "57592eb5-8a8b-469e-bf60-91c626a922a2",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "57592eb5-8a8b-469e-bf60-91c626a922a2",
|
|
"referenced_uuid": "71ba1cdd-c76a-4bad-98db-d57286d9b019",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "f80a8d39-d263-4dfa-96c6-347eb5b62e42"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "17ea4fcb-2871-48b6-9ba2-433fc7ba7d90",
|
|
"value": "553a3cbe0b19e58c5d48e9b0396690bf"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "8818c6d8-ba71-4d0c-ab51-ba5c16b157b9",
|
|
"value": "15bafbd10d9bb078839da143510aacd540fab480"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "9cd92cc1-fb24-496f-91db-8740d7ecd866",
|
|
"value": "c9b06152ac1c851eaed84ee052c374341ed89d9a6e5a5d97bd0e4b941c01a274"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048177",
|
|
"uuid": "71ba1cdd-c76a-4bad-98db-d57286d9b019",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "8aa819eb-dd99-4496-95f6-a9d71125c059",
|
|
"value": "2020-10-16T14:44:27+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "5d636736-3253-4015-8b02-0ea8152edae2",
|
|
"value": "https://www.virustotal.com/gui/file/c9b06152ac1c851eaed84ee052c374341ed89d9a6e5a5d97bd0e4b941c01a274/detection/f-c9b06152ac1c851eaed84ee052c374341ed89d9a6e5a5d97bd0e4b941c01a274-1602859467"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "54489666-b82d-4c00-87b0-09fda419bee3",
|
|
"value": "46/68"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048177",
|
|
"uuid": "efafad91-2966-44fa-8c60-ddae7045e5d7",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "efafad91-2966-44fa-8c60-ddae7045e5d7",
|
|
"referenced_uuid": "7bd9928c-6e1b-442f-a824-4e2734b88c6b",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "3f46751a-6df2-4ee9-bfb3-809bafed8ae3"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "186edad6-a5a4-48ab-a724-f0d00a7c90ae",
|
|
"value": "d301bb6e5b1b3a82fab6fbd06f34869f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "f26105d8-4b94-41ca-8266-123e3e3112d2",
|
|
"value": "3a4842cca5746e37998d3067e2366fe9a0f91265"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f0443869-1652-4d45-a80a-c8a2cc113215",
|
|
"value": "f0bb1027787cd589b6c6ff6eba755d916f837d8753342f9ffa391fbbab718841"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048177",
|
|
"uuid": "7bd9928c-6e1b-442f-a824-4e2734b88c6b",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "76cc4d4d-02e9-4b98-be83-79b70852e6da",
|
|
"value": "2020-10-30T00:49:37+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "0a12e25c-7af6-451c-89c4-7271054033fd",
|
|
"value": "https://www.virustotal.com/gui/file/f0bb1027787cd589b6c6ff6eba755d916f837d8753342f9ffa391fbbab718841/detection/f-f0bb1027787cd589b6c6ff6eba755d916f837d8753342f9ffa391fbbab718841-1604018977"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "e2bb5a54-e149-4d1b-bc9e-e77b95ce1488",
|
|
"value": "60/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048177",
|
|
"uuid": "b5ad9db6-0a4e-469b-8ac0-253343f5ad6c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "b5ad9db6-0a4e-469b-8ac0-253343f5ad6c",
|
|
"referenced_uuid": "bf16277d-9e5c-4ccb-9be4-d9cfbb73d9dc",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "dfa00989-43d7-4981-8f93-8ac3828988ad"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "dbdc6290-8a00-4bd0-8416-72b1ce079706",
|
|
"value": "08e30482aa254ff92af3a14d8e0d0cb4"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "052b7cc2-a256-4bc0-aca7-0be7dce6661f",
|
|
"value": "f561e3ae00b534805045f3ee86c5381d23d0fa1c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c0dbb7d0-d7af-40cf-a8cb-3c7923ed305f",
|
|
"value": "e5da410cbba9e76ea9510985653984b63e5af501a2e542c9c29def8c1ded23c3"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048177",
|
|
"uuid": "bf16277d-9e5c-4ccb-9be4-d9cfbb73d9dc",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "9b8da257-06cb-402d-b93c-b855991943f2",
|
|
"value": "2020-09-23T15:03:40+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "5a6cdba7-9243-4aa6-89ca-6fbc19414eb8",
|
|
"value": "https://www.virustotal.com/gui/file/e5da410cbba9e76ea9510985653984b63e5af501a2e542c9c29def8c1ded23c3/detection/f-e5da410cbba9e76ea9510985653984b63e5af501a2e542c9c29def8c1ded23c3-1600873420"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "b9071bf8-cadb-4ee0-a67d-5b0370841d19",
|
|
"value": "56/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048177",
|
|
"uuid": "3aa019cf-6f11-4c11-8dc3-8fc6362cc78f",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3aa019cf-6f11-4c11-8dc3-8fc6362cc78f",
|
|
"referenced_uuid": "6ee0e6f3-3dc6-4bad-9153-ed89aa3bd203",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "df526c9f-ee45-4824-ab88-f1b46b13f9c5"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "8149e763-fc6c-446a-9a7a-c41df5bf73af",
|
|
"value": "880a45ff31bc540e80ecf2cf93134c12"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "355f54c9-7271-4477-bad5-87ca13785c6c",
|
|
"value": "a09fb822da6e6a3b009a6239955f752a49b8ca2d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "6e0c2f69-f52f-4bc2-bd71-06be75f9d37f",
|
|
"value": "694818ba3bbbd14949fea1441dd15ec721adc61f7f7de4cc728f449a2ef2c3c8"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048177",
|
|
"uuid": "6ee0e6f3-3dc6-4bad-9153-ed89aa3bd203",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "a3ddd465-74c2-45e6-93b4-3601997147a7",
|
|
"value": "2020-10-14T10:50:12+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "9f940b76-04e7-4942-a757-2b354988f75e",
|
|
"value": "https://www.virustotal.com/gui/file/694818ba3bbbd14949fea1441dd15ec721adc61f7f7de4cc728f449a2ef2c3c8/detection/f-694818ba3bbbd14949fea1441dd15ec721adc61f7f7de4cc728f449a2ef2c3c8-1602672612"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "09ee55b1-9932-4e9b-9a8c-4cc98405471a",
|
|
"value": "49/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048177",
|
|
"uuid": "2e764a7c-ecba-4130-9a68-3133b53bf5df",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "2e764a7c-ecba-4130-9a68-3133b53bf5df",
|
|
"referenced_uuid": "e3bd6581-d6d2-4b6f-a9a9-e1b31abb699e",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "96aeada8-81d0-4c2e-b53d-2f4bf10302a9"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "9178f791-eb49-40f7-a50a-979b59689af2",
|
|
"value": "bf8359bafbb198602226a01d73cde39b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "a55ef05a-e7cb-4373-9806-f72bc8bb723d",
|
|
"value": "2229997bad7dbe5ee5a00c8977781dec861808d5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c2e10a01-016b-4eba-9fc0-67891e22ad9f",
|
|
"value": "b43bb3af257e2c29ecf9add2ef4ad41c62e6b1298dc9af220ab0a285e23cb9db"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048177",
|
|
"uuid": "e3bd6581-d6d2-4b6f-a9a9-e1b31abb699e",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "37af8862-1b46-415e-9a04-9edf755549a9",
|
|
"value": "2020-10-30T00:48:28+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "c10b3d9f-7fa7-402e-9887-a45789f4bcb6",
|
|
"value": "https://www.virustotal.com/gui/file/b43bb3af257e2c29ecf9add2ef4ad41c62e6b1298dc9af220ab0a285e23cb9db/detection/f-b43bb3af257e2c29ecf9add2ef4ad41c62e6b1298dc9af220ab0a285e23cb9db-1604018908"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "66158cd8-3d8e-4d84-8de0-73736f0f2cd2",
|
|
"value": "58/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048177",
|
|
"uuid": "d7dfa178-99ac-4825-a28b-5cb6880e06cd",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "d7dfa178-99ac-4825-a28b-5cb6880e06cd",
|
|
"referenced_uuid": "e4dcecdb-c624-4a3c-8204-66150147aa90",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "4d5f6ffd-2427-43ec-aba1-d0425aaa7891"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "eb2d52e3-8bdf-4e6b-8a77-dfb3305ba9b2",
|
|
"value": "489e8a0c6e1ebd01b4c961b15a36ae4f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "a5a64b61-23c6-46d0-9b77-ed11677a452d",
|
|
"value": "d4c4afd63f0b4e443c8fbfc0dadd67637b51b254"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "caeca93d-c04f-47dc-8e6c-c2c7329a8289",
|
|
"value": "15305978d7c42e26d908feca9aed4efa3df89ae6524ecce10752a2ee3cdf813f"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048178",
|
|
"uuid": "e4dcecdb-c624-4a3c-8204-66150147aa90",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "4daee468-f1df-4786-8ad2-48996c9aaca2",
|
|
"value": "2020-10-29T11:15:45+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "d340d819-6501-4ae1-a2a7-0087d29c080e",
|
|
"value": "https://www.virustotal.com/gui/file/15305978d7c42e26d908feca9aed4efa3df89ae6524ecce10752a2ee3cdf813f/detection/f-15305978d7c42e26d908feca9aed4efa3df89ae6524ecce10752a2ee3cdf813f-1603970145"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "da565f7b-338f-4233-88f3-063a98aa6f41",
|
|
"value": "29/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048178",
|
|
"uuid": "b6b91a9e-68d7-4ba3-8166-f504e3be3b6b",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "b6b91a9e-68d7-4ba3-8166-f504e3be3b6b",
|
|
"referenced_uuid": "21e7e39a-bd74-415d-8e88-f25186436c50",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "d1f6437a-379b-4b9d-acaa-1e3da7bccf41"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "4768d8e0-e490-4533-a5e1-88c6fde4513d",
|
|
"value": "a75ec259d5c10934a801694ecb97c965"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "f868f9eb-e81f-407e-bb6d-bcf8eea0f53b",
|
|
"value": "36bd911c5598cc089f0945b08fc5ad720d024cd8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "9df1edb0-1c0f-46f7-a1cf-d031dbc41fae",
|
|
"value": "c0af45fb5b5ecaff8130bed61a8cdb4bac98f2c9ccc774bd6034576f865aaf6f"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048178",
|
|
"uuid": "21e7e39a-bd74-415d-8e88-f25186436c50",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "afb736bb-7bb5-47cb-8e4b-ed1ff7dd3efb",
|
|
"value": "2020-10-30T00:48:50+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "c445b283-0beb-492b-adc4-f185b30ff576",
|
|
"value": "https://www.virustotal.com/gui/file/c0af45fb5b5ecaff8130bed61a8cdb4bac98f2c9ccc774bd6034576f865aaf6f/detection/f-c0af45fb5b5ecaff8130bed61a8cdb4bac98f2c9ccc774bd6034576f865aaf6f-1604018930"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "4dca09d1-1cda-42f2-b183-6a9b5a1b10f9",
|
|
"value": "57/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048178",
|
|
"uuid": "e87a965f-c0f1-4f03-897a-b5361fb2d880",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "e87a965f-c0f1-4f03-897a-b5361fb2d880",
|
|
"referenced_uuid": "025f1bca-c27e-471f-85ef-03184b237b0a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "8559fda5-9666-484c-bcb5-13583485886b"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "cd29eccb-02c3-4d7f-8cb7-9211cce12e83",
|
|
"value": "d60d21b56705a455258f3569f27cf373"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "38896668-9762-4222-a7ae-2d3ae1b0dbc2",
|
|
"value": "896628d7cf7a34bd325b0fdd3f88e8bf80e6a383"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "2441d3d3-4c52-4a55-b991-bc2e3264085c",
|
|
"value": "88da60e5764ac7ead4db3a9ad0aa9f40e509a1d2df0380fa2e55cfdc8e3ad70a"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048178",
|
|
"uuid": "025f1bca-c27e-471f-85ef-03184b237b0a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "3982ef20-e691-4e3c-9f2b-4cae187e62c4",
|
|
"value": "2020-08-14T19:37:25+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "8d46e2b7-3db5-4c8b-822f-c1d09b238cb9",
|
|
"value": "https://www.virustotal.com/gui/file/88da60e5764ac7ead4db3a9ad0aa9f40e509a1d2df0380fa2e55cfdc8e3ad70a/detection/f-88da60e5764ac7ead4db3a9ad0aa9f40e509a1d2df0380fa2e55cfdc8e3ad70a-1597433845"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "a15c2c59-5433-4cd3-9bc3-35087dcd69d2",
|
|
"value": "47/68"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048178",
|
|
"uuid": "918be153-49bb-4879-b579-a382954e498c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "918be153-49bb-4879-b579-a382954e498c",
|
|
"referenced_uuid": "a29d49c3-f6e7-4100-b436-0c41692ab3a2",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "62fc1427-ae73-4e3f-b869-9eccef80c8d5"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "32d5043f-3409-44d4-a781-6a0c1a3f34a3",
|
|
"value": "fd8a05a79a3fa71d2f2d2f8dcd3894bd"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "3eb02e2e-0c50-42e4-b736-e60e2a9a0bf6",
|
|
"value": "c36a26b346bd0a1ecb5ed288cfebebffefb06d0f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "754f7750-f260-4d67-9fae-3295d1fae107",
|
|
"value": "86c18925097fed036b2f63a8c50891266b6d5f0ddde84ee57f6c4da06e77100b"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048178",
|
|
"uuid": "a29d49c3-f6e7-4100-b436-0c41692ab3a2",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "49844b33-9312-4ce6-8e01-d4c21f21043c",
|
|
"value": "2020-10-09T12:09:43+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "87b78fd9-9874-4223-b8d1-cce7aa9356be",
|
|
"value": "https://www.virustotal.com/gui/file/86c18925097fed036b2f63a8c50891266b6d5f0ddde84ee57f6c4da06e77100b/detection/f-86c18925097fed036b2f63a8c50891266b6d5f0ddde84ee57f6c4da06e77100b-1602245383"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "7dacff4c-48d1-40a5-9109-9b8ce7fd2e01",
|
|
"value": "36/66"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048178",
|
|
"uuid": "f7385be0-aa1d-4ef4-9157-6daec20898c1",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "f7385be0-aa1d-4ef4-9157-6daec20898c1",
|
|
"referenced_uuid": "ff796147-94b9-4bb1-92e8-2a6fd814e7da",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "a3925bd7-0627-4a9a-88c1-7ae3f9c3d85c"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "8fc780a1-686a-4ee6-9c4b-09ef6fa0431d",
|
|
"value": "b8a368fc14d2ed67aecf7e13b9efcf25"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "d01c82aa-1754-42f6-b275-f8770f4ede38",
|
|
"value": "2e2f28087f68cae3e51db88b761fd99304459a12"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "5a226e89-c42f-44b9-a765-5dd839b72f20",
|
|
"value": "9df20496f03f1e916dbaecbe7e99db411cd8044c13572d691febf13c22b7c572"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048178",
|
|
"uuid": "ff796147-94b9-4bb1-92e8-2a6fd814e7da",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "42e65ec8-9fcc-4c55-804f-10786d0ed25b",
|
|
"value": "2020-01-24T13:50:42+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "a7cc6915-f71c-4954-8c9e-0c18064986d0",
|
|
"value": "https://www.virustotal.com/gui/file/9df20496f03f1e916dbaecbe7e99db411cd8044c13572d691febf13c22b7c572/detection/f-9df20496f03f1e916dbaecbe7e99db411cd8044c13572d691febf13c22b7c572-1579873842"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "73ebef01-55bc-4ab5-b4bc-d5cfa93a11b7",
|
|
"value": "12/73"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048178",
|
|
"uuid": "62c0a296-7be7-4cf1-984a-4b46b085caa4",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "62c0a296-7be7-4cf1-984a-4b46b085caa4",
|
|
"referenced_uuid": "a9f7b81f-7604-443e-b586-0d3cf4805b56",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "9728180b-9415-49e0-8fe7-5eaf2b00f4df"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "d703a54c-86c4-46ca-974f-ac59f27d3d2a",
|
|
"value": "aa720ab9cf0ef76aeb1a7e149f6bc5c7"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "86f08b45-3388-4140-96b9-7e2417514f27",
|
|
"value": "0c46bf6e4fdcbf098df141bfd588976cf84acb68"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e1fc9820-f294-4b7f-b005-4007a7a294f8",
|
|
"value": "2788d54e094014cd18ec11263659c344330b55ff3b0a14941215f14557b77777"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048178",
|
|
"uuid": "a9f7b81f-7604-443e-b586-0d3cf4805b56",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "4934476a-c325-4a79-8b4e-082eddaf6fc4",
|
|
"value": "2020-10-11T04:15:10+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "7f5b3e3e-291a-405b-a674-c3b3adcc15d2",
|
|
"value": "https://www.virustotal.com/gui/file/2788d54e094014cd18ec11263659c344330b55ff3b0a14941215f14557b77777/detection/f-2788d54e094014cd18ec11263659c344330b55ff3b0a14941215f14557b77777-1602389710"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "b08699ac-77d8-4f98-81ac-9bac51ace8fa",
|
|
"value": "54/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048178",
|
|
"uuid": "2dbadbc3-f1de-4ffb-92ad-bf50f91c6a19",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "2dbadbc3-f1de-4ffb-92ad-bf50f91c6a19",
|
|
"referenced_uuid": "bf998784-79f9-4511-a2b2-498c898e185a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "12355e5b-5f0e-499a-9472-0dafb05a1b23"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "7c545181-3a30-4cdc-9462-9d04db74f973",
|
|
"value": "6afda62f82bd6585e40a6a86005567e8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "7142656d-2564-4f41-bee4-7b859c47fec6",
|
|
"value": "3ce224eaf4cb5ada496983b759ab113515c02cb0"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "33655d7f-7c1a-4f89-adf9-2eb2c953f965",
|
|
"value": "5fc68cab9ed345259fa2b452f63e9bc9b1c61285fb0445e60b2744c211bddeb8"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048178",
|
|
"uuid": "bf998784-79f9-4511-a2b2-498c898e185a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "632bbd05-1bf9-4419-9cbe-0efc3539a62a",
|
|
"value": "2020-10-30T00:43:36+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "265a3fbe-8909-4c37-943d-00ab678ab89d",
|
|
"value": "https://www.virustotal.com/gui/file/5fc68cab9ed345259fa2b452f63e9bc9b1c61285fb0445e60b2744c211bddeb8/detection/f-5fc68cab9ed345259fa2b452f63e9bc9b1c61285fb0445e60b2744c211bddeb8-1604018616"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "86d0ae30-362e-4d9e-aeb9-5e4bcbdf038a",
|
|
"value": "61/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048178",
|
|
"uuid": "d331b125-a13e-4057-b5ce-bf053af711cf",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "d331b125-a13e-4057-b5ce-bf053af711cf",
|
|
"referenced_uuid": "de27aef4-ed60-404f-9ba4-597005687128",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "c12827a9-ef81-4651-90cb-d11b870e50f9"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "cfab2bca-f564-4377-8d3f-c7634cd9ce61",
|
|
"value": "587a9cbcaec3ddceeba5a0fadd601d2d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "4dada5ba-c216-49ed-9354-a69d29f4193a",
|
|
"value": "384bc386449f6e0c33d9345e6a934f63640e3706"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "d0f53504-339b-4c4f-ac18-587b86508c96",
|
|
"value": "2af2ab80575400c191925d15f83726718655b8adad1c7bd02e4abe21d1004b95"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048178",
|
|
"uuid": "de27aef4-ed60-404f-9ba4-597005687128",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "cd2f7d38-46a3-42da-b55f-58f6383a2930",
|
|
"value": "2020-10-30T00:42:47+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "be6c3311-ce0f-48fd-b70e-671f482ac6e6",
|
|
"value": "https://www.virustotal.com/gui/file/2af2ab80575400c191925d15f83726718655b8adad1c7bd02e4abe21d1004b95/detection/f-2af2ab80575400c191925d15f83726718655b8adad1c7bd02e4abe21d1004b95-1604018567"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "d3a9136c-8931-4bcb-b939-f35c4473b6f7",
|
|
"value": "59/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048178",
|
|
"uuid": "f2784493-71c7-4b60-ad28-ad9a09f8cdc0",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "f2784493-71c7-4b60-ad28-ad9a09f8cdc0",
|
|
"referenced_uuid": "00ea0bff-a83d-406f-8b8f-a77c7be4c548",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "461c0237-e4f5-4444-bbac-26d14b34a314"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "b98f7f62-fb72-44d2-98c5-01f640b881dd",
|
|
"value": "fcd62559c2fbd5e5834f46efd28939ac"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "0413d712-850a-4d33-a44d-d5378f208c12",
|
|
"value": "4c07ea60cae61d92e248c47225e726b191e48426"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a53da918-71d0-422a-9605-a1809e59c8e1",
|
|
"value": "b2891d26b7b66dca32f02681a0f1f3866a2efae49d8b5ec6bf4cbbdf5ff35260"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048178",
|
|
"uuid": "00ea0bff-a83d-406f-8b8f-a77c7be4c548",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "0abbdee7-5aa1-4c78-8444-5db9fe20f443",
|
|
"value": "2020-10-10T07:38:58+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "0b3ed77a-29b1-4bec-a49b-f646d7533379",
|
|
"value": "https://www.virustotal.com/gui/file/b2891d26b7b66dca32f02681a0f1f3866a2efae49d8b5ec6bf4cbbdf5ff35260/detection/f-b2891d26b7b66dca32f02681a0f1f3866a2efae49d8b5ec6bf4cbbdf5ff35260-1602315538"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "b6c6c521-c013-4ce6-b366-333b36a3ad25",
|
|
"value": "35/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048178",
|
|
"uuid": "bd853739-de6d-4768-8a0a-ce7724eec488",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "bd853739-de6d-4768-8a0a-ce7724eec488",
|
|
"referenced_uuid": "2730a41a-4db9-4941-b48d-74b906548f6c",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "a6a3782b-5a58-4bf4-990d-2fcf5a21a386"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "ecdda3cb-2da9-4861-b905-172385be660c",
|
|
"value": "760260bff15dd371734758c89c748ee4"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "df1dca6a-a0c5-4d74-9237-1547c8b543ea",
|
|
"value": "4f957a30db5599f57777a0377119b9bd7cd40f78"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "de515106-96d1-4726-b812-50076bc5320d",
|
|
"value": "b294f8636f7ac5318560f3b8f949c1004340923d6aaaceed93481c3ba916d407"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048179",
|
|
"uuid": "2730a41a-4db9-4941-b48d-74b906548f6c",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "c8a07a8e-c97e-472a-98a3-c8985ca0195a",
|
|
"value": "2020-10-13T16:16:31+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "5ee87664-495e-4a59-9fa8-11fc4757174c",
|
|
"value": "https://www.virustotal.com/gui/file/b294f8636f7ac5318560f3b8f949c1004340923d6aaaceed93481c3ba916d407/detection/f-b294f8636f7ac5318560f3b8f949c1004340923d6aaaceed93481c3ba916d407-1602605791"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "dfffe232-cb81-4ad8-90a5-7e509f0b219a",
|
|
"value": "57/68"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048179",
|
|
"uuid": "e910ee1e-2815-4633-b427-104b225074f5",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "e910ee1e-2815-4633-b427-104b225074f5",
|
|
"referenced_uuid": "e068d586-bfea-47d5-93c3-350f8e62500d",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "d8c86132-de52-4694-bc78-529d12ed0c2a"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "79dca387-6226-414e-b807-6ee92686899f",
|
|
"value": "25aa62b8f71e50b733100a65919cb451"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "cbc4e4ef-cd58-4a1b-b726-d25d34c1a60a",
|
|
"value": "475ec23b841e135127546501e60afb2e58b62036"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a0f4dae6-9ca9-42db-b6f1-2c030e4e1aae",
|
|
"value": "21ead6c4722d06207332710f2dff6005bc5095034cffa7f60e57a77f651efa1c"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048179",
|
|
"uuid": "e068d586-bfea-47d5-93c3-350f8e62500d",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "c98a78a4-2707-4192-882f-d7779c4b32c4",
|
|
"value": "2020-04-17T16:43:50+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "7e7e11b9-12c6-41e2-8bf1-beb4728669d6",
|
|
"value": "https://www.virustotal.com/gui/file/21ead6c4722d06207332710f2dff6005bc5095034cffa7f60e57a77f651efa1c/detection/f-21ead6c4722d06207332710f2dff6005bc5095034cffa7f60e57a77f651efa1c-1587141830"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "6a5ebeed-1323-4e8d-9ead-abaa18973a1e",
|
|
"value": "39/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048179",
|
|
"uuid": "815fd311-7b72-48a8-b229-17fd3b51ee79",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "815fd311-7b72-48a8-b229-17fd3b51ee79",
|
|
"referenced_uuid": "8c70d678-a6ce-40f3-91f0-6f607cf17d29",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "25b6b8df-28f9-493b-8f9a-9c73cd6d7d7c"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "815ecd42-fa0c-46ce-bbbf-fed9a7989ba7",
|
|
"value": "aae329ca530837a782b24119d66c526b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "52c147ef-2d4c-4c53-9f36-e187a8f3de72",
|
|
"value": "f06decb1964601d89cbefbe84e3a34a91f0ace18"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e839fd7f-1350-4032-9af3-cbef125143f3",
|
|
"value": "1bc061bbde8e89345da6461916fc70a4b2b50126ba25f553e15fa692bc22e92e"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048179",
|
|
"uuid": "8c70d678-a6ce-40f3-91f0-6f607cf17d29",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "7a882a94-ed65-43cb-9d5d-2799e6a91834",
|
|
"value": "2020-10-30T00:42:18+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "62d41416-6671-4a84-ac0f-354982fecde3",
|
|
"value": "https://www.virustotal.com/gui/file/1bc061bbde8e89345da6461916fc70a4b2b50126ba25f553e15fa692bc22e92e/detection/f-1bc061bbde8e89345da6461916fc70a4b2b50126ba25f553e15fa692bc22e92e-1604018538"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "334ec7ce-d085-42d9-b3a2-463b8d35a0ab",
|
|
"value": "59/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048179",
|
|
"uuid": "0405a5d7-db95-4327-95c0-b6a0a20542cf",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "0405a5d7-db95-4327-95c0-b6a0a20542cf",
|
|
"referenced_uuid": "484616fd-564a-41cc-ab11-b27601894e64",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "de60d76a-28f8-495a-abcf-5ea2915d53b8"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "cf4c7964-60f7-4e8e-adb4-670a375cf503",
|
|
"value": "f275ebb10010aa50fd9b5d8be10366ca"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "17f32a82-7e48-4ddf-a672-c34742f13080",
|
|
"value": "99ce61ec58ac62c53685ba7812f155ba19c3fdf9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "b9c8f640-7f1f-4bc9-a6b6-51f146164964",
|
|
"value": "7187ec55dcd998f3ee207a0733a162604c40dc6920ef47424bcbaaa1dba68da3"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048179",
|
|
"uuid": "484616fd-564a-41cc-ab11-b27601894e64",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "8d9aafbc-430e-4676-b1da-7da86e63d9f4",
|
|
"value": "2020-10-28T01:37:29+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "0c4fa807-9796-4683-9653-1196696686bd",
|
|
"value": "https://www.virustotal.com/gui/file/7187ec55dcd998f3ee207a0733a162604c40dc6920ef47424bcbaaa1dba68da3/detection/f-7187ec55dcd998f3ee207a0733a162604c40dc6920ef47424bcbaaa1dba68da3-1603849049"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "b8720b1e-ace1-4afd-ad3c-2145a53e1a13",
|
|
"value": "40/61"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048179",
|
|
"uuid": "3789b1a0-f5cd-4797-ac5e-3d0818ba37b7",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3789b1a0-f5cd-4797-ac5e-3d0818ba37b7",
|
|
"referenced_uuid": "5579c4b5-b230-43d8-9886-a6121ec0cb5b",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "72fdc952-9b0d-4b8c-8e7d-ee39646b1875"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "87089621-1102-4d07-a5ac-37c423cc65e5",
|
|
"value": "8092ab5e074ea60ac75415b29a2f7b10"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "3ab42239-a56a-4226-98c0-2ad20b305644",
|
|
"value": "6fc0e1fddd24a8fbe93b9b8773da8e25f83a3dd7"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4ab57b8a-e965-44be-9e64-8618f2079d9d",
|
|
"value": "75d9c67b853fb26ba28ae5dcfc0631fd9fc4addc69d579edfd98bbbbdb4d9187"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048179",
|
|
"uuid": "5579c4b5-b230-43d8-9886-a6121ec0cb5b",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "4d9f5757-b5ef-47cb-bc8e-941ceb7a7f4c",
|
|
"value": "2020-10-12T01:50:11+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "dba1d4a6-38a9-4326-ac9e-a45d8615739e",
|
|
"value": "https://www.virustotal.com/gui/file/75d9c67b853fb26ba28ae5dcfc0631fd9fc4addc69d579edfd98bbbbdb4d9187/detection/f-75d9c67b853fb26ba28ae5dcfc0631fd9fc4addc69d579edfd98bbbbdb4d9187-1602467411"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ff512360-0db7-4a1a-86d0-e81bac2f9236",
|
|
"value": "54/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048179",
|
|
"uuid": "fc290971-f01f-4a27-b43c-07cd460da553",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "fc290971-f01f-4a27-b43c-07cd460da553",
|
|
"referenced_uuid": "a32edaaa-09b9-4070-9659-6f65980fa8c7",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "65e8f7eb-1b97-47bb-8dde-00eb235e251c"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "99409364-c8f9-4cb2-b412-fb228e3ce7ac",
|
|
"value": "4dbb604a804c77945f58cffa488cb48f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "8c912ae1-3f4e-45c7-8f1a-33624bae8020",
|
|
"value": "0f5fbb9a2486fb5c0540e4d720e46035ca1fb9d8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7abd6421-0284-43f8-8200-d0afbd6c796e",
|
|
"value": "7b8f932ca62ecc8e0a071177075118ba4b050f785857925a3dac6835e230d602"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048179",
|
|
"uuid": "a32edaaa-09b9-4070-9659-6f65980fa8c7",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "bc8b5775-d4b3-4e5d-abdf-653fd5a30ee3",
|
|
"value": "2020-09-17T08:52:07+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "3f757992-acb4-461d-bb48-dbec83688016",
|
|
"value": "https://www.virustotal.com/gui/file/7b8f932ca62ecc8e0a071177075118ba4b050f785857925a3dac6835e230d602/detection/f-7b8f932ca62ecc8e0a071177075118ba4b050f785857925a3dac6835e230d602-1600332727"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "5bd42475-dc81-4b67-b345-7071cd5569ba",
|
|
"value": "38/66"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048179",
|
|
"uuid": "a3b413be-28f2-4493-a5ea-7ce2ddf052cf",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "a3b413be-28f2-4493-a5ea-7ce2ddf052cf",
|
|
"referenced_uuid": "d355ca07-12b1-4d4b-ae89-aedc781725c1",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "e116748c-0a86-45c0-8f1d-569adccd8f97"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "c66b7f23-9ec3-45a8-84a4-0f322cdb5b76",
|
|
"value": "1a0dfbd78d21316167f4a05f56e25e6f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "68bd61d6-e0df-4729-b1ef-eb48022df2e0",
|
|
"value": "e0e3bc73e13628ed2d01184beab13bee6b97676c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "90a60bcb-f776-4a52-ace0-52dd8b32c2a9",
|
|
"value": "b0a5775907994eea4adf0faa505b28160d22507c1690ca508820e26fb4ca3bca"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048179",
|
|
"uuid": "d355ca07-12b1-4d4b-ae89-aedc781725c1",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "bcaea4e3-b356-4de4-8fe6-022e9a11cab6",
|
|
"value": "2020-10-15T07:18:49+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "610efae1-2900-45ab-b7f2-31b44ca48a07",
|
|
"value": "https://www.virustotal.com/gui/file/b0a5775907994eea4adf0faa505b28160d22507c1690ca508820e26fb4ca3bca/detection/f-b0a5775907994eea4adf0faa505b28160d22507c1690ca508820e26fb4ca3bca-1602746329"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "10c04fc3-2e1b-451e-8c82-2ae23ad31a2b",
|
|
"value": "56/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048179",
|
|
"uuid": "df33d0fa-6d8d-438b-b826-144b187ece1c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "df33d0fa-6d8d-438b-b826-144b187ece1c",
|
|
"referenced_uuid": "74b71387-2317-4822-b0f2-01ad97f9047e",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "34f7c1e7-85c9-416a-a528-df72a4ba20e7"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "20777f5f-bc1f-491d-ad40-9d673394188b",
|
|
"value": "3bbf3184e8600a3b9748011100a0cb18"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "091c5fb2-939f-4cb6-ae43-2b1763b5a497",
|
|
"value": "783603cc5d3253097cfd798ca4c1e46057081560"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "0c4ed808-087d-4429-88e3-b272d6ab4565",
|
|
"value": "d22cfa87be0f204ae7da13897dfcd075c9f25414e1792762412e9ae61d0ce3f0"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048179",
|
|
"uuid": "74b71387-2317-4822-b0f2-01ad97f9047e",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "e656fe37-d9f3-4bbe-b2ec-824c6a68ae4d",
|
|
"value": "2020-10-29T17:29:14+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "493131a4-5905-4012-8319-235f3deedb97",
|
|
"value": "https://www.virustotal.com/gui/file/d22cfa87be0f204ae7da13897dfcd075c9f25414e1792762412e9ae61d0ce3f0/detection/f-d22cfa87be0f204ae7da13897dfcd075c9f25414e1792762412e9ae61d0ce3f0-1603992554"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "9197b145-401e-494f-8bd5-9f71ae716b9a",
|
|
"value": "19/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048179",
|
|
"uuid": "9af3492c-af01-4736-86e1-3430a33b492a",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "9af3492c-af01-4736-86e1-3430a33b492a",
|
|
"referenced_uuid": "3177bc73-b1ec-43db-bdde-4042d60c51cd",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "10acf498-4bdc-47ac-b1ab-0f52a0bdcb55"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "c355bac2-a03c-4fec-b4f9-e791c5730d5b",
|
|
"value": "98c0b1dff2cdaa3bce5af881241e35b1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "3d399a4b-405d-4517-a97b-0770f55ceb52",
|
|
"value": "c59602398e803780cfd9e2b533fcf3c3f415484b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "b1dadfe9-19f4-4490-91f1-ca18ab1abd04",
|
|
"value": "d931fe8da243e359e9e14f529eafe590b8c2dd1e76ca1ad833dd0f927648f88b"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048179",
|
|
"uuid": "3177bc73-b1ec-43db-bdde-4042d60c51cd",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "0bf69c02-13be-47f6-9a19-1bd781330a83",
|
|
"value": "2020-01-23T22:03:52+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "ac130e21-39a9-48fa-b20c-c5f2ce9c5e04",
|
|
"value": "https://www.virustotal.com/gui/file/d931fe8da243e359e9e14f529eafe590b8c2dd1e76ca1ad833dd0f927648f88b/detection/f-d931fe8da243e359e9e14f529eafe590b8c2dd1e76ca1ad833dd0f927648f88b-1579817032"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "b646dbfa-2d6b-4758-aff7-389a5a6df06d",
|
|
"value": "45/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048179",
|
|
"uuid": "eaac6baa-ed1f-4dbf-b0d6-438bf4ce64b5",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "eaac6baa-ed1f-4dbf-b0d6-438bf4ce64b5",
|
|
"referenced_uuid": "86b6ea9e-9699-4e6e-b2e4-5d289359ccc7",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "60fc77b5-41cb-442d-a30f-398e4bb44445"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "bea1f109-ea59-424f-aaa0-61fa940a486c",
|
|
"value": "3789bb16ff935931d9c78a69084b2296"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "ccc5c13f-8cc0-488f-aecc-499fb3b2adc7",
|
|
"value": "5024612d41766b59180521d5025a734a0be575b3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "fb04cf19-c4b6-4d10-b073-cd7041dd8ced",
|
|
"value": "b89742731932a116bd973e61628bbe4f5d7d92b53df3402e404f63003bac5104"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048180",
|
|
"uuid": "86b6ea9e-9699-4e6e-b2e4-5d289359ccc7",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "8225f9e6-80ac-4dbc-a20a-d93f6f53a53d",
|
|
"value": "2020-09-18T21:53:10+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "a80ec924-0d21-404f-9a89-c61fdc9c00fb",
|
|
"value": "https://www.virustotal.com/gui/file/b89742731932a116bd973e61628bbe4f5d7d92b53df3402e404f63003bac5104/detection/f-b89742731932a116bd973e61628bbe4f5d7d92b53df3402e404f63003bac5104-1600465990"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "6f9841bc-4765-48f5-89a1-7f88ebd01b7f",
|
|
"value": "45/65"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048180",
|
|
"uuid": "f3344dbd-f6a7-484d-a4d9-75fb5e9b9acf",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "f3344dbd-f6a7-484d-a4d9-75fb5e9b9acf",
|
|
"referenced_uuid": "f00111c5-411a-4b56-8240-726b65b12afb",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "d0519bb0-eba2-4643-ae3d-8c86e682a907"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "dc87c01f-d25a-40d7-a9f8-eac527c2232a",
|
|
"value": "60402b4ddfcd3b9a62554fb1a796d9e8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "b292078a-d801-4cad-9d4f-58d5d0ad00cd",
|
|
"value": "88eb5f98dda8899c93ac2b0c802d00e424fd4219"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "6374eb3e-ff91-4ab5-b166-14fd3cd7cd3c",
|
|
"value": "7bdaaf431bbf0880b0f1276042bd1adeb192d183795c30834b61e2335d279230"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048180",
|
|
"uuid": "f00111c5-411a-4b56-8240-726b65b12afb",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "24786b64-3b03-4258-afb0-eff0acf003ab",
|
|
"value": "2020-10-30T00:44:14+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "7cb7c92a-098f-4bca-9160-62c49fd95813",
|
|
"value": "https://www.virustotal.com/gui/file/7bdaaf431bbf0880b0f1276042bd1adeb192d183795c30834b61e2335d279230/detection/f-7bdaaf431bbf0880b0f1276042bd1adeb192d183795c30834b61e2335d279230-1604018654"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "d80934ea-038d-4ac3-8f6b-7b55f24250d4",
|
|
"value": "54/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048180",
|
|
"uuid": "29e91ca5-7461-4a16-b343-c0fb04e0ce3c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "29e91ca5-7461-4a16-b343-c0fb04e0ce3c",
|
|
"referenced_uuid": "58c39a24-6350-4af2-ab12-ad1a4af2e1db",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "0d057e14-e459-49e3-8864-ff2f2d976f2f"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "f3aa9f67-8db4-4637-9e33-2f82bb1b33b5",
|
|
"value": "90d07971e399187003e0b9bbd8bc11b2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "49a40109-ac25-47c0-a992-cdefc69ba9df",
|
|
"value": "a9e1573278794ecbc5ddf2c2bdbdff63ea2d0f4d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a201b948-d74b-4c3e-9f69-d1164835f9ff",
|
|
"value": "f9c6dca22e336cf71ce4be540905b34b5a63a7d02eb9bbd8a40fc83e37154c22"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048180",
|
|
"uuid": "58c39a24-6350-4af2-ab12-ad1a4af2e1db",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "ab8045de-b5de-46df-884b-2484c26f016f",
|
|
"value": "2020-08-26T20:40:33+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "f1777a00-b268-48da-ad64-166a073418a8",
|
|
"value": "https://www.virustotal.com/gui/file/f9c6dca22e336cf71ce4be540905b34b5a63a7d02eb9bbd8a40fc83e37154c22/detection/f-f9c6dca22e336cf71ce4be540905b34b5a63a7d02eb9bbd8a40fc83e37154c22-1598474433"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "5f2c6e0c-4760-4fea-b05b-79a3c7990e2a",
|
|
"value": "49/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048180",
|
|
"uuid": "12b3a3a2-6f5a-4654-b899-6a56b204da23",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "12b3a3a2-6f5a-4654-b899-6a56b204da23",
|
|
"referenced_uuid": "09e6d590-7b5e-405c-b4fc-55538d5ed355",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "6dce0020-ebe8-4e86-884d-0528972daf5d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "71f31f2e-915b-44fd-b0a6-489a54934aae",
|
|
"value": "2445fed3c3af5916c86cf068ba57652c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "62c832ca-ef64-45a1-9373-6adf5480b034",
|
|
"value": "15744a030426d5501cba747971a86d5039ba4d49"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "530bc31e-95c0-49f1-9d1e-6311312e2c09",
|
|
"value": "f9507a76801d5b1b83704a5019cdc312de18b004f16c5547b91b7dba086b2e29"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048180",
|
|
"uuid": "09e6d590-7b5e-405c-b4fc-55538d5ed355",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "479c277f-abc3-4252-bc8d-b9d376047860",
|
|
"value": "2020-04-06T18:32:38+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "32dfab4f-e186-4076-b564-86d1803fde2f",
|
|
"value": "https://www.virustotal.com/gui/file/f9507a76801d5b1b83704a5019cdc312de18b004f16c5547b91b7dba086b2e29/detection/f-f9507a76801d5b1b83704a5019cdc312de18b004f16c5547b91b7dba086b2e29-1586197958"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "4af6f9e4-4883-45a0-bd14-65ed01dfb23b",
|
|
"value": "49/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048180",
|
|
"uuid": "959930b1-e452-4086-8de7-f4eb2211867a",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "959930b1-e452-4086-8de7-f4eb2211867a",
|
|
"referenced_uuid": "075a0a66-ea46-4d51-93a6-8b806b4e06e4",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "708da5ee-d247-4461-911d-82202a0a0803"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "e950942c-7789-49b8-ad10-7a1042f3b422",
|
|
"value": "62660f7917629bdada5fae9be4866f7f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "5da70777-4adb-4c46-ad27-9e3038b212e1",
|
|
"value": "bbd1a374e7852a2f70369aac2d9eb7bacd4debe3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "cfefcf22-e38d-4323-8760-86aa777c9842",
|
|
"value": "8447befbf1643aae5219fc13354628f00c61683fb7b86bb0294a95b3eb62a344"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048180",
|
|
"uuid": "075a0a66-ea46-4d51-93a6-8b806b4e06e4",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "aea58c8e-290d-4d36-8362-0c897c806e49",
|
|
"value": "2020-10-30T00:44:28+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "e8eb206a-fdd3-4ca5-ad5b-8a926c45e01f",
|
|
"value": "https://www.virustotal.com/gui/file/8447befbf1643aae5219fc13354628f00c61683fb7b86bb0294a95b3eb62a344/detection/f-8447befbf1643aae5219fc13354628f00c61683fb7b86bb0294a95b3eb62a344-1604018668"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "a014f997-a5e4-4d54-a955-3f0741ca026f",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048180",
|
|
"uuid": "48526a88-0d80-4ddd-b72c-eff9063d9336",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "48526a88-0d80-4ddd-b72c-eff9063d9336",
|
|
"referenced_uuid": "9ce1ccb1-8ae7-4ac8-abb6-3d1526ae1fdb",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "a589f931-6828-468f-a929-fc049e4397ef"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "99403952-73da-46e9-856f-46cbbc87030e",
|
|
"value": "ba17a1fd0e350c77a58c88ae6aa28aaa"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "26933446-0e0a-4943-b3fb-2a6132493722",
|
|
"value": "1da3a7a84386aa4a278677bff97c5e23aa6bbd0a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "592a6e84-e8e5-4c73-a5bc-3081f03bda13",
|
|
"value": "2376a8da650c124b3d916765f82929b4109f20bc4f211a39a4d1cd4391780d1f"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048180",
|
|
"uuid": "9ce1ccb1-8ae7-4ac8-abb6-3d1526ae1fdb",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "6746d61b-402d-42eb-845a-ac0d606d9a07",
|
|
"value": "2020-10-27T14:40:07+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "7e3836dc-32bc-454a-aab4-e9f0325789ca",
|
|
"value": "https://www.virustotal.com/gui/file/2376a8da650c124b3d916765f82929b4109f20bc4f211a39a4d1cd4391780d1f/detection/f-2376a8da650c124b3d916765f82929b4109f20bc4f211a39a4d1cd4391780d1f-1603809607"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "516e8d41-087e-4293-a7ef-6f14e28f413d",
|
|
"value": "59/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048180",
|
|
"uuid": "4b8826a4-1cb6-4ce6-b5a7-2ea20fafcfb4",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "4b8826a4-1cb6-4ce6-b5a7-2ea20fafcfb4",
|
|
"referenced_uuid": "d3c98553-110e-4c61-a5e7-048641e3c170",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "1ada32ef-2063-4ea2-bb3c-20bcb8608692"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "35df8371-1d0c-4e8e-9a3a-f62b1ed2366e",
|
|
"value": "ed0f520d410a684c6d0548dbf4caea98"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "7a2837ea-3d37-4f97-863a-5ffc0c766c0f",
|
|
"value": "6381fc7e6d39549e0f7e65ac8151eeb6d70ecef9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "14a9cbe1-8e22-46c8-9084-af17fe653479",
|
|
"value": "093ac1213b112c7eb7c46000f04160af37339ce0d6fff514f0941f2b5ab48829"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048180",
|
|
"uuid": "d3c98553-110e-4c61-a5e7-048641e3c170",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "03aac0eb-30cf-4098-bea6-f8f9f5b4a567",
|
|
"value": "2020-10-30T00:41:57+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "636638d9-d98b-400e-982f-a7ad73a323f4",
|
|
"value": "https://www.virustotal.com/gui/file/093ac1213b112c7eb7c46000f04160af37339ce0d6fff514f0941f2b5ab48829/detection/f-093ac1213b112c7eb7c46000f04160af37339ce0d6fff514f0941f2b5ab48829-1604018517"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "2aa0152a-f9ba-4525-98b4-aa6e539d9bb6",
|
|
"value": "41/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048180",
|
|
"uuid": "34884b9e-28f3-4729-8ca3-8875cae378cb",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "34884b9e-28f3-4729-8ca3-8875cae378cb",
|
|
"referenced_uuid": "a309d336-b26a-445f-93f0-fce29cdc5fb3",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "f353647b-d976-4a0c-a86f-417d574073c7"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "3a1f48c7-9c58-4dc9-83b4-ba7f4126276c",
|
|
"value": "7e7023a81ca8f0d86211899ca85a5ba8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "781816f8-bf70-4bc6-b962-3f950649ebc6",
|
|
"value": "7269f7b584b54a106a32b6b0223690dbb1a24763"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "5856c167-94d9-4f7d-85f0-40e1a59f6aa7",
|
|
"value": "ae696adba9e93dbc97b2f0a0c13c962cd90e5b03943e68f06e6e1b8f8d6cbd00"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048180",
|
|
"uuid": "a309d336-b26a-445f-93f0-fce29cdc5fb3",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "347147bb-531a-41ec-b98b-baa592a28159",
|
|
"value": "2020-10-30T00:48:10+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "7a97011c-3a0f-40e6-b081-00c1c348f888",
|
|
"value": "https://www.virustotal.com/gui/file/ae696adba9e93dbc97b2f0a0c13c962cd90e5b03943e68f06e6e1b8f8d6cbd00/detection/f-ae696adba9e93dbc97b2f0a0c13c962cd90e5b03943e68f06e6e1b8f8d6cbd00-1604018890"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ebfa459e-87fb-4cfb-84c0-a07d1c4834cd",
|
|
"value": "57/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048180",
|
|
"uuid": "b61b3d4a-28e6-44ef-b1b2-a2b36a4eae64",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "b61b3d4a-28e6-44ef-b1b2-a2b36a4eae64",
|
|
"referenced_uuid": "0e1f1a26-a52d-4079-96b3-0db6699c2ac5",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "724102bb-5ae2-4426-bc54-85a46845b404"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "5e0639d0-cfdb-40cb-9469-dfaf5808dc0f",
|
|
"value": "1b86ed07525ddecddcb8aea6c9caada2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "fecf047e-b7d8-4a92-9675-fa2f0a24d3eb",
|
|
"value": "75148f9225000ad9114d3802122a6fbc1167d15f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "90555cca-66b5-48d5-a926-fa9e1ea8817c",
|
|
"value": "1925d5e283a220497385b4d8ca268665c729d1e029692e23431c327a8378fe23"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048180",
|
|
"uuid": "0e1f1a26-a52d-4079-96b3-0db6699c2ac5",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "ab66d988-c6d3-44b4-8959-61ef5b55dcd1",
|
|
"value": "2020-10-30T00:42:16+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "4bf3c1e2-a108-432a-92ec-927ad7f815ab",
|
|
"value": "https://www.virustotal.com/gui/file/1925d5e283a220497385b4d8ca268665c729d1e029692e23431c327a8378fe23/detection/f-1925d5e283a220497385b4d8ca268665c729d1e029692e23431c327a8378fe23-1604018536"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "4efdfd9f-23bb-4693-b1fd-adcaf9101e18",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048180",
|
|
"uuid": "1c0f1467-b600-477e-b547-2f3fab94e40c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "1c0f1467-b600-477e-b547-2f3fab94e40c",
|
|
"referenced_uuid": "493ee987-5bd4-4447-a109-50c6fdeeae8c",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "e939695d-52ea-4098-a7b9-2d08f4f5068d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "d5c4c4d1-bcbc-4a0b-853e-94fdb87ce6d3",
|
|
"value": "f1c35cf848d984785e9c0621958fe5ae"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "035ac0f4-acf8-40b2-a180-1e6e9562e441",
|
|
"value": "90b9229c12362b32b42fb66118bdf1adc597d2f0"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e4b83064-a6c3-4974-863b-9e8122b7e6f4",
|
|
"value": "609401cd35b4ede77bb717005bd2875f0a018442e194ec8af78595f185665f12"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048181",
|
|
"uuid": "493ee987-5bd4-4447-a109-50c6fdeeae8c",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "5a4e4203-ba41-4926-a806-11363e6e30ae",
|
|
"value": "2020-10-10T07:38:45+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "8dd099cc-a900-47bd-982e-9ab9e06fda5b",
|
|
"value": "https://www.virustotal.com/gui/file/609401cd35b4ede77bb717005bd2875f0a018442e194ec8af78595f185665f12/detection/f-609401cd35b4ede77bb717005bd2875f0a018442e194ec8af78595f185665f12-1602315525"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ca8d14bc-2d72-4db2-9324-810f56ba0c8e",
|
|
"value": "41/68"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048181",
|
|
"uuid": "8ebf900e-115e-4b27-b918-a07645b68a14",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "8ebf900e-115e-4b27-b918-a07645b68a14",
|
|
"referenced_uuid": "fb7fb320-1174-403e-b929-eb9db6eed7b3",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "7677f9c3-4528-4e6d-9cd7-bc182d37efcb"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "14c292ca-683e-41a6-94a4-5dc6cd62ed58",
|
|
"value": "12dddb2cdefb0a99005639511fc0ffd1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "01489207-006b-4a83-841e-523556085bd4",
|
|
"value": "3bbeafa82894becec6bd6c62f3e90c3c7e576184"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e7629779-438c-44a2-908b-476a247dc210",
|
|
"value": "10f0cb6dc3bb42145482fd3b353b11626283edd62b6a6a6b1505927d6d71a914"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048181",
|
|
"uuid": "fb7fb320-1174-403e-b929-eb9db6eed7b3",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "5030fe48-1c54-412e-8eec-06ca22c7901f",
|
|
"value": "2020-10-26T07:39:11+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "68241317-3fb8-4335-9abf-22b530128147",
|
|
"value": "https://www.virustotal.com/gui/file/10f0cb6dc3bb42145482fd3b353b11626283edd62b6a6a6b1505927d6d71a914/detection/f-10f0cb6dc3bb42145482fd3b353b11626283edd62b6a6a6b1505927d6d71a914-1603697951"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "65e3a43e-75aa-4408-ad00-1e4cd4719015",
|
|
"value": "52/61"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048181",
|
|
"uuid": "2a4282df-4e58-4422-bee3-ed2865b6b284",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "2a4282df-4e58-4422-bee3-ed2865b6b284",
|
|
"referenced_uuid": "7c97fc9c-4c09-4493-adf7-12e22ac2594a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "b825094a-94a1-4fc0-9ae1-5f96ccaf9a12"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "bf811daf-6117-4add-985f-57e95cba6c9e",
|
|
"value": "5b6fbbc6df37810784d79ac27774b8bd"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "2d369928-f89a-4b7a-a23f-a4538f096709",
|
|
"value": "0d4e5242c96844fd39b13093f14f9a34368d4f03"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ec3718c6-1bae-4313-ba46-e44ddc3ccac9",
|
|
"value": "032a087b0f7c722a64bbced9612e84bb0a7f1872a8b94406ca49827d56aa466d"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048181",
|
|
"uuid": "7c97fc9c-4c09-4493-adf7-12e22ac2594a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "d0863e5b-bd32-45ae-8705-3a9908072cef",
|
|
"value": "2020-08-17T21:56:22+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "88879f13-0bb7-47ae-9564-c64712ab0b44",
|
|
"value": "https://www.virustotal.com/gui/file/032a087b0f7c722a64bbced9612e84bb0a7f1872a8b94406ca49827d56aa466d/detection/f-032a087b0f7c722a64bbced9612e84bb0a7f1872a8b94406ca49827d56aa466d-1597701382"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "c047a1ec-ca16-4d5d-be0b-1d4e73017fe8",
|
|
"value": "44/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048181",
|
|
"uuid": "7d7d4a70-ee4c-43b8-aa5d-42b62e4aa777",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "7d7d4a70-ee4c-43b8-aa5d-42b62e4aa777",
|
|
"referenced_uuid": "2e02e67e-0651-4277-94da-242d2e623fa6",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "3cc46ced-e740-44bd-97a3-8614e61a1b63"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "d80be696-7e91-4e92-a0c2-2098dc0a3675",
|
|
"value": "0df5fb7e8015daeec8944c9681676eae"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "b6f186b3-2319-49d1-b271-782ec326f733",
|
|
"value": "f3da880ebb254f5f191f2e546eec8c5518fa991b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "1251e156-e91c-432e-86c5-f064beb02070",
|
|
"value": "52951e174db7986b334417d5641b06a80464c9665bf82393857fa6700beef006"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048181",
|
|
"uuid": "2e02e67e-0651-4277-94da-242d2e623fa6",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "22d07f65-3594-480c-a396-a2491a9bc243",
|
|
"value": "2020-10-29T03:27:59+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "7164e6c6-60a3-4cb2-b89a-5186f1fb025b",
|
|
"value": "https://www.virustotal.com/gui/file/52951e174db7986b334417d5641b06a80464c9665bf82393857fa6700beef006/detection/f-52951e174db7986b334417d5641b06a80464c9665bf82393857fa6700beef006-1603942079"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "27e8c5df-c886-40e2-8880-a86283a3fc13",
|
|
"value": "38/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048181",
|
|
"uuid": "c57ba634-6efb-408a-8c09-2a0e293ca19f",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "c57ba634-6efb-408a-8c09-2a0e293ca19f",
|
|
"referenced_uuid": "3df16408-ad08-4c07-b8ed-013fb5e5776a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "3ee932d8-9f4b-4dfb-85b3-c995ebf9a799"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "74b6a112-2e74-4fa4-aaba-72584dfafe0e",
|
|
"value": "f0a7c2c089f2b1ebdd488e4bda4ac1cf"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "294496a8-9923-490b-b41d-61c98bf35956",
|
|
"value": "2d763482008bcfa1f0476049029fef017c58192f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e3e3eab2-c558-48ff-b35f-edae97116bd9",
|
|
"value": "8e421c6145b4ee499c747c7544d16f331d0bfd282b40efddcf66d8eb3fbf51cd"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048181",
|
|
"uuid": "3df16408-ad08-4c07-b8ed-013fb5e5776a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "afd1d726-9cd1-4dd5-a18e-5f189e80ae63",
|
|
"value": "2020-10-30T00:47:34+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "8780e61e-0ed8-43c8-9ba1-fb4bba225b78",
|
|
"value": "https://www.virustotal.com/gui/file/8e421c6145b4ee499c747c7544d16f331d0bfd282b40efddcf66d8eb3fbf51cd/detection/f-8e421c6145b4ee499c747c7544d16f331d0bfd282b40efddcf66d8eb3fbf51cd-1604018854"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "8bf05649-5f13-4541-a51d-1e5e8ebb694b",
|
|
"value": "58/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048181",
|
|
"uuid": "38d1cb99-e855-4370-a0a8-e182a278c949",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "38d1cb99-e855-4370-a0a8-e182a278c949",
|
|
"referenced_uuid": "3f5d58f8-14e3-4c42-a101-615cd46b331e",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "74c101a4-4f9b-4170-ac7b-7940b5af018c"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "96d3b3fa-5799-4598-a6ed-9846901d590f",
|
|
"value": "27b341fa2aa731335273204cb112a414"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e1e6934b-1c77-457b-ba77-db7e2b986cfd",
|
|
"value": "3ba6ebc1ceca4a37fd13ac4875f2afddb046151c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7a90dc4b-0313-41fc-a9cd-5a67bdb4f31b",
|
|
"value": "2facd367c1299ef200934cfd06279f177f9e3145164e4bd595e2b94a403a1b02"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048181",
|
|
"uuid": "3f5d58f8-14e3-4c42-a101-615cd46b331e",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "620b9489-b831-4d11-9d0e-3ab96a435eb6",
|
|
"value": "2020-10-30T00:42:54+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "b9be9685-9639-4ba3-9e9a-82f84b3556b8",
|
|
"value": "https://www.virustotal.com/gui/file/2facd367c1299ef200934cfd06279f177f9e3145164e4bd595e2b94a403a1b02/detection/f-2facd367c1299ef200934cfd06279f177f9e3145164e4bd595e2b94a403a1b02-1604018574"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "6ccc5a58-15da-4d8c-98ab-be569022477e",
|
|
"value": "55/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048181",
|
|
"uuid": "255c13ee-0a73-4ee2-8a83-faa9dd470949",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "255c13ee-0a73-4ee2-8a83-faa9dd470949",
|
|
"referenced_uuid": "55e00e7a-0bd7-454a-a2ea-89b3f6657ffc",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "ddbba2ce-dbe6-4002-b361-b7680715cf6d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "a4adf8a6-dad3-45c7-8f0b-c621feb57f0f",
|
|
"value": "9e7167948aa758165ce8cfe9c18ff599"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "87ab72fb-5ad4-4cf1-81d7-e7de6f8ba5e4",
|
|
"value": "e1ada7d696ec814d5b4f6705155853df17fded08"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f7f27217-f04f-4b39-ac57-988e018901c3",
|
|
"value": "328456cc7c585d290ba0543f6183afb0f8e31a1cfd24019644ea6471129bad9d"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048181",
|
|
"uuid": "55e00e7a-0bd7-454a-a2ea-89b3f6657ffc",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "66b6a92d-d119-4db8-b1e4-5dc3c07a4471",
|
|
"value": "2020-10-12T15:12:41+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "8e9f077f-d39d-45ff-9ed0-2475a8c234e7",
|
|
"value": "https://www.virustotal.com/gui/file/328456cc7c585d290ba0543f6183afb0f8e31a1cfd24019644ea6471129bad9d/detection/f-328456cc7c585d290ba0543f6183afb0f8e31a1cfd24019644ea6471129bad9d-1602515561"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "35dd3925-d59c-4cce-9177-8917d2cfea5b",
|
|
"value": "56/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048181",
|
|
"uuid": "1e2f2b4a-6d4c-4a60-84ff-7ea3d7593836",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "1e2f2b4a-6d4c-4a60-84ff-7ea3d7593836",
|
|
"referenced_uuid": "7ab00ac0-8a31-4970-a44a-af22ef8267dc",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "5a3c8235-5c98-4073-86f7-bb6842ea15d2"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "e4eba0a9-242e-41c1-8baf-e98e0da37864",
|
|
"value": "1ec098f0eae243d12a2f04e7a96b59e5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "b80a399d-5b1a-4eb6-add1-ddadcc37fde3",
|
|
"value": "e058f8c7ae04b5a339ebd89922b10f803cb82877"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "dd1913ea-0876-4ada-bc42-38159f07faca",
|
|
"value": "3c484486d455b4c13e8fbbf612b4ab3c4cfc519dd5a81c2478a7e4ab9c08e83a"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048181",
|
|
"uuid": "7ab00ac0-8a31-4970-a44a-af22ef8267dc",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "6f3e7988-85e6-4fe1-9111-410bb54666e5",
|
|
"value": "2020-10-16T10:02:23+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "e0bad524-2e44-4d13-a047-f3bd2fbcd011",
|
|
"value": "https://www.virustotal.com/gui/file/3c484486d455b4c13e8fbbf612b4ab3c4cfc519dd5a81c2478a7e4ab9c08e83a/detection/f-3c484486d455b4c13e8fbbf612b4ab3c4cfc519dd5a81c2478a7e4ab9c08e83a-1602842543"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "a8f45bb3-bee9-4207-b9cf-1db176792d09",
|
|
"value": "57/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048181",
|
|
"uuid": "9dab14e9-110e-4e3c-b6ef-077e8b271b1c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "9dab14e9-110e-4e3c-b6ef-077e8b271b1c",
|
|
"referenced_uuid": "a0ef52a5-9179-4e7d-8599-c91ce3cbc3ed",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "e4f9cdbc-8937-4dbe-b352-740b58abb3d9"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "9f600704-75ca-4c14-8a0a-93b544ad91af",
|
|
"value": "19cd00f27ac3aa90ca7262df46bbdaea"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "5ef828aa-6868-4288-af2c-87755debc3e5",
|
|
"value": "4b031da0ee0881b1becce11c195a42302180b7b6"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "1304a4ca-1d36-41af-9375-88e9c68329c4",
|
|
"value": "d8ab0c6982ea7674ed4e53e4bfc7234a56b018090819b79f67a9cc6034fc98e2"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048181",
|
|
"uuid": "a0ef52a5-9179-4e7d-8599-c91ce3cbc3ed",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "1035e5bb-7169-486b-850e-238cf4db7c7e",
|
|
"value": "2020-10-30T00:49:12+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "3b2653ef-ee25-4341-9da4-1e3cb3358ee3",
|
|
"value": "https://www.virustotal.com/gui/file/d8ab0c6982ea7674ed4e53e4bfc7234a56b018090819b79f67a9cc6034fc98e2/detection/f-d8ab0c6982ea7674ed4e53e4bfc7234a56b018090819b79f67a9cc6034fc98e2-1604018952"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "479af389-c6a9-44ee-90e6-eb8ac544a7fc",
|
|
"value": "37/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048181",
|
|
"uuid": "de2c6a1f-b0fd-4c3a-8046-6e259ecd7e33",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "de2c6a1f-b0fd-4c3a-8046-6e259ecd7e33",
|
|
"referenced_uuid": "5a11630a-39c6-4a6e-aacf-d681532964d8",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "5b27cfa9-13e1-4cf0-8bec-8181ead5913b"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "332ea55c-8fbb-44b7-9a2f-7c8055e16160",
|
|
"value": "86040cffd0975f75db6e7858f26d6d5f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "f16943cb-d46e-4b43-9975-052d9a708f4f",
|
|
"value": "5bc86b78c0d1647aa4c8a96459962ff106904e64"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e2b0016e-e91f-414c-bb5c-dc87f307e5f6",
|
|
"value": "f7a66c1ed76f696c0d3d3d5c49e88b6cebf35ff232c5094d3284f7fe484a90a3"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048182",
|
|
"uuid": "5a11630a-39c6-4a6e-aacf-d681532964d8",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "8108a425-6f20-4552-a04c-8c72f72a04ae",
|
|
"value": "2020-10-30T00:49:54+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "b8d92b9b-cbb6-4d05-92a0-ec75c8c6b6e3",
|
|
"value": "https://www.virustotal.com/gui/file/f7a66c1ed76f696c0d3d3d5c49e88b6cebf35ff232c5094d3284f7fe484a90a3/detection/f-f7a66c1ed76f696c0d3d3d5c49e88b6cebf35ff232c5094d3284f7fe484a90a3-1604018994"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "09abd071-c37e-4e3b-a0cd-f99e5ad11e71",
|
|
"value": "61/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048182",
|
|
"uuid": "c27ef6ef-3a71-4749-8719-49947bb36071",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "c27ef6ef-3a71-4749-8719-49947bb36071",
|
|
"referenced_uuid": "f9421198-639e-495d-97f0-7db5082ce37d",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "dc189201-6c71-4623-9394-a2b6dbc97d1d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "2436315d-3f56-42bd-8b3e-efa510efd564",
|
|
"value": "2a88499580bd343dc6c80838da65c6e8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "a4ea23bc-93e3-4571-ae02-ee4663cd5d88",
|
|
"value": "080aa5303322451844b557f7fbf8a09817cea74b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "34f96d66-d82a-42f0-9d07-940d7675a832",
|
|
"value": "32839e342815cda42bef871d999d76db91dd465972a2b39d4e29fb367a57cfd5"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048182",
|
|
"uuid": "f9421198-639e-495d-97f0-7db5082ce37d",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "f2595b3c-4e34-4705-a06c-647912574ca0",
|
|
"value": "2020-10-30T00:43:01+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "61be0c4d-c2fe-4192-83af-8163d1ef3b82",
|
|
"value": "https://www.virustotal.com/gui/file/32839e342815cda42bef871d999d76db91dd465972a2b39d4e29fb367a57cfd5/detection/f-32839e342815cda42bef871d999d76db91dd465972a2b39d4e29fb367a57cfd5-1604018581"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "26c6f5b7-231e-464c-a6c0-1a2e2539b342",
|
|
"value": "58/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048182",
|
|
"uuid": "ba8d598d-5a7d-410c-9c54-b214aa1962f9",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "ba8d598d-5a7d-410c-9c54-b214aa1962f9",
|
|
"referenced_uuid": "b2f94bd9-50fd-45f2-acc4-46affe62f4f0",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "ea728ea9-91ed-46e8-a1d7-8306af25e3c6"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "0e50798a-bc25-41aa-b864-156b8a14fd7a",
|
|
"value": "260b0e17e42ad6ba1450f5015098acb8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "bcb8c86d-47dd-40df-a397-bc31fd26bb19",
|
|
"value": "32932285a7d8107f2e86e3ea2508ea06b1c039d8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "bc09271e-67c5-46c8-8502-ffb610ce903b",
|
|
"value": "01ad70e688a4eb070e90538728de699efbaa6bbfeaa728976053384587e45d18"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048182",
|
|
"uuid": "b2f94bd9-50fd-45f2-acc4-46affe62f4f0",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "b32001a7-a69c-4fbc-870c-94e153440a6e",
|
|
"value": "2020-10-30T00:41:44+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "431c61d2-81f7-4a85-8cd6-0e9646df7517",
|
|
"value": "https://www.virustotal.com/gui/file/01ad70e688a4eb070e90538728de699efbaa6bbfeaa728976053384587e45d18/detection/f-01ad70e688a4eb070e90538728de699efbaa6bbfeaa728976053384587e45d18-1604018504"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "171dad40-a8fe-4098-a143-ab21de9c3990",
|
|
"value": "60/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048182",
|
|
"uuid": "b3350403-f5e2-45ef-b079-da4b4a602c6a",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "b3350403-f5e2-45ef-b079-da4b4a602c6a",
|
|
"referenced_uuid": "a1b404d6-436d-4d0a-b71d-6513a816eae6",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "8a8b3d6c-0e7c-4455-ae6d-4eefca179b3b"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "72fa2c97-123b-48d9-8cd5-844655a3b1df",
|
|
"value": "e6198019719a09f18f796c3961ae75f3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "d15e3b5a-b2fb-4edd-8cb8-c814998bbc9d",
|
|
"value": "7ca8c0dde315c6a6c21d7ddc9186b6c522e889d9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "15e96e1b-e142-4732-9bc1-8262c655031d",
|
|
"value": "5929962b379c56626a04052bc8e983732b807c34fab6c1ac420d73a8fff9e9a6"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048182",
|
|
"uuid": "a1b404d6-436d-4d0a-b71d-6513a816eae6",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "51c3eb25-edbc-4637-b95a-4dcc90360b51",
|
|
"value": "2020-04-06T18:32:13+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "fb1e69a5-ada8-47ab-b157-fc682fbfc5d2",
|
|
"value": "https://www.virustotal.com/gui/file/5929962b379c56626a04052bc8e983732b807c34fab6c1ac420d73a8fff9e9a6/detection/f-5929962b379c56626a04052bc8e983732b807c34fab6c1ac420d73a8fff9e9a6-1586197933"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "cbd191b7-bdc0-40fe-b506-162d54b5dc47",
|
|
"value": "9/73"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048182",
|
|
"uuid": "bd1a17c8-d750-4cb6-9d25-2be9e7d6768e",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "bd1a17c8-d750-4cb6-9d25-2be9e7d6768e",
|
|
"referenced_uuid": "ff1e3b2c-f241-4015-ad25-70421a2bc582",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "83b8144f-95c9-43d6-b724-8a5f12578d02"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "5b8156d6-ff15-4626-9690-c1abd6866f5a",
|
|
"value": "1f46d93baf23dec9d0073c807f1d3c5e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "4de5dc5d-883d-4661-83b1-671ab3f331d3",
|
|
"value": "5379ccc7ce7be52bed4e6ec6e7d7ba0a14a37e2f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "413ff6ae-9601-4aef-801e-aeb60e7d4a59",
|
|
"value": "728a8ea36c4dcaa030c2a8674bd4b65eb636253435c5d43e74d8a176a92f7679"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048182",
|
|
"uuid": "ff1e3b2c-f241-4015-ad25-70421a2bc582",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "2a9e5c34-1d46-4203-bb25-1a3b0300f42d",
|
|
"value": "2020-10-04T14:46:47+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "47b43808-3455-48a9-a824-3ecd1dd30da7",
|
|
"value": "https://www.virustotal.com/gui/file/728a8ea36c4dcaa030c2a8674bd4b65eb636253435c5d43e74d8a176a92f7679/detection/f-728a8ea36c4dcaa030c2a8674bd4b65eb636253435c5d43e74d8a176a92f7679-1601822807"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ce708eed-04bb-4f36-a560-604d5ec66d6f",
|
|
"value": "55/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048182",
|
|
"uuid": "0a8550e5-8efd-4a4f-b363-3dca1c72adf9",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "0a8550e5-8efd-4a4f-b363-3dca1c72adf9",
|
|
"referenced_uuid": "035e778c-2641-4fce-8b5f-2125d049695e",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "7d465c2e-a928-420d-bf77-b8bc0c63787f"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "f3a71be1-9249-4e1d-8e70-1da5f6fdefb0",
|
|
"value": "f781f40b79b30368ec4b5d0843cd6ead"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "3cfeceb4-129e-4034-8f9a-5c7b77ffadf3",
|
|
"value": "cf53647fd09eb0c07a6dc767b3cfabc9b5b1560d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f7f358d2-de8f-4359-956c-5c753e54d2bd",
|
|
"value": "a14e3907f7a12b56bb67b178c722d92d2ee64fb0514daadd902683c799bfdc94"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048182",
|
|
"uuid": "035e778c-2641-4fce-8b5f-2125d049695e",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "8fe76e6a-479e-4d07-8c33-aa550e13ed03",
|
|
"value": "2020-10-30T00:48:03+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "990a3271-6bfc-4d3e-bf52-2daa96114a1a",
|
|
"value": "https://www.virustotal.com/gui/file/a14e3907f7a12b56bb67b178c722d92d2ee64fb0514daadd902683c799bfdc94/detection/f-a14e3907f7a12b56bb67b178c722d92d2ee64fb0514daadd902683c799bfdc94-1604018883"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "a82ff796-45e7-4556-8457-8f4e375c13ac",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048182",
|
|
"uuid": "c25b971a-bcba-4e8c-bfaf-0b5e6d94b9fb",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "c25b971a-bcba-4e8c-bfaf-0b5e6d94b9fb",
|
|
"referenced_uuid": "d20df19b-04e9-40d8-a031-3e91fa73ce1d",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "a80eaa55-4e5f-4094-9c00-0019a820e55d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "4bb78d31-f9f3-449f-b030-dab5bc1dfe3c",
|
|
"value": "58294f59bdfb4a9394c3274de512f696"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "326b8f92-7ac1-40a3-954a-6fc6ced49e54",
|
|
"value": "60d339f31e464596162f3fa5344b039a96aa439e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "2307ccc6-ce90-40b6-af4d-e85b613bce65",
|
|
"value": "b1798973f8dfce5777905452271f3b3ff23fb2148978ba2943654a72fe5b6387"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048182",
|
|
"uuid": "d20df19b-04e9-40d8-a031-3e91fa73ce1d",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "9e9344f6-9f27-4982-83c4-5c0c5f5f55ce",
|
|
"value": "2020-10-18T00:09:30+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "eb67fde1-abeb-4334-bfa2-15ea9fa0e14a",
|
|
"value": "https://www.virustotal.com/gui/file/b1798973f8dfce5777905452271f3b3ff23fb2148978ba2943654a72fe5b6387/detection/f-b1798973f8dfce5777905452271f3b3ff23fb2148978ba2943654a72fe5b6387-1602979770"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "f07ccbdc-20fc-4a36-9a13-794f60262508",
|
|
"value": "56/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048182",
|
|
"uuid": "ec94d76e-bd10-4c4e-80e7-1dca0cfdbf6c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "ec94d76e-bd10-4c4e-80e7-1dca0cfdbf6c",
|
|
"referenced_uuid": "bb2c2496-37da-47ac-b78b-c312d9b49cff",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "168b2997-7866-4603-a28f-efc818440a14"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "354ed33b-52a4-4790-a177-212fb1cdec88",
|
|
"value": "b1d1f8084148e7e221b051af4025b3db"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e2f8d1b6-3f9b-4abf-96fe-23f3d72a6452",
|
|
"value": "6d86ce151e0eec88f0921c74dfa702dc9cde0d61"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ce6c861e-09b2-46ec-813b-19943dd108b9",
|
|
"value": "6f55f3b1415b5bf9dda57158f05fe628edb92b436887ad72f3d4bd108e8542d2"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048182",
|
|
"uuid": "bb2c2496-37da-47ac-b78b-c312d9b49cff",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "5774be8a-ecb9-401e-bb83-f17844d2236d",
|
|
"value": "2020-04-06T18:32:34+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "0fb5a137-44fc-4bc8-b481-57fc82db24f3",
|
|
"value": "https://www.virustotal.com/gui/file/6f55f3b1415b5bf9dda57158f05fe628edb92b436887ad72f3d4bd108e8542d2/detection/f-6f55f3b1415b5bf9dda57158f05fe628edb92b436887ad72f3d4bd108e8542d2-1586197954"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "aec1d767-7603-4972-aad0-580b211e8ce9",
|
|
"value": "46/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048182",
|
|
"uuid": "bd495716-d98e-47e4-9809-d662914add7a",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "bd495716-d98e-47e4-9809-d662914add7a",
|
|
"referenced_uuid": "a4e3943d-0dde-454f-a5da-bfb3cfff5774",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "52e28a5c-2a0e-42b0-8b32-a9cfce7b3aa6"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "d7449856-ca5c-4ba9-8201-0eeb92a508c9",
|
|
"value": "46693e0208c7bacac357ec9a2d0e84f7"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "84b357d2-fbc1-4974-8504-b0d8a031dcf3",
|
|
"value": "36ea5100df30506ba8972bf2782772ffa19f2224"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ef23b91a-cb0b-4486-8020-1ece203d8e47",
|
|
"value": "fb780f623a78c9b5aa8a279430731b84d0efe937ea5684f80182e4f896e8e288"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048182",
|
|
"uuid": "a4e3943d-0dde-454f-a5da-bfb3cfff5774",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "36d75910-e618-432d-a6d6-0bd8d03f683a",
|
|
"value": "2020-10-30T00:50:04+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "c745c37a-6eb9-44c1-8e8e-2bc05b2f7284",
|
|
"value": "https://www.virustotal.com/gui/file/fb780f623a78c9b5aa8a279430731b84d0efe937ea5684f80182e4f896e8e288/detection/f-fb780f623a78c9b5aa8a279430731b84d0efe937ea5684f80182e4f896e8e288-1604019004"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ac9287f3-d87a-463e-90a0-36d69b737c48",
|
|
"value": "38/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048182",
|
|
"uuid": "844f6bfd-26af-4c70-b0fb-96bcfc467213",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "844f6bfd-26af-4c70-b0fb-96bcfc467213",
|
|
"referenced_uuid": "20b5b91c-4222-4eb4-bcb0-1d2b5d65c5af",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "dad7af8d-1b44-474e-8e98-b262809b6eee"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "42668b6c-b256-47ed-8b3a-d28c5647083e",
|
|
"value": "bab955353674b0ffef7623a68387200e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "9560e1c0-e0f8-4a7e-8f04-2aaf4111eece",
|
|
"value": "6477c1ccaa683f688d20aa8ebe3f28091d79b0be"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f20d4dde-4c4a-4005-9df3-5c14838b9965",
|
|
"value": "395173829ff0e957a2d8abbb3c979f470701cd3fd381e7af23b13e7573cca5c1"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048183",
|
|
"uuid": "20b5b91c-4222-4eb4-bcb0-1d2b5d65c5af",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "8ac26dab-bdde-46ee-b2b6-91fcec241063",
|
|
"value": "2020-09-05T19:59:18+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "850fc869-f101-4fda-9a36-c4a1185939c6",
|
|
"value": "https://www.virustotal.com/gui/file/395173829ff0e957a2d8abbb3c979f470701cd3fd381e7af23b13e7573cca5c1/detection/f-395173829ff0e957a2d8abbb3c979f470701cd3fd381e7af23b13e7573cca5c1-1599335958"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "f7400d8d-99b5-4692-8d76-a85f22c4878a",
|
|
"value": "41/67"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048183",
|
|
"uuid": "9e938956-b84c-4ad6-b6e9-c76e7c257f19",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "9e938956-b84c-4ad6-b6e9-c76e7c257f19",
|
|
"referenced_uuid": "6bdce9b4-2073-493d-affe-89faec431d92",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "f3441ece-4110-49b5-abe0-8bf23d65a85c"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "12835cbc-3aff-4e2f-af59-dedb9f763202",
|
|
"value": "c0e8cf34dbf59accd38c0a52013f0a75"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "5ea4ff17-4337-4ded-aeef-c052f55ba4cd",
|
|
"value": "a14f8110b2efe79f829783b23d4eedcc9885dab2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "49112f70-550d-4488-a80a-62cd746e76ba",
|
|
"value": "65783de1310a32a96a2f2ca60093be27ddb32562f91104d7886fac7479ad8afe"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048183",
|
|
"uuid": "6bdce9b4-2073-493d-affe-89faec431d92",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "f44d9b4f-db48-43d2-8732-5c2ae798ad5e",
|
|
"value": "2020-10-28T11:48:29+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "60ede7f5-c509-4541-91da-8935936577e1",
|
|
"value": "https://www.virustotal.com/gui/file/65783de1310a32a96a2f2ca60093be27ddb32562f91104d7886fac7479ad8afe/detection/f-65783de1310a32a96a2f2ca60093be27ddb32562f91104d7886fac7479ad8afe-1603885709"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "5de803b1-5cbd-449b-b87a-b94b5aad5fd5",
|
|
"value": "3/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048183",
|
|
"uuid": "1b4abf9b-20e1-4991-9a0f-fa6d85844664",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "1b4abf9b-20e1-4991-9a0f-fa6d85844664",
|
|
"referenced_uuid": "707daa2e-319e-4217-9e9e-66961f0944f4",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "ec74c381-3671-456a-b7b8-b831f5357cfb"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "9954681b-411d-4586-bbae-ac0e42daf39e",
|
|
"value": "f9b5c8c713dba6084afeaee620a368a9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "28293d93-2800-4ab0-a843-415ae4a2f9fb",
|
|
"value": "7d9829da68093e9e360ef6b03968dda0154536d5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "5fb4faee-0549-410d-9811-a24c47179150",
|
|
"value": "b1232c4080121ac93b5c6f3982f79ee1ed4238d568cefd6eb88e7dfb072f0db8"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048183",
|
|
"uuid": "707daa2e-319e-4217-9e9e-66961f0944f4",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "84694253-5d5c-4b8a-8ffb-cfd9c1b73432",
|
|
"value": "2020-10-30T00:48:18+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "2feac803-b896-42dc-aab7-9978ab3ecf02",
|
|
"value": "https://www.virustotal.com/gui/file/b1232c4080121ac93b5c6f3982f79ee1ed4238d568cefd6eb88e7dfb072f0db8/detection/f-b1232c4080121ac93b5c6f3982f79ee1ed4238d568cefd6eb88e7dfb072f0db8-1604018898"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "4e59cc78-18ac-4268-b295-422aca73066d",
|
|
"value": "57/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048183",
|
|
"uuid": "3bff3fad-617f-469b-ab76-31ef8d37182f",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3bff3fad-617f-469b-ab76-31ef8d37182f",
|
|
"referenced_uuid": "84d87567-a187-4d13-8e8e-fe4968ec7317",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "6af26bd3-0732-42e5-9cf6-e7ab67ec24dd"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "594d3720-6de7-4556-a76b-a9e563c997a1",
|
|
"value": "e6f992fb82bd0571cf0b6138bd69c75f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "1872ad0f-ffc4-48df-8064-fe50b9ff3140",
|
|
"value": "c949f1a58bf36a4bf9f7765adcb21d95b24866f4"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "911a6ded-c897-4bc7-9cdc-259813e38168",
|
|
"value": "bc84fa150decef8b33811a646be2fe517f2550bfa03036b8766ff338c3d37df1"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048183",
|
|
"uuid": "84d87567-a187-4d13-8e8e-fe4968ec7317",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "904b3389-b0bc-47d6-a795-5bfe127744de",
|
|
"value": "2020-10-11T05:07:26+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "fd941260-a69c-4007-9fb6-f2fe1dee1215",
|
|
"value": "https://www.virustotal.com/gui/file/bc84fa150decef8b33811a646be2fe517f2550bfa03036b8766ff338c3d37df1/detection/f-bc84fa150decef8b33811a646be2fe517f2550bfa03036b8766ff338c3d37df1-1602392846"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "92d27996-67bb-427c-b220-bd60e1fb829e",
|
|
"value": "53/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048183",
|
|
"uuid": "299df689-5b87-4dfd-ace4-1a5fe47cf0ef",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "299df689-5b87-4dfd-ace4-1a5fe47cf0ef",
|
|
"referenced_uuid": "f0944434-11e8-4a3f-9db9-3712f278b0bd",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "cc20c053-d156-42de-9116-0a2cdc676139"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "dd873969-1568-495a-98ad-246c89c442bf",
|
|
"value": "07b60dab4a98ea59d6dfe957fe6edae9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "68d6cfdb-ef7c-4812-903f-e3d28b7fef42",
|
|
"value": "fd9cfed79b0ed7e0f065dc6467b2960491001253"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c247906b-6675-4500-b2cd-37a13402971d",
|
|
"value": "04a4a9ff0af9fde923fb8203c89be6a57a3c42a517c9d9a047fb7d4b20e24a9f"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048183",
|
|
"uuid": "f0944434-11e8-4a3f-9db9-3712f278b0bd",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "6fe0cf5e-691c-46fe-9d18-86a4436eba26",
|
|
"value": "2020-03-27T09:42:55+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "b79021e0-7f2d-4253-b8b3-99be799ec34b",
|
|
"value": "https://www.virustotal.com/gui/file/04a4a9ff0af9fde923fb8203c89be6a57a3c42a517c9d9a047fb7d4b20e24a9f/detection/f-04a4a9ff0af9fde923fb8203c89be6a57a3c42a517c9d9a047fb7d4b20e24a9f-1585302175"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "2e5bbc97-3aae-4b1d-8291-83c432ffd47b",
|
|
"value": "41/73"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048183",
|
|
"uuid": "45436868-f318-44a7-80ef-cfc59e1b067a",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "45436868-f318-44a7-80ef-cfc59e1b067a",
|
|
"referenced_uuid": "fa571e37-157d-47a7-b2df-e512c796d8d0",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "992ee040-e9d4-4994-9632-393d30ac7c52"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "c3637245-6331-4a15-be4b-33d10f1203f3",
|
|
"value": "764bbc3d05a05ecd95653167592565fe"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "16ba26ea-d38b-4044-bd58-069536b63d2c",
|
|
"value": "4ceaa331b99619c92e751d7cd38ba46d7e9a892e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "fb198ecd-e134-4f20-a25f-9eec9eba04a0",
|
|
"value": "22caa1e9f4b2e88b7bcd633e4e12104f4d3556c05fc4db1ee6b620a9d5fa6213"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048183",
|
|
"uuid": "fa571e37-157d-47a7-b2df-e512c796d8d0",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "35aa1d43-0de4-42f1-a3e2-bf27134193c2",
|
|
"value": "2020-10-29T02:20:09+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "1b9dc1a5-4c2f-4253-9343-0d652a0da2c8",
|
|
"value": "https://www.virustotal.com/gui/file/22caa1e9f4b2e88b7bcd633e4e12104f4d3556c05fc4db1ee6b620a9d5fa6213/detection/f-22caa1e9f4b2e88b7bcd633e4e12104f4d3556c05fc4db1ee6b620a9d5fa6213-1603938009"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "a0dc77b2-59f4-4917-8ebe-0d28ee69831b",
|
|
"value": "32/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048183",
|
|
"uuid": "7e0b9f43-bbfe-4c48-8bed-9a88843b88f3",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "7e0b9f43-bbfe-4c48-8bed-9a88843b88f3",
|
|
"referenced_uuid": "eabe87b8-0d05-49a7-8df4-7611845f7b86",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "00710b6a-1abf-4198-a530-8859675dfd35"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "22229809-52fb-4cbc-8f1f-3fa1477d799e",
|
|
"value": "392a2bf073cfdf09fd5d8211b8d29547"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "214ed77b-bae4-45a7-b4fd-be9c4289adff",
|
|
"value": "65da7b2530caee779a54d7d4740988716cfe7a60"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "433a6b03-841e-4dc6-8614-9da9355f57d7",
|
|
"value": "f6b74d7a2b2e2c1f2b0f088c6b5cd7d26d4d40b756e76bcb7ad06cd7c6c17ded"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048183",
|
|
"uuid": "eabe87b8-0d05-49a7-8df4-7611845f7b86",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "3c30b2c3-1cb6-4fe9-96c2-a7e75be73dc8",
|
|
"value": "2020-10-30T00:49:42+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "c3e1014d-c66e-45eb-8fc7-66886d3c9b18",
|
|
"value": "https://www.virustotal.com/gui/file/f6b74d7a2b2e2c1f2b0f088c6b5cd7d26d4d40b756e76bcb7ad06cd7c6c17ded/detection/f-f6b74d7a2b2e2c1f2b0f088c6b5cd7d26d4d40b756e76bcb7ad06cd7c6c17ded-1604018982"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "fcd6c159-f971-4a9d-9237-b63a250718e8",
|
|
"value": "58/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048183",
|
|
"uuid": "35f19c22-bb54-4118-8e2a-a6d6b78fa536",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "35f19c22-bb54-4118-8e2a-a6d6b78fa536",
|
|
"referenced_uuid": "f61a9f17-4183-432a-a0a9-34929221e1bf",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "e2c7b440-f7b0-4a5e-8dba-f84278a98796"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "c9b44885-2b90-4d87-af87-415964ea6d3b",
|
|
"value": "bf554ccf84bc6976a37d5e7c637eea58"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "32a975c6-f1f4-45f6-a560-aaceb8f8108e",
|
|
"value": "8e66e4ff03bac55716de14943757d7c0cdf11969"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "10e68e56-50bf-4a38-9bec-66cd6b452eeb",
|
|
"value": "38bfb870f8e127f2170175fdd902c0891c9a6c044d8fae6dc9e8ef6d5a9497ab"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048183",
|
|
"uuid": "f61a9f17-4183-432a-a0a9-34929221e1bf",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "9679158b-3ec1-4004-94ad-a97af26abc90",
|
|
"value": "2020-09-07T18:14:23+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "f157fa68-cf76-4ba0-b4e4-08c8002bd1e1",
|
|
"value": "https://www.virustotal.com/gui/file/38bfb870f8e127f2170175fdd902c0891c9a6c044d8fae6dc9e8ef6d5a9497ab/detection/f-38bfb870f8e127f2170175fdd902c0891c9a6c044d8fae6dc9e8ef6d5a9497ab-1599502463"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "8e3f7146-ff81-4d72-8a50-d9ebefcbadae",
|
|
"value": "45/66"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048183",
|
|
"uuid": "9bd33707-6cad-4531-9575-2b257af4239e",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "9bd33707-6cad-4531-9575-2b257af4239e",
|
|
"referenced_uuid": "97ca49c9-5479-48e1-b609-7bbde22a44a6",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "ba504909-085f-408e-abe8-2fba0dd9330f"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "bf456b42-b6fe-40fc-b890-c9510d0bfc01",
|
|
"value": "f9de761a08ec8c4cb0dcf9731acf1417"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "4df19492-10bc-4b4e-bed1-fff414cbb088",
|
|
"value": "7b5ad0a6f29788df61388309e9725aa845528669"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "fef5fe3c-49d0-4ac9-a21d-a8b047ad9467",
|
|
"value": "4e4eb3f6f85c8b14003168e9cd9d82c716cf5c04f1d7cb2f003d1ca233d75eed"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048183",
|
|
"uuid": "97ca49c9-5479-48e1-b609-7bbde22a44a6",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "c7cf5835-6f29-4a88-9b5a-43465691aed5",
|
|
"value": "2020-10-30T00:43:21+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "fe5a5abe-c4e0-43b6-ac18-6ddac9d2fd2c",
|
|
"value": "https://www.virustotal.com/gui/file/4e4eb3f6f85c8b14003168e9cd9d82c716cf5c04f1d7cb2f003d1ca233d75eed/detection/f-4e4eb3f6f85c8b14003168e9cd9d82c716cf5c04f1d7cb2f003d1ca233d75eed-1604018601"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "1bc8a524-b380-4ccc-b9b1-aae32a625b23",
|
|
"value": "59/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048184",
|
|
"uuid": "7c7d0cab-6614-4d6e-844f-b96a60b80a05",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "7c7d0cab-6614-4d6e-844f-b96a60b80a05",
|
|
"referenced_uuid": "e6de3c5f-55bc-47c9-9266-a8c981902df9",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "4eaad036-79d9-492a-be8f-eeae2ccd8953"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "11254d1e-507f-4512-8ed9-d9025e04a06a",
|
|
"value": "08e1863a304022bb8682799746ab2c4c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "2466e9af-5ad5-4849-8b73-f3f9e6d8e4aa",
|
|
"value": "b2a0338d2c2f0bbd03fc5b8b49e040b8d6281173"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "b6a73da3-ab0e-4325-84b0-815393ed7cd6",
|
|
"value": "af29f3aad49a10827b338f156d4f748bcd9d987f1400c52f979efcb4ef4e5e46"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048184",
|
|
"uuid": "e6de3c5f-55bc-47c9-9266-a8c981902df9",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "91695e3c-7a53-47b1-ac9e-66d7eb8233a4",
|
|
"value": "2020-10-30T00:48:12+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "cd152394-4448-4963-bb4f-2d2b762f6c46",
|
|
"value": "https://www.virustotal.com/gui/file/af29f3aad49a10827b338f156d4f748bcd9d987f1400c52f979efcb4ef4e5e46/detection/f-af29f3aad49a10827b338f156d4f748bcd9d987f1400c52f979efcb4ef4e5e46-1604018892"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "eff997eb-5c20-447e-b42d-3668d14cf2ef",
|
|
"value": "59/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048184",
|
|
"uuid": "647f4bff-0d89-4940-b1ff-f68625083a1c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "647f4bff-0d89-4940-b1ff-f68625083a1c",
|
|
"referenced_uuid": "af3a4fd1-9f79-401b-a42c-d05b1e190cae",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "4f58913d-a4cb-438e-9e1e-0d382791dff7"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "e54005e2-915c-4caa-b7d6-78eb3f033c22",
|
|
"value": "04280820a670d0a8a2f0c398f7d223d7"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "d29c7677-10c0-42b0-96a7-9c05182811f8",
|
|
"value": "f564a94c7833b1b8882febd28e95afba71ebadbe"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f51bb7ca-5e1a-4f82-b152-b00bd29e1395",
|
|
"value": "2cd01dab44247dee9c0f9511b3b1d11d5a69afcc87efc59446238021d5343aad"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048184",
|
|
"uuid": "af3a4fd1-9f79-401b-a42c-d05b1e190cae",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "7ba79838-da27-4225-b272-61ff9c4f9ce6",
|
|
"value": "2020-10-30T00:42:49+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "a90b0e7d-8608-4b9c-a182-4b081ba7e47c",
|
|
"value": "https://www.virustotal.com/gui/file/2cd01dab44247dee9c0f9511b3b1d11d5a69afcc87efc59446238021d5343aad/detection/f-2cd01dab44247dee9c0f9511b3b1d11d5a69afcc87efc59446238021d5343aad-1604018569"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "675390a3-319c-467d-b011-091fdc92ead8",
|
|
"value": "62/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048184",
|
|
"uuid": "9fbbec2e-0c24-457a-b241-dd5313c196a8",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "9fbbec2e-0c24-457a-b241-dd5313c196a8",
|
|
"referenced_uuid": "2fa4890a-b3e8-4140-9c6a-ced8d3f1b4a7",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "ead746d8-2ce4-405b-ad8b-049110a3a50d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "a8e31ab3-94fb-488b-a4af-850161808f1d",
|
|
"value": "cb41e35dcfd51b7ea5e55b608a380f9f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "2d5581b3-757d-4b33-be81-313d91ffa910",
|
|
"value": "323103f016f8907a4918ad0a15f0c124c68658b2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c6195c0b-6b60-4092-82c2-d6a9e6bebf4d",
|
|
"value": "70ffcd7e8663a2aab204eaea3daf86e9cff73872d23ad3da2e91382f8593501a"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048184",
|
|
"uuid": "2fa4890a-b3e8-4140-9c6a-ced8d3f1b4a7",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "39dcea26-29d1-44b5-847a-39d032c17da8",
|
|
"value": "2020-10-30T00:43:57+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "3f304bcf-61e8-4714-b1e7-d339a80dc67f",
|
|
"value": "https://www.virustotal.com/gui/file/70ffcd7e8663a2aab204eaea3daf86e9cff73872d23ad3da2e91382f8593501a/detection/f-70ffcd7e8663a2aab204eaea3daf86e9cff73872d23ad3da2e91382f8593501a-1604018637"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "cf5cf282-5f24-488f-aa93-080ff4da33c6",
|
|
"value": "59/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048184",
|
|
"uuid": "3ad9b9d2-d784-42ae-b8c5-09d4ed4ae102",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3ad9b9d2-d784-42ae-b8c5-09d4ed4ae102",
|
|
"referenced_uuid": "fcbdfa58-feca-47b8-8443-d6856341c139",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "bd806aa9-9c9f-446e-a4df-8ec066271101"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "1e722457-2c1e-475b-81ed-abc6ff40ce1e",
|
|
"value": "4d373fda8175a8c79e2e0dc760325634"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "3a340781-357a-4cd7-9a48-0e362348d38d",
|
|
"value": "35ee421837fe02d21c5bd94da425b1f39f1d73d8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "37736ba8-d186-4679-ba3a-c904354d84ec",
|
|
"value": "062fc14064495f558e1192b675c1f0eeeb87c5ced5c01f81a38fc6b2591508d6"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048184",
|
|
"uuid": "fcbdfa58-feca-47b8-8443-d6856341c139",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "c50a134f-ff9f-4f27-8d47-495f6bdcc819",
|
|
"value": "2020-10-16T02:09:45+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "af4f7ad6-d6db-4233-a2d6-2e315b9c0765",
|
|
"value": "https://www.virustotal.com/gui/file/062fc14064495f558e1192b675c1f0eeeb87c5ced5c01f81a38fc6b2591508d6/detection/f-062fc14064495f558e1192b675c1f0eeeb87c5ced5c01f81a38fc6b2591508d6-1602814185"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "fe476007-df34-4cc0-b1e0-c6f79a883d75",
|
|
"value": "49/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048184",
|
|
"uuid": "7dbc825d-6f73-4c96-8b7a-8cd5a9030b0d",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "7dbc825d-6f73-4c96-8b7a-8cd5a9030b0d",
|
|
"referenced_uuid": "319be5ee-9dbe-4d32-9558-174535d5eb76",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "d5fb50f2-408e-43c9-a4da-5cbf7262c4d9"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "668ccf45-bf41-4508-b88a-42bcbe13f2b1",
|
|
"value": "49d508847c6982fc16ef7ccef4a327bc"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "eefa1dcc-14f8-40c9-9870-1920c51833ae",
|
|
"value": "0be71db06cb525f058fcf4da40b84f96f1304fb7"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "81c809da-138b-4462-b940-74fa69069319",
|
|
"value": "ede75c0a88d80043f79025dfd8ef91c3d1b01a1613f4a0347b2ceb29f8b19578"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048184",
|
|
"uuid": "319be5ee-9dbe-4d32-9558-174535d5eb76",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "2e961251-18fb-4906-a715-d8a6eb35484e",
|
|
"value": "2020-10-27T20:19:39+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "2f4e16f0-265d-470c-813b-7481cbabfdef",
|
|
"value": "https://www.virustotal.com/gui/file/ede75c0a88d80043f79025dfd8ef91c3d1b01a1613f4a0347b2ceb29f8b19578/detection/f-ede75c0a88d80043f79025dfd8ef91c3d1b01a1613f4a0347b2ceb29f8b19578-1603829979"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "b56e51c9-ba00-4940-8463-d0f180e17f77",
|
|
"value": "37/64"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048184",
|
|
"uuid": "c60a6e18-6be9-41a5-af8b-044a261e8842",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "c60a6e18-6be9-41a5-af8b-044a261e8842",
|
|
"referenced_uuid": "fec89932-b6e3-4f90-bfeb-b12aa3d8e4d6",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "9875b2d1-022b-4321-aa48-0c8f0b9710f4"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "1488227a-916c-4835-9ac1-65e9a6ad476d",
|
|
"value": "5c958dd142c5304050c1e3a31aa4d20f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "c3575056-86f8-43c7-8039-28bf907107a8",
|
|
"value": "a520c48f968d1134ec0c7d73835b853d81420fc7"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "3483fa1f-c98e-4a1b-b377-0c0bca902ec6",
|
|
"value": "b1eb0565b958d4819138a72cf38b16d058cfee00097461c5dad3fae500aa4296"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048184",
|
|
"uuid": "fec89932-b6e3-4f90-bfeb-b12aa3d8e4d6",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "123abaee-1146-4d30-9bb2-18ddb4d00912",
|
|
"value": "2020-10-29T07:38:14+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "4ec65c97-7e35-4832-98af-842054da8a04",
|
|
"value": "https://www.virustotal.com/gui/file/b1eb0565b958d4819138a72cf38b16d058cfee00097461c5dad3fae500aa4296/detection/f-b1eb0565b958d4819138a72cf38b16d058cfee00097461c5dad3fae500aa4296-1603957094"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "a866ddf2-353b-4676-9d04-ddb67548d081",
|
|
"value": "41/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048184",
|
|
"uuid": "8ebdeb3d-585a-402e-ac4c-e74d4e7e28b3",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "8ebdeb3d-585a-402e-ac4c-e74d4e7e28b3",
|
|
"referenced_uuid": "c4ed2cef-0abb-442d-a321-7f528925ef43",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "9f2e2bf0-8400-411d-95c5-9de5a8f93a6d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "33acb949-c42b-446c-87c6-0b33c0706f1f",
|
|
"value": "d99731e275a92ae306fdbb09b5bd4d24"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "31ac2d06-14d4-415a-a7d3-75c6bc60a00f",
|
|
"value": "a36676950f35f1255935a0fc8467bb28ff625edb"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "3162eb88-5d6f-49ad-8f81-47cfc4a48e33",
|
|
"value": "0856b3c06805d3935b1db325c4e9c9131572b4cf09f07d989911495807775cab"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048184",
|
|
"uuid": "c4ed2cef-0abb-442d-a321-7f528925ef43",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "8ffa6185-65cb-40eb-a3c0-1369c382d63e",
|
|
"value": "2020-10-17T00:20:39+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "252d42fd-c0b6-408a-a666-96e3165f3ffa",
|
|
"value": "https://www.virustotal.com/gui/file/0856b3c06805d3935b1db325c4e9c9131572b4cf09f07d989911495807775cab/detection/f-0856b3c06805d3935b1db325c4e9c9131572b4cf09f07d989911495807775cab-1602894039"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "df13ddd5-e4fe-4100-94f8-be3e5edf314f",
|
|
"value": "50/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048184",
|
|
"uuid": "a0ba4a94-ca04-4194-8f44-7e109a1d571d",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "a0ba4a94-ca04-4194-8f44-7e109a1d571d",
|
|
"referenced_uuid": "90a85fa2-2cd3-44ed-9800-47036fbea5ed",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "c3bfcd45-f496-4706-8ee3-6d74626c9239"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "31b777a6-bff6-4fa5-87ca-85d88c278c36",
|
|
"value": "e9ca9f20398e87d807e953ccbb3ef8b2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "ebda0659-a086-499f-a864-cdac416d6763",
|
|
"value": "4cac60759f4c879f1d6c12dd54774554cc522350"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "0ba5206f-676e-4277-abed-9a7be6d48ac0",
|
|
"value": "9bf2fd111962a5634e7b1a5821b08584002cf304d657840a904d3388967a9a65"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048184",
|
|
"uuid": "90a85fa2-2cd3-44ed-9800-47036fbea5ed",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "e278171b-1db7-485d-a4f0-86308b9bb575",
|
|
"value": "2020-10-30T00:47:48+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "bb4afb0c-37fb-482e-9c00-504047247304",
|
|
"value": "https://www.virustotal.com/gui/file/9bf2fd111962a5634e7b1a5821b08584002cf304d657840a904d3388967a9a65/detection/f-9bf2fd111962a5634e7b1a5821b08584002cf304d657840a904d3388967a9a65-1604018868"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "3755cfcf-372d-4a80-a89e-ee4b43bb2bc8",
|
|
"value": "60/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048184",
|
|
"uuid": "448163b9-d56e-4197-b219-7701771f0b9f",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "448163b9-d56e-4197-b219-7701771f0b9f",
|
|
"referenced_uuid": "edf1b1b2-a646-4d36-89fc-2bd73036558a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "370bb378-35b7-41fa-bc72-5358bd5116a5"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "4315f4e6-dd15-4604-afaf-3f9d5c28b093",
|
|
"value": "81530582c3bf6e5e34a33f5d539b83a0"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e29ecb5c-af70-4d2c-bc59-9ac640ff62a3",
|
|
"value": "f1fd8e3a214647617d24c663ab69df6ab491dfdb"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "89b7c0ec-9c6f-480d-8d21-830ce9bef303",
|
|
"value": "c9ffb0e9c3df23bba54debf0f6875ade683fe29f4ca720d2abc780179a2781cf"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048184",
|
|
"uuid": "edf1b1b2-a646-4d36-89fc-2bd73036558a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "0309a831-48af-4f90-bedf-09c51893f95b",
|
|
"value": "2020-10-23T08:40:45+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "a9796062-2900-4096-a6fa-d14d530cce0f",
|
|
"value": "https://www.virustotal.com/gui/file/c9ffb0e9c3df23bba54debf0f6875ade683fe29f4ca720d2abc780179a2781cf/detection/f-c9ffb0e9c3df23bba54debf0f6875ade683fe29f4ca720d2abc780179a2781cf-1603442445"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "248935ae-13a4-46fb-ad5b-1d27398dc084",
|
|
"value": "47/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048184",
|
|
"uuid": "e9731d60-0ae4-4dde-898e-cac8b04a92ae",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "e9731d60-0ae4-4dde-898e-cac8b04a92ae",
|
|
"referenced_uuid": "e6bc3456-c3f9-4350-acc0-327d026ebb77",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "707dde5b-6000-41e2-b3ba-6ec46763e74e"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "ebed58ff-3f79-4e06-a331-9df234d63c16",
|
|
"value": "9bc53f708e95adaeab0fbacce4738d1e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "94405feb-3e0b-47fb-830f-84b97d0598ab",
|
|
"value": "c4bfc6c7e6591166cee8ded217083ad28b0f7d9a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a51f16e1-c12b-4226-a7c4-7a0f83022a2e",
|
|
"value": "11d2e042f172811cd155e07a8f7a3830e590997b87be68cd9b076477bbc98dcd"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048185",
|
|
"uuid": "e6bc3456-c3f9-4350-acc0-327d026ebb77",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "8d0de787-53a5-4843-84fc-5888c683a7b1",
|
|
"value": "2020-10-30T00:42:07+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "f890843d-0114-47b3-8b42-ee86f4e1f51f",
|
|
"value": "https://www.virustotal.com/gui/file/11d2e042f172811cd155e07a8f7a3830e590997b87be68cd9b076477bbc98dcd/detection/f-11d2e042f172811cd155e07a8f7a3830e590997b87be68cd9b076477bbc98dcd-1604018527"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "f7995bab-bf45-47b8-9cec-75c583699b84",
|
|
"value": "45/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048185",
|
|
"uuid": "398aa11c-cf88-4719-8a67-281a237f5842",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "398aa11c-cf88-4719-8a67-281a237f5842",
|
|
"referenced_uuid": "06b39d87-d102-40a2-be42-99983372e8c2",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "42a3f342-ab2a-4a23-8709-0aacdead8e91"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "7dea14de-829a-41dc-9cb2-d2bc9490a629",
|
|
"value": "256fa0ae50b4e199b631047f2fe98b58"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e0bbb801-1c8a-4319-8230-d2df831f6cab",
|
|
"value": "bb94ba05b6daa07443ab330815a6fc074c8d326b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "c99c88dd-24d4-4ccf-b4d9-2048b0419c5f",
|
|
"value": "429650c8e59459c0150ad5cb8853cb46415b70afb92f45ebc04e8c5fbd382bf2"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048185",
|
|
"uuid": "06b39d87-d102-40a2-be42-99983372e8c2",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "84dfb00e-fba2-4575-96f1-0dbd7a035571",
|
|
"value": "2020-10-14T07:38:14+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "583a6d86-6fca-4789-b9f4-26f8061bcd3e",
|
|
"value": "https://www.virustotal.com/gui/file/429650c8e59459c0150ad5cb8853cb46415b70afb92f45ebc04e8c5fbd382bf2/detection/f-429650c8e59459c0150ad5cb8853cb46415b70afb92f45ebc04e8c5fbd382bf2-1602661094"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "06f907e1-c8e8-4835-9a22-1800e977b425",
|
|
"value": "43/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048185",
|
|
"uuid": "5df60d5d-8222-40a0-8283-c1b60986313f",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "5df60d5d-8222-40a0-8283-c1b60986313f",
|
|
"referenced_uuid": "5b646f32-311e-4fe3-b55f-ba211ee379fc",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "de99ffe7-b857-44a5-b717-dff6bb69f933"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "32478da7-b909-43ed-9274-131397ea3fd8",
|
|
"value": "a5e2a191fb0b2dfb336147da0b6cabb6"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "f8bb251c-e42e-4bad-a93a-81804ceaa60d",
|
|
"value": "cecff6847d1b04b05ecf6e965fcd0b2b800aa212"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "622961b8-67b7-4259-bd6b-32326b12939c",
|
|
"value": "dd913d2b8a29eae792097e2d2b81a94e62b3e90636a9564f56dc302b50901ccb"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048185",
|
|
"uuid": "5b646f32-311e-4fe3-b55f-ba211ee379fc",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "a99df7e6-664e-48a8-9eec-c42af8d43451",
|
|
"value": "2020-06-11T10:18:21+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "29298e01-3b55-4adf-8aa9-44e78bc32e35",
|
|
"value": "https://www.virustotal.com/gui/file/dd913d2b8a29eae792097e2d2b81a94e62b3e90636a9564f56dc302b50901ccb/detection/f-dd913d2b8a29eae792097e2d2b81a94e62b3e90636a9564f56dc302b50901ccb-1591870701"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "75391fa9-d5a3-47fe-a79b-1ea0891129f4",
|
|
"value": "27/61"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048185",
|
|
"uuid": "0657a83d-6055-4d0e-b18c-e66524986913",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "0657a83d-6055-4d0e-b18c-e66524986913",
|
|
"referenced_uuid": "486237b5-0bca-4be0-b0a9-cf97bad7ec7e",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "db2cc849-f603-47d1-8b05-5383ae617cad"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "216744d7-ba43-4782-a1be-2406d2a97534",
|
|
"value": "2237dd795e50a6d4ef1bd3bafa8c771f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "21801e4f-343f-468e-82d9-a252781a3500",
|
|
"value": "366ff7faca817fb6c99650abdfbf14b8eca11fda"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "1254dfdd-a596-4935-9436-afc4690775ec",
|
|
"value": "5b02e00797b0f396b40dbb8223d034a7aa42798a39a89a41ea70a314ceab478e"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048185",
|
|
"uuid": "486237b5-0bca-4be0-b0a9-cf97bad7ec7e",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "f8c9d9ea-47cb-4079-8a72-af10bcae830a",
|
|
"value": "2020-10-30T00:43:32+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "976cb65e-22c8-4596-b46d-98d585378da2",
|
|
"value": "https://www.virustotal.com/gui/file/5b02e00797b0f396b40dbb8223d034a7aa42798a39a89a41ea70a314ceab478e/detection/f-5b02e00797b0f396b40dbb8223d034a7aa42798a39a89a41ea70a314ceab478e-1604018612"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "e465d5a8-2d83-463b-857f-97e8fe554f2f",
|
|
"value": "57/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048185",
|
|
"uuid": "8ff99259-70f6-4ec1-8b53-ec2640ff4f76",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "8ff99259-70f6-4ec1-8b53-ec2640ff4f76",
|
|
"referenced_uuid": "8e77f1b3-ff7e-4e6d-ad68-6908c1a0961d",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "cfbd7815-1b08-41ec-b478-49f54a8139fc"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "a31bf43d-c214-4b73-b932-3eb74b6de936",
|
|
"value": "ad3ae77f1d1c840eb990bd453be517ab"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "32da616f-02e8-4f6d-9341-8beca90964f6",
|
|
"value": "54cf984207163b9d6dd00d005c8462318caa4539"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "6daa93ef-416b-4a6e-aa2f-8c3652822c87",
|
|
"value": "8ddf1b190498bcc66f510005f0e1efc2562e189887924ddb7e584f04437e78a2"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048185",
|
|
"uuid": "8e77f1b3-ff7e-4e6d-ad68-6908c1a0961d",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "66348970-4506-4c5e-bfe9-033ad376135f",
|
|
"value": "2020-10-30T00:47:32+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "b1456ad4-1a55-4966-919c-7362d866f3a8",
|
|
"value": "https://www.virustotal.com/gui/file/8ddf1b190498bcc66f510005f0e1efc2562e189887924ddb7e584f04437e78a2/detection/f-8ddf1b190498bcc66f510005f0e1efc2562e189887924ddb7e584f04437e78a2-1604018852"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "e0a0d437-07c1-4238-8e8f-37ad55795f6b",
|
|
"value": "60/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048185",
|
|
"uuid": "2e76b14d-770a-4609-b3b5-b5ea2d40411f",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "2e76b14d-770a-4609-b3b5-b5ea2d40411f",
|
|
"referenced_uuid": "afab1a16-e49a-41dc-8cb3-00b0eb5056e1",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "5e949bc2-27fb-4f39-b05b-108aa4bb166a"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "2389eabc-1b06-4d06-9ca1-36ffaaa091b7",
|
|
"value": "fa9ba530572d4b8ad6db01097244beff"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "0f64e38d-6141-425e-ba5c-f855cb17d39c",
|
|
"value": "abb546c55e6503639dabc61e1434a26c624bb485"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "6c68c5da-5f55-499e-b654-5529285bf7ad",
|
|
"value": "ad0ee372226ace062473e01b15b52d99eb61a6f3b265bead8f2c534f75d05cea"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048185",
|
|
"uuid": "afab1a16-e49a-41dc-8cb3-00b0eb5056e1",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "ea82c6f0-bb64-4652-bd71-5507c9b6649f",
|
|
"value": "2020-10-30T00:48:07+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "05e314a1-9863-449c-9c22-0e6c2cc8f8a6",
|
|
"value": "https://www.virustotal.com/gui/file/ad0ee372226ace062473e01b15b52d99eb61a6f3b265bead8f2c534f75d05cea/detection/f-ad0ee372226ace062473e01b15b52d99eb61a6f3b265bead8f2c534f75d05cea-1604018887"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "6da020ba-c20e-427b-9256-dfc06bcd99f9",
|
|
"value": "56/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048185",
|
|
"uuid": "3ef484d7-e18a-4268-9d64-57a0dc11ec90",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3ef484d7-e18a-4268-9d64-57a0dc11ec90",
|
|
"referenced_uuid": "23503f7a-ba91-4d93-aace-c0bfd9228e8a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "715325fd-5c5f-4b10-bc1c-fa93fa16335c"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "b4070f96-2e58-467e-8549-edfc6b70fc05",
|
|
"value": "7c4c9a6c3fff239b2d1bd831782c6467"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e689f4c0-2fa0-4686-a907-2c7c44916b35",
|
|
"value": "3d74c77cb0fb25f578876b6182f585e61038634a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a5fa9e34-a3da-48f7-910b-8ded6ac00130",
|
|
"value": "1f9194a46385dfef7bd1098b3c5da2b8f2d2552c9c1d1b6bf3f7313ee970b9a4"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048185",
|
|
"uuid": "23503f7a-ba91-4d93-aace-c0bfd9228e8a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "dbc84ddc-a27e-441b-8558-d31c8e0158da",
|
|
"value": "2019-11-09T01:32:17+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "972bda52-0c0a-471c-8778-881b14362c4d",
|
|
"value": "https://www.virustotal.com/gui/file/1f9194a46385dfef7bd1098b3c5da2b8f2d2552c9c1d1b6bf3f7313ee970b9a4/detection/f-1f9194a46385dfef7bd1098b3c5da2b8f2d2552c9c1d1b6bf3f7313ee970b9a4-1573263137"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "12146634-cbbf-496f-bec2-cf11729ca45b",
|
|
"value": "2/58"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048185",
|
|
"uuid": "20f652f2-5da6-4d98-a7ab-ca7e2f1a46d2",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "20f652f2-5da6-4d98-a7ab-ca7e2f1a46d2",
|
|
"referenced_uuid": "2891de56-5536-4798-beb4-ebe8f7d526f6",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "a5a2f46d-15cd-41e4-8b23-e3558b251708"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "8526dcb4-d82b-4cd0-92c2-105d32a0ac8f",
|
|
"value": "6f29331e3d016c428b92b6e7ae3132d6"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "efe51600-729d-41ad-8fd5-f9865fbf58df",
|
|
"value": "2fa9889c4e5da3c5ec5fa29e428ec1303992bf0b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "b8156f65-713b-41fd-81bd-c26379e98214",
|
|
"value": "25f051fad96d0996708561ce734bb836c4a576f8cb4d6f96927975a08eff9e19"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048185",
|
|
"uuid": "2891de56-5536-4798-beb4-ebe8f7d526f6",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "be59f203-2657-4807-96fe-733b4e7fafe2",
|
|
"value": "2020-10-30T00:42:41+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "cd554aa1-a4f2-4800-a252-206ff91ec127",
|
|
"value": "https://www.virustotal.com/gui/file/25f051fad96d0996708561ce734bb836c4a576f8cb4d6f96927975a08eff9e19/detection/f-25f051fad96d0996708561ce734bb836c4a576f8cb4d6f96927975a08eff9e19-1604018561"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "5f791c67-4ca2-42fd-8caf-103d1f0c6eee",
|
|
"value": "58/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048185",
|
|
"uuid": "94194fbd-1c7b-48a3-9397-78690a14965c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "94194fbd-1c7b-48a3-9397-78690a14965c",
|
|
"referenced_uuid": "11e9099a-5624-4972-a948-fedaf267e4e4",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "68c20cbb-32a5-4e71-9132-9fa846294f9b"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "fcebf147-ee95-4436-8ead-ee8096dd878a",
|
|
"value": "86fb97cd68d2f5c9681be20f1929c474"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "bed8839f-885d-4705-a972-d68056baff8f",
|
|
"value": "1ba763f86f620b9bbc96f4d8a45afb4e6176b3e5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "1538208c-9bce-42af-a6e5-3f6bf9ddfeab",
|
|
"value": "bc08bc584b06c8866c6b4feeeef745e187a8ce0e924d159d5044e6368e4bf31a"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048185",
|
|
"uuid": "11e9099a-5624-4972-a948-fedaf267e4e4",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "0a5d532c-b7b3-41b1-8b13-24ee95a0e993",
|
|
"value": "2020-10-30T00:48:48+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "f7f1dba2-cc5e-49da-9197-a8e1305519b5",
|
|
"value": "https://www.virustotal.com/gui/file/bc08bc584b06c8866c6b4feeeef745e187a8ce0e924d159d5044e6368e4bf31a/detection/f-bc08bc584b06c8866c6b4feeeef745e187a8ce0e924d159d5044e6368e4bf31a-1604018928"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "a760edb6-99b8-4060-a459-2828446beb64",
|
|
"value": "58/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048185",
|
|
"uuid": "da3156db-d5bd-42c1-8acf-fcba17565f99",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "da3156db-d5bd-42c1-8acf-fcba17565f99",
|
|
"referenced_uuid": "3c47eb42-f907-41c4-a214-ea3bea07bad4",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "726907dc-3eaa-4882-a72c-fa677ccd1cba"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "7c5881ff-0726-4d97-afee-f88fedcaa59c",
|
|
"value": "af09099729962f25c57cc35e86bfbcf9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "d98a16d7-39e7-4418-ae04-753dc9506f75",
|
|
"value": "42333bd6cbe20c64b7cb1b81bcc6110151bae7ea"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a8a0e049-44e7-4404-94a2-12f1806bc566",
|
|
"value": "b91b4d45b41d0d0ca1bdfac917c4cd732d32754bcfd7590ac521dc4fe414ebd5"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048185",
|
|
"uuid": "3c47eb42-f907-41c4-a214-ea3bea07bad4",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "eb234e22-7d05-4a32-8e34-7eab8b9590c8",
|
|
"value": "2020-10-30T00:48:36+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "f876239e-3ee3-40b8-a6c4-c8b442584b98",
|
|
"value": "https://www.virustotal.com/gui/file/b91b4d45b41d0d0ca1bdfac917c4cd732d32754bcfd7590ac521dc4fe414ebd5/detection/f-b91b4d45b41d0d0ca1bdfac917c4cd732d32754bcfd7590ac521dc4fe414ebd5-1604018916"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "aa4c835e-55c7-4a4b-a6f5-74022cf5a8e5",
|
|
"value": "55/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048185",
|
|
"uuid": "c6b32ce3-eb60-458e-a9c4-79c6323bf988",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "c6b32ce3-eb60-458e-a9c4-79c6323bf988",
|
|
"referenced_uuid": "a3ed0c52-f5a7-4eca-b69d-7e6c7df2c44f",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "aa625973-4edb-4bdb-b7ef-161c023408bd"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "c832fb4b-0705-44ad-9cd2-b05878c1e471",
|
|
"value": "7b5e870565f0563abe7e4150969f52de"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "9e0921f9-12c8-4e53-b6fd-006414c64648",
|
|
"value": "7f727a5f02359e44ad075053fb4dfcc55c83dccc"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a4b433e0-185f-41f2-abe8-1e16f45a91ef",
|
|
"value": "8dde9b01b0e4eb47afff7daf5d59abf72e68ec6d944a9404f78ba69fcbd5310d"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048186",
|
|
"uuid": "a3ed0c52-f5a7-4eca-b69d-7e6c7df2c44f",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "073ab999-e864-407b-9b87-6f17724df733",
|
|
"value": "2020-06-27T21:52:44+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "760a3e42-29a1-4d66-8922-7dded1d3bdcd",
|
|
"value": "https://www.virustotal.com/gui/file/8dde9b01b0e4eb47afff7daf5d59abf72e68ec6d944a9404f78ba69fcbd5310d/detection/f-8dde9b01b0e4eb47afff7daf5d59abf72e68ec6d944a9404f78ba69fcbd5310d-1593294764"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "91c57ecf-17d5-46ab-bbc7-3f658c5df3d4",
|
|
"value": "2/63"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048186",
|
|
"uuid": "d2983ca3-9223-4a87-b04f-6de51ace37a7",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "d2983ca3-9223-4a87-b04f-6de51ace37a7",
|
|
"referenced_uuid": "eab302f5-7a18-4f5e-b606-4a7411472846",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "9bbdd067-8a43-4bc3-ad7b-c432daa673d5"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "2b008551-0445-4a69-8604-6ab5f3d3cdde",
|
|
"value": "7767c187579466c4d9527291c20664c5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "55ad4d9c-eba4-400b-9461-7d400a1fb423",
|
|
"value": "6dc993b4db27a3c12895bf804e0237f2cba40473"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "74ff19c3-db0d-41ea-a976-b1a442d744ed",
|
|
"value": "9e99facf8ea4c39a5d2bfc404fbae99b37bae36ab589a2a67acf23d03de96512"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048186",
|
|
"uuid": "eab302f5-7a18-4f5e-b606-4a7411472846",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "16c23d69-bfff-4100-849d-216b02d4e902",
|
|
"value": "2020-10-30T00:47:58+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "95587d79-5287-4520-807f-5a8569a1dc39",
|
|
"value": "https://www.virustotal.com/gui/file/9e99facf8ea4c39a5d2bfc404fbae99b37bae36ab589a2a67acf23d03de96512/detection/f-9e99facf8ea4c39a5d2bfc404fbae99b37bae36ab589a2a67acf23d03de96512-1604018878"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ec9a9044-118d-4a67-8bc6-4af354cd9f8d",
|
|
"value": "58/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048186",
|
|
"uuid": "522f5599-7a15-4eaf-bc74-74ad5dd77996",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "522f5599-7a15-4eaf-bc74-74ad5dd77996",
|
|
"referenced_uuid": "4cd9d948-55ef-4f84-8e84-b0eb3b3f63f8",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "14f52173-1223-42f2-b31c-e3f2ea1f47b3"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "0f8cf374-00d3-44a9-998c-60953d4fb0fd",
|
|
"value": "feb6a6bac205b0baf0bdab6bd405110f"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "3b4a45e8-c865-4346-bf83-08775f3b58c8",
|
|
"value": "1baab9662c1f71e5406897804837b45f78e14682"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "68fa91fa-bf2f-4057-b364-9dc0493d2676",
|
|
"value": "ab99e91e1b0951feabd09d049e0ac9d9412c67603415c10cbeadde5842ca02d2"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048186",
|
|
"uuid": "4cd9d948-55ef-4f84-8e84-b0eb3b3f63f8",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "9b395ce4-e2e4-4845-b89f-6a9a8adbd38f",
|
|
"value": "2020-10-11T08:29:42+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "db52503b-934d-40ac-97de-f1db9d50f9f1",
|
|
"value": "https://www.virustotal.com/gui/file/ab99e91e1b0951feabd09d049e0ac9d9412c67603415c10cbeadde5842ca02d2/detection/f-ab99e91e1b0951feabd09d049e0ac9d9412c67603415c10cbeadde5842ca02d2-1602404982"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "cc24a489-0b12-45fe-a5c4-be53c86006ab",
|
|
"value": "39/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048186",
|
|
"uuid": "590167ef-b668-496f-8970-7bd7d16826bf",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "590167ef-b668-496f-8970-7bd7d16826bf",
|
|
"referenced_uuid": "a8374917-93c1-457e-996e-c942d50f31d3",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "240a1157-cea8-4c98-b304-8df3cd2b54fc"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "244c02a2-19a2-432d-a7ce-89f7d6bf0800",
|
|
"value": "f4bf1dd766e2354af3952d9b1ef26d88"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "22a9a868-8f93-4400-89ef-cec49f6eb737",
|
|
"value": "a898cf3d79cece3948d148b301551ae4543dda74"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "12bda4db-96e2-4e46-bfd4-5dab76d2bc4f",
|
|
"value": "b95be82b7682341cf7e2b8e33f1ca0c8915ee005bd71c50ad877da99c7ec39f6"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048186",
|
|
"uuid": "a8374917-93c1-457e-996e-c942d50f31d3",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "37386646-cdf7-456b-8a30-6c7d83da164c",
|
|
"value": "2020-10-30T00:48:40+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "4955ff52-47a2-4d3a-9012-519140c847eb",
|
|
"value": "https://www.virustotal.com/gui/file/b95be82b7682341cf7e2b8e33f1ca0c8915ee005bd71c50ad877da99c7ec39f6/detection/f-b95be82b7682341cf7e2b8e33f1ca0c8915ee005bd71c50ad877da99c7ec39f6-1604018920"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "4f298413-dca7-4ef5-97a3-6b245c8672c2",
|
|
"value": "39/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048186",
|
|
"uuid": "1f2972d3-a2b9-4e33-b097-362ad59cf22a",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "1f2972d3-a2b9-4e33-b097-362ad59cf22a",
|
|
"referenced_uuid": "ea2bb670-0be4-494b-8513-325713ffa7b3",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "8c3aa837-e9e1-4633-b5c9-9f7f170e6056"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "a2847efa-244b-4f22-83f6-3b1718365416",
|
|
"value": "7430f8e3f9f8716b8dbc548997ad8f8a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "b8561efa-54ef-415e-8f00-5f8ebf36a3d7",
|
|
"value": "7062cd7b0e0d3eef423e20aef39fb330faf88717"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4040449c-f8f2-479c-94c1-305a6836f8bb",
|
|
"value": "4544b478b2029ec38eb4bda111741a10f0684e38f1b29ce092b93df882d11f9e"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048186",
|
|
"uuid": "ea2bb670-0be4-494b-8513-325713ffa7b3",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "fbc1e04c-f4b3-4754-a382-b20fef186300",
|
|
"value": "2020-10-27T14:40:08+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "7c9b89f4-c0ef-4aa2-ad08-b325518e6228",
|
|
"value": "https://www.virustotal.com/gui/file/4544b478b2029ec38eb4bda111741a10f0684e38f1b29ce092b93df882d11f9e/detection/f-4544b478b2029ec38eb4bda111741a10f0684e38f1b29ce092b93df882d11f9e-1603809608"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "82a63625-ad77-49ee-a9ce-a8aa7dbbae14",
|
|
"value": "52/62"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048186",
|
|
"uuid": "878ff7cd-c5c0-4ad7-a9fc-9fac552d4b7a",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "878ff7cd-c5c0-4ad7-a9fc-9fac552d4b7a",
|
|
"referenced_uuid": "7529b90e-54c5-43da-858e-524ab68604bb",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "287221e9-653e-4f9f-a4a7-c26ef3c9d5e3"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "f2ea342f-657c-418d-a0a4-0b39bb7f2763",
|
|
"value": "6c6846b436ec85b9179ad77fb585e20c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "d32f5ae6-a233-4987-a208-32103d442297",
|
|
"value": "4d75fd0ece50bb305a34db32157da76c7fa1ef1a"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "054ace3e-5be5-4aac-ba32-e151cb2bfec2",
|
|
"value": "f9c459824e223d5523ac6edfea7b842cf168ae135045258b04b4760f4002a86f"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048186",
|
|
"uuid": "7529b90e-54c5-43da-858e-524ab68604bb",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "8476a6d5-26db-456d-ba55-f54d3fe89455",
|
|
"value": "2020-10-07T12:07:29+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "9cdc41fa-b0c7-40d7-b9e9-b6a14716bfdf",
|
|
"value": "https://www.virustotal.com/gui/file/f9c459824e223d5523ac6edfea7b842cf168ae135045258b04b4760f4002a86f/detection/f-f9c459824e223d5523ac6edfea7b842cf168ae135045258b04b4760f4002a86f-1602072449"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "c6a285b5-f6ef-41a9-af41-688c9525119b",
|
|
"value": "36/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048186",
|
|
"uuid": "d7304186-e248-49e9-a821-d4e1b2bfff31",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "d7304186-e248-49e9-a821-d4e1b2bfff31",
|
|
"referenced_uuid": "2f5b67f5-2eb1-45a4-8067-e0619f071a9a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "80f282f6-0e2a-45af-a909-1f305adfae3a"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "5575a43e-fc74-4ac1-923a-5aa0dd6cbf55",
|
|
"value": "4988b2bd0ba2e100a40d76ae0b4dea94"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "3d0d7217-9255-44c6-a00e-7338ad855d59",
|
|
"value": "fe19be43f9628298e158b7f392953be4e4468043"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "64613d95-f6c2-459c-973d-985832e979d6",
|
|
"value": "484418a9516fbe04de0d99704ac521b04825bfdbc4abbcbf1ba88a28c26373ea"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048186",
|
|
"uuid": "2f5b67f5-2eb1-45a4-8067-e0619f071a9a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "916db53f-f107-4404-8ca1-30ba978697f8",
|
|
"value": "2020-10-18T14:36:57+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "c2130ec6-72f1-43d0-a477-8dd8ef70cc79",
|
|
"value": "https://www.virustotal.com/gui/file/484418a9516fbe04de0d99704ac521b04825bfdbc4abbcbf1ba88a28c26373ea/detection/f-484418a9516fbe04de0d99704ac521b04825bfdbc4abbcbf1ba88a28c26373ea-1603031817"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "0e406f20-f95f-4ab2-a1be-11663a3a1dfd",
|
|
"value": "56/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048186",
|
|
"uuid": "bcb35d45-3b99-4de3-952c-eaccba4124e5",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "bcb35d45-3b99-4de3-952c-eaccba4124e5",
|
|
"referenced_uuid": "ec28b665-f612-473f-9512-fd6f869b06fe",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "28616ff3-d864-41eb-936e-c6a995b40c52"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "66b9d083-ae5d-42d1-af40-a71a89af35aa",
|
|
"value": "d14e7a1d3a56511c164c36077777c2da"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "ec8cfd7c-d693-4e40-b6bc-9a5da8e730dc",
|
|
"value": "f9ae4e7d956d29fd9564316fc2584e47c02501cc"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ac367c49-baa1-45f6-b24a-d059cf657eec",
|
|
"value": "5fc95870132e4709a5a0086593490cd04eb121f2f238b44cb19679125e842115"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048186",
|
|
"uuid": "ec28b665-f612-473f-9512-fd6f869b06fe",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "39c8ae20-222b-4bcf-8471-200d6051079d",
|
|
"value": "2020-09-05T07:21:27+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "3c9cb887-2d4f-42e0-9190-4ccc1621fe8d",
|
|
"value": "https://www.virustotal.com/gui/file/5fc95870132e4709a5a0086593490cd04eb121f2f238b44cb19679125e842115/detection/f-5fc95870132e4709a5a0086593490cd04eb121f2f238b44cb19679125e842115-1599290487"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "21a268ec-7a0d-4f90-975d-f983c234cb86",
|
|
"value": "41/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048186",
|
|
"uuid": "8e934a55-9f8c-431c-85c8-f52a2574eb6d",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "8e934a55-9f8c-431c-85c8-f52a2574eb6d",
|
|
"referenced_uuid": "93b3d657-1591-445c-9a59-22b998db2f98",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "a0c2fae3-b4e9-4a16-95cc-0deddeff958f"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "09fc8e46-cf9c-4197-8fa9-8deaac40eda3",
|
|
"value": "c8777183e31a2aaa6b30f9d2d2103fd3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "b20dcb7f-c648-43d5-9a2a-11d297466443",
|
|
"value": "356277603cf3cbc777811069fc631c66874901cb"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "481e7d7c-67b4-4c44-afd0-56e6d407dd1e",
|
|
"value": "798d9d960b1a6dba959831983573ce7de2ea376f13f1e0fe7968beeca37f0540"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048186",
|
|
"uuid": "93b3d657-1591-445c-9a59-22b998db2f98",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "d467b1ce-0575-4a9c-bd2e-97cf6a84ae2f",
|
|
"value": "2020-10-27T04:38:13+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "a4ec54bf-13d0-4a1d-b0a1-f680cf2c0e55",
|
|
"value": "https://www.virustotal.com/gui/file/798d9d960b1a6dba959831983573ce7de2ea376f13f1e0fe7968beeca37f0540/detection/f-798d9d960b1a6dba959831983573ce7de2ea376f13f1e0fe7968beeca37f0540-1603773493"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "464db131-2f52-4f34-a556-5ba4000842ca",
|
|
"value": "41/66"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048186",
|
|
"uuid": "61def0f6-fcdb-4c6c-9557-89fa5c3fd142",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "61def0f6-fcdb-4c6c-9557-89fa5c3fd142",
|
|
"referenced_uuid": "bb4fb207-7951-414d-ac6c-cc6ab057787c",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "000bc76a-a0e7-4046-9a44-858e3ad4dde4"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "050d034f-1706-45f7-8215-9b715be2089b",
|
|
"value": "91f49d454a066e0acacac21083a2f300"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "b56fc1f1-ee06-423b-a56a-fa03ce54a682",
|
|
"value": "9f594478d57301f42bb766211106464cbcf9476e"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "740b8ad6-b616-4247-8db5-509d3c989e3d",
|
|
"value": "b62ba19f3f6ab6200a764a14a268cbf21efe3b48030f7a8bccd96300d56ec950"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048186",
|
|
"uuid": "bb4fb207-7951-414d-ac6c-cc6ab057787c",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "02b86361-900f-4e64-9c46-46945e74f6f6",
|
|
"value": "2020-09-06T08:12:29+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "e3b336c8-271d-4581-9323-51095080240d",
|
|
"value": "https://www.virustotal.com/gui/file/b62ba19f3f6ab6200a764a14a268cbf21efe3b48030f7a8bccd96300d56ec950/detection/f-b62ba19f3f6ab6200a764a14a268cbf21efe3b48030f7a8bccd96300d56ec950-1599379949"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "d53bdb2e-25b5-4b18-8f63-e708247b2806",
|
|
"value": "50/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048187",
|
|
"uuid": "3688243c-dba5-4425-83df-05469b53270e",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3688243c-dba5-4425-83df-05469b53270e",
|
|
"referenced_uuid": "83e74766-26ae-4c43-b22c-d0f6f6871b9a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "ff19743e-56eb-4269-b171-f7bc5069127d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "bc0b4721-994b-4ca7-bd3d-d1cd78c5c46d",
|
|
"value": "acebea7d95a9c8d8e2fa4ba538600be1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "09a26835-f380-44b6-8090-f29e21338d76",
|
|
"value": "9a36a1ec630cd5d0451d84b214f89d9bf867b394"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ea98c8f4-2917-419d-b219-ff1b2e7a5938",
|
|
"value": "ca8d8d55c30ed37ce1bc36e514a3fee5b0bc00ef5c88b8d07d51dbd9a141ff33"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048187",
|
|
"uuid": "83e74766-26ae-4c43-b22c-d0f6f6871b9a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "4b475d1e-a798-4d26-8ccd-a8ede4f8ad8f",
|
|
"value": "2020-10-30T00:49:01+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "9cf0192d-a985-496f-9a54-560870718976",
|
|
"value": "https://www.virustotal.com/gui/file/ca8d8d55c30ed37ce1bc36e514a3fee5b0bc00ef5c88b8d07d51dbd9a141ff33/detection/f-ca8d8d55c30ed37ce1bc36e514a3fee5b0bc00ef5c88b8d07d51dbd9a141ff33-1604018941"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "cd29c8ce-01c3-4865-95a4-57569772192f",
|
|
"value": "60/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048187",
|
|
"uuid": "9da3fb39-1b7f-45b9-9c2b-18f02edb7a13",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "9da3fb39-1b7f-45b9-9c2b-18f02edb7a13",
|
|
"referenced_uuid": "984012d5-eb26-486d-ba47-720d981b8305",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "b60a05ad-209c-4aec-8846-16dd113206d9"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "e6684f5f-1016-4137-9216-ff2b1398387f",
|
|
"value": "4a31d5f7e10f8113099a0d898c4ebc40"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "f2ce5c91-d3e0-4590-b198-179c650659e1",
|
|
"value": "973ccbdc3b5ea8e0588df797b688b62687a7d35d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "703246de-c134-4bef-a212-f415fbbdcecd",
|
|
"value": "15fcb756a05b69518be5e32b98b25f398e999d4ec971364fe01f9dd0f78747e3"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048187",
|
|
"uuid": "984012d5-eb26-486d-ba47-720d981b8305",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "3db07e20-8764-4836-9895-fa52de863d5c",
|
|
"value": "2020-10-30T00:42:13+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "289f526d-eb73-4818-abea-6cb92221caf7",
|
|
"value": "https://www.virustotal.com/gui/file/15fcb756a05b69518be5e32b98b25f398e999d4ec971364fe01f9dd0f78747e3/detection/f-15fcb756a05b69518be5e32b98b25f398e999d4ec971364fe01f9dd0f78747e3-1604018533"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "a15c0d04-cf12-457f-8451-dae9adc076cb",
|
|
"value": "61/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048187",
|
|
"uuid": "8c2d5422-b02d-4ad5-9eda-e19b2f8520d3",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "8c2d5422-b02d-4ad5-9eda-e19b2f8520d3",
|
|
"referenced_uuid": "1d8386a5-94a3-418f-bd81-ba11f4d870fe",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "2131db1a-5b78-4b51-bb03-f5163f55c961"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "47630ab0-97db-44a1-88d0-45a66751b7c5",
|
|
"value": "8e473a4c59419617eda8596a4f88c050"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e3ab974a-574b-4563-850f-9c806db0f128",
|
|
"value": "86b85612ebe92fddbb8acdb81a23b3d9edba3cbc"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "5e2ec12a-2664-4dbc-b20d-d98cfa70ee60",
|
|
"value": "8a4515c285fd0779292f0ac7d08f6bb5b6fca00a23ce98133e52625ee11bbf36"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048187",
|
|
"uuid": "1d8386a5-94a3-418f-bd81-ba11f4d870fe",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "04da050f-984a-4081-846e-433c0d71cf62",
|
|
"value": "2020-10-30T00:44:35+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "9e38efa0-b5f6-43c5-84a8-1224c1a4ec2e",
|
|
"value": "https://www.virustotal.com/gui/file/8a4515c285fd0779292f0ac7d08f6bb5b6fca00a23ce98133e52625ee11bbf36/detection/f-8a4515c285fd0779292f0ac7d08f6bb5b6fca00a23ce98133e52625ee11bbf36-1604018675"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "5aea5a74-a12f-43d5-9916-2faab7c86e04",
|
|
"value": "58/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048187",
|
|
"uuid": "7e5e847c-9c77-4184-8d70-9c5e59739b82",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "7e5e847c-9c77-4184-8d70-9c5e59739b82",
|
|
"referenced_uuid": "cb350869-f30b-4548-bd9f-9835eba3747a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "0f657a48-58ea-44ca-9434-276621ec0570"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "ff255479-2802-4cc2-9ed4-a8e8dfc11239",
|
|
"value": "23f82c716239d61c91bbf190621c1ce1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e8c91af7-d307-407d-bd4c-191ddde4c8d8",
|
|
"value": "3951accff0d6f75164ca256f8f070240d6806370"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "399a9f13-30d5-4a1e-bb71-d7fa517849cb",
|
|
"value": "d6f97c6dbe021f02adb2139fc990996ca0d670ceab0189017e69171298ea9c27"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048187",
|
|
"uuid": "cb350869-f30b-4548-bd9f-9835eba3747a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "3b6936e9-79d9-4526-86d4-dd4d5884ec94",
|
|
"value": "2020-03-30T18:26:54+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "2328b7fe-33f1-4e49-ab65-ea800d03ae75",
|
|
"value": "https://www.virustotal.com/gui/file/d6f97c6dbe021f02adb2139fc990996ca0d670ceab0189017e69171298ea9c27/detection/f-d6f97c6dbe021f02adb2139fc990996ca0d670ceab0189017e69171298ea9c27-1585592814"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "888a7681-bae1-4270-b4ad-5522ad6bdfda",
|
|
"value": "40/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048187",
|
|
"uuid": "0cf779f9-164d-457d-ad04-ea623e3076d3",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "0cf779f9-164d-457d-ad04-ea623e3076d3",
|
|
"referenced_uuid": "1197e5b8-cd16-493f-a5b8-8f9491c300f9",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "2357df44-75c2-4474-a07d-0d5e4a1797f0"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "d2a3a807-cb2a-49f0-83d3-20fa3d8d91c7",
|
|
"value": "b75840aa5b36fe12522f785561a03521"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "9e041759-c49f-4a26-a2a0-818be61fadf8",
|
|
"value": "2989b2650ba134e3a2ea31108f0c9f7c61817069"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "eeb8b2b1-ce78-4ba4-9a67-c3ada8fb0c8a",
|
|
"value": "ffd51f3de4ba08508ca7c19dd15676c2c8f4a61891c1dea297bb648633485bcd"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048187",
|
|
"uuid": "1197e5b8-cd16-493f-a5b8-8f9491c300f9",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "cb6d6d31-f747-47cc-ab5e-49bf81b8a260",
|
|
"value": "2020-10-27T12:07:53+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "74bc5fdf-c2b7-4f1e-893e-f4dd7c85cfea",
|
|
"value": "https://www.virustotal.com/gui/file/ffd51f3de4ba08508ca7c19dd15676c2c8f4a61891c1dea297bb648633485bcd/detection/f-ffd51f3de4ba08508ca7c19dd15676c2c8f4a61891c1dea297bb648633485bcd-1603800473"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "2e5f82e4-a075-4222-9c1f-98226159fec8",
|
|
"value": "37/64"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048187",
|
|
"uuid": "7169c4a0-202c-4276-aa95-4209b3d9e92a",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "7169c4a0-202c-4276-aa95-4209b3d9e92a",
|
|
"referenced_uuid": "ac2f44f8-9449-4acb-8612-7068a7fb9c88",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "da46a06f-0b66-4497-ad14-988822f072cb"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "d284fa3b-6b2c-43c4-88a5-e13543807e2f",
|
|
"value": "4d79c23c41794ed2ea6ce6283184fecd"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "6b04c588-d13e-4725-93ee-387be2694a30",
|
|
"value": "c655380d880dc254bf0303ecdebd21be2019fea3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "dfdbfc42-28cb-4c06-84dd-e70038878e37",
|
|
"value": "31045ab2d2e8f7074e2d0f312b4b79387a6794c4455100d501f6c5ea220ad207"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048187",
|
|
"uuid": "ac2f44f8-9449-4acb-8612-7068a7fb9c88",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "8bf7424f-f459-4e76-8dad-a86746af8456",
|
|
"value": "2020-10-06T14:08:37+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "5ccd5b97-a9ee-46e0-9d53-b186f78b5d65",
|
|
"value": "https://www.virustotal.com/gui/file/31045ab2d2e8f7074e2d0f312b4b79387a6794c4455100d501f6c5ea220ad207/detection/f-31045ab2d2e8f7074e2d0f312b4b79387a6794c4455100d501f6c5ea220ad207-1601993317"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "ce9a88a4-8d24-4ec4-b4dd-bc3d64b773a7",
|
|
"value": "57/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048187",
|
|
"uuid": "39872eaa-fca6-44e8-942d-07104ec61f98",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "39872eaa-fca6-44e8-942d-07104ec61f98",
|
|
"referenced_uuid": "b5a4ef02-e2a8-4ff5-941f-82a9b7be9f9b",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "2e74d56b-e5ba-46fc-903d-7fa60c375668"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "a7129079-6233-451b-9515-de67e126df03",
|
|
"value": "d80015cfd1b5b289440b2e81f2061519"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "d81370e5-f3c2-4d4e-a18d-2f8a22a9acd0",
|
|
"value": "9fbff4c08b3cdd8cd47a1c4980c94115693d85e8"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "f86888bf-c97d-4b8a-bf0a-261b68bdf3c7",
|
|
"value": "e1e154590062bab331805d1657cbdea323053e25e0c5efe4a93d2deeca689452"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048187",
|
|
"uuid": "b5a4ef02-e2a8-4ff5-941f-82a9b7be9f9b",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "f5bfdb31-2ab7-476c-928f-f6fb0a862416",
|
|
"value": "2020-10-16T11:08:53+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "c1c459cf-7b59-41c5-92c1-ad98b44737a8",
|
|
"value": "https://www.virustotal.com/gui/file/e1e154590062bab331805d1657cbdea323053e25e0c5efe4a93d2deeca689452/detection/f-e1e154590062bab331805d1657cbdea323053e25e0c5efe4a93d2deeca689452-1602846533"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "9acd1e67-9aab-4ca7-a58e-e7591849d622",
|
|
"value": "57/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048187",
|
|
"uuid": "85318a94-ab67-4089-9af3-32be44d7c131",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "85318a94-ab67-4089-9af3-32be44d7c131",
|
|
"referenced_uuid": "259af175-f2fb-4292-ba82-692fb829126d",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "7225aca0-4616-45fe-9bf9-b4b29f9e1454"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "461c08f7-2718-4635-8f98-df129b12d886",
|
|
"value": "854505042c28adc1a3e610ffc46950d7"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "d19562c3-bb8f-4b3e-9dc5-9a001a2bb473",
|
|
"value": "7b57bb7de7c50dd430938f4355797b4d1a5de299"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a9835c9a-21e4-464d-8fdd-1f89651f91f6",
|
|
"value": "9e513f9876410f792a0f97c8bead2122c9f26cf07136fe8afbac8da48120953b"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048187",
|
|
"uuid": "259af175-f2fb-4292-ba82-692fb829126d",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "6be03700-a6cd-4d09-aa6a-14f6275beb4a",
|
|
"value": "2020-10-27T04:37:39+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "b98fe712-bb62-4678-aa60-305fe1910982",
|
|
"value": "https://www.virustotal.com/gui/file/9e513f9876410f792a0f97c8bead2122c9f26cf07136fe8afbac8da48120953b/detection/f-9e513f9876410f792a0f97c8bead2122c9f26cf07136fe8afbac8da48120953b-1603773459"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "9d1f63b2-f72b-4970-a2ee-b264fd935afd",
|
|
"value": "52/61"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048187",
|
|
"uuid": "b16b9ea1-7e8a-4dd7-ace1-1ce87d453a89",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "b16b9ea1-7e8a-4dd7-ace1-1ce87d453a89",
|
|
"referenced_uuid": "a5ae663f-2dfa-4b90-bc5d-ead300eb2441",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "a92b4952-f88c-44c7-8565-3572ddc2f005"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "83cda300-921f-49ec-9d03-4136fe03ad9b",
|
|
"value": "45c4e9677ac5daf4c2e37228e98b09a4"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "7cba8615-0cf2-4b69-81d6-bc40140bbe0d",
|
|
"value": "edd5de852d87da23bfbca2625de7d40010cbc053"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "90679fa1-c845-4d7f-af50-62ffe7511af2",
|
|
"value": "60a45919ec5e67c2843fd08745f26437934ae3ceae76133a23aa0690d6a72f86"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048187",
|
|
"uuid": "a5ae663f-2dfa-4b90-bc5d-ead300eb2441",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "4078cbb1-a6d0-4b75-a5e7-f6673ed04199",
|
|
"value": "2020-10-30T06:19:02+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "74158aed-febe-4986-8296-548438e1de11",
|
|
"value": "https://www.virustotal.com/gui/file/60a45919ec5e67c2843fd08745f26437934ae3ceae76133a23aa0690d6a72f86/detection/f-60a45919ec5e67c2843fd08745f26437934ae3ceae76133a23aa0690d6a72f86-1604038742"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "09cbca5a-16b5-4ffb-a49d-b767acf7e3a4",
|
|
"value": "57/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "4bada252-c578-43d6-9196-94b816fd373e",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "4bada252-c578-43d6-9196-94b816fd373e",
|
|
"referenced_uuid": "59a33fb7-bbfb-4df0-bade-05bd106312c2",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "c022e81f-b23d-4754-be1c-2b368147c593"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "5294604f-c3b6-4737-a46e-30812f19209f",
|
|
"value": "f7ee8811189110a112ea32aa64eba823"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "3b94df8f-f6b4-4785-a333-7f04547b98b9",
|
|
"value": "b302c4b84b82190b3d15f8c7788108a13859319d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "79be0a02-ac3f-4805-aabe-8d42ba2e405e",
|
|
"value": "93193c90f568ae1ebdbdd5607c00ce250f6c886cec60724bdcf5e25c6ba82554"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048188",
|
|
"uuid": "59a33fb7-bbfb-4df0-bade-05bd106312c2",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "356182a0-230b-4c27-8fbe-78bed2970b9d",
|
|
"value": "2020-10-30T00:47:36+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "8632bb68-3991-4e9c-9971-8c84dbc0e6f3",
|
|
"value": "https://www.virustotal.com/gui/file/93193c90f568ae1ebdbdd5607c00ce250f6c886cec60724bdcf5e25c6ba82554/detection/f-93193c90f568ae1ebdbdd5607c00ce250f6c886cec60724bdcf5e25c6ba82554-1604018856"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "608bbc6f-f669-4b37-9f8a-10affadb6591",
|
|
"value": "56/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "c09dc808-4138-4d16-9516-df61205371e0",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "c09dc808-4138-4d16-9516-df61205371e0",
|
|
"referenced_uuid": "56d3a112-940d-4480-85de-d34f6cd6ebdb",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "9de6e9cf-618d-48cf-aa01-42c09498e80d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "90d86b07-4d14-494c-8f95-236acdc34417",
|
|
"value": "7d1504013c7f23e592691f90e6b2b2d5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e2b5bb23-2f35-4743-84b5-dd4a97bfd03a",
|
|
"value": "8bcad2a2ec67a4ad7501c67ae381986e4fd7e323"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "138ab713-9947-4597-aa80-7a120746489c",
|
|
"value": "bb412455c3988a845ee04cd9f665df285bb00dfb62af377ff9a06d6f032e3aa1"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048188",
|
|
"uuid": "56d3a112-940d-4480-85de-d34f6cd6ebdb",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "b55f9e53-3ee3-42dd-8397-94825ce86a56",
|
|
"value": "2020-10-12T08:13:38+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "f8b4602d-954e-4e04-bd08-8427590e210a",
|
|
"value": "https://www.virustotal.com/gui/file/bb412455c3988a845ee04cd9f665df285bb00dfb62af377ff9a06d6f032e3aa1/detection/f-bb412455c3988a845ee04cd9f665df285bb00dfb62af377ff9a06d6f032e3aa1-1602490418"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "a746028b-3fea-48ae-9724-636d791eb419",
|
|
"value": "58/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "3b583c88-393d-49f8-9b29-3773a8ee7f92",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3b583c88-393d-49f8-9b29-3773a8ee7f92",
|
|
"referenced_uuid": "5fb79bae-c985-40ec-822e-48bcd90ef8f8",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "5aee47b9-a267-43e7-90b9-bb8254c25e9a"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "018c2287-d129-4c4b-b621-534127a9c612",
|
|
"value": "2beab2a02d798705e18ea0394898a2b6"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "492362b8-daf6-4ad0-8169-b501834507f2",
|
|
"value": "e30bc0c5527bc08bf8e72216ffb7ddca785b4ef5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "fdc96fad-5632-4c2a-a717-4e910ef2410e",
|
|
"value": "9dce80e3b848c6a52a89e89b4d8904635a7a0a6a069f6c164b2becb5eda4d814"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048188",
|
|
"uuid": "5fb79bae-c985-40ec-822e-48bcd90ef8f8",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "e2a34e40-269a-4bd9-810c-67f2570642e1",
|
|
"value": "2020-10-30T00:47:54+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "7e7aa370-e0ea-4bdb-b7c9-bd9afb30d896",
|
|
"value": "https://www.virustotal.com/gui/file/9dce80e3b848c6a52a89e89b4d8904635a7a0a6a069f6c164b2becb5eda4d814/detection/f-9dce80e3b848c6a52a89e89b4d8904635a7a0a6a069f6c164b2becb5eda4d814-1604018874"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "1d3a2c8c-c1e2-4bd2-91b6-759bf269d545",
|
|
"value": "60/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "0160b000-c718-4bc9-adc4-40fdaadbfe06",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "0160b000-c718-4bc9-adc4-40fdaadbfe06",
|
|
"referenced_uuid": "cf6f7ae6-d0d1-4846-bd3f-eada735297bb",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "e678f253-b82f-46aa-8adc-2fe0a64282b2"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "56fcb870-1bfa-445f-8172-7fd33fe3ed8c",
|
|
"value": "9ff18f7a19e06b602e19b9e0aca3ad84"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "37dc9c83-1a9c-4b13-8f3a-d08386cb1d73",
|
|
"value": "bcbb5bbc55b4f44397c34e9fca2017587e69219b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "4f202e9b-ed70-409b-8aa4-ce6c1e9aa7da",
|
|
"value": "9d8cbb2bf4801276de2143ccd64a7d0f66263809a90bea0b664282a15d121d9e"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048188",
|
|
"uuid": "cf6f7ae6-d0d1-4846-bd3f-eada735297bb",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "32508ebb-7e71-40db-850e-1f867fe9a3f2",
|
|
"value": "2020-10-29T15:22:04+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "fb0e10e5-4052-4788-af23-6cbcc686848e",
|
|
"value": "https://www.virustotal.com/gui/file/9d8cbb2bf4801276de2143ccd64a7d0f66263809a90bea0b664282a15d121d9e/detection/f-9d8cbb2bf4801276de2143ccd64a7d0f66263809a90bea0b664282a15d121d9e-1603984924"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "e38761fa-8696-4b65-84af-3da55c0fe953",
|
|
"value": "49/67"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "2f72d335-4d2e-446b-b91c-9f3ec0c5825f",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "2f72d335-4d2e-446b-b91c-9f3ec0c5825f",
|
|
"referenced_uuid": "671d9a9c-557b-4954-afb7-84116dfaafdf",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "e59d6e4e-2e49-4e9d-980c-5d8162df59cf"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "37d9e62d-996f-400c-a06b-c4f7145d8d08",
|
|
"value": "9843710a665219484ba6b93b0f3aff5d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "25999d3d-64d7-4242-9dd3-b9d5217b0333",
|
|
"value": "66c9c98978bac095f5f69ac84e06b7ea7d509120"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e4d9ca29-d158-40c0-a22b-2352a8c5f999",
|
|
"value": "625bd1db4f5fbd8fa9a4c78bc7f1ffe421dead5b0b0b4b2a65be879f9a123a23"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048188",
|
|
"uuid": "671d9a9c-557b-4954-afb7-84116dfaafdf",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "3883a4ea-d381-4e47-bdb0-7387bbc5e6c3",
|
|
"value": "2020-10-30T05:13:47+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "09698b6c-8eb6-4339-8826-f2eb5e20e8bc",
|
|
"value": "https://www.virustotal.com/gui/file/625bd1db4f5fbd8fa9a4c78bc7f1ffe421dead5b0b0b4b2a65be879f9a123a23/detection/f-625bd1db4f5fbd8fa9a4c78bc7f1ffe421dead5b0b0b4b2a65be879f9a123a23-1604034827"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "cb2d5465-817c-4342-9d5f-27d43f79e934",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "a5d51c54-9186-434c-9370-1b043a73527e",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "a5d51c54-9186-434c-9370-1b043a73527e",
|
|
"referenced_uuid": "b1c3a402-f547-4396-982a-95a61fc14c24",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "73438a0c-8ad5-40e7-a7f4-a4344c21770d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "d9240f39-6324-44f6-b2c7-19e5f80f0e23",
|
|
"value": "a661aeb906f044b100f557a47f6003a1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "303383f8-83a7-4d4e-be16-ef81e6202c6c",
|
|
"value": "607f6034eae83b6546060cff5085d79b0bb0a7cd"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "8eaf6571-a0a5-43eb-b57a-d2b37ffdc41b",
|
|
"value": "ba2a96dae66324df5bbb0751a04c538722ad49daa12d51625f8a1890608b1168"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048188",
|
|
"uuid": "b1c3a402-f547-4396-982a-95a61fc14c24",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "9799978b-2ba6-4e31-9df6-3c5d357cd890",
|
|
"value": "2020-10-17T00:22:53+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "69f27191-8030-4661-a91d-4140505922ea",
|
|
"value": "https://www.virustotal.com/gui/file/ba2a96dae66324df5bbb0751a04c538722ad49daa12d51625f8a1890608b1168/detection/f-ba2a96dae66324df5bbb0751a04c538722ad49daa12d51625f8a1890608b1168-1602894173"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "2123b422-059d-474a-8436-2f25f90a01a4",
|
|
"value": "49/70"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "39ae68e0-13ea-4711-b214-3af059803286",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "39ae68e0-13ea-4711-b214-3af059803286",
|
|
"referenced_uuid": "36c61803-2877-405f-b6b0-5acbe905782e",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "f211fbab-8ffd-4104-8601-5354e7b7d1a1"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "2626c43f-7d14-4924-8d17-81d9c248bb44",
|
|
"value": "b3538b8fe99d1912479e0312f184f996"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "0b460801-5401-4081-ab10-021e90601f38",
|
|
"value": "39fd9e92abcb2375c834a388ad68c540e31bbaf2"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "31dd40d1-f243-4467-b6b6-7705bcf79758",
|
|
"value": "9f74293d070390a2f783030eed5de4c64b1d32e2046b8c440cc39984b453b12f"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048188",
|
|
"uuid": "36c61803-2877-405f-b6b0-5acbe905782e",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "3fdfbb7f-dd4e-4731-9fa8-82148cfa1054",
|
|
"value": "2020-10-30T00:48:00+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "35d8797c-e3d3-450f-8fc9-e158514a3fc5",
|
|
"value": "https://www.virustotal.com/gui/file/9f74293d070390a2f783030eed5de4c64b1d32e2046b8c440cc39984b453b12f/detection/f-9f74293d070390a2f783030eed5de4c64b1d32e2046b8c440cc39984b453b12f-1604018880"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "c2cb51e3-0921-411b-ad15-58dc86ee7d7d",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "2a42886a-67dc-44e5-bdec-bca5c3b4aaf3",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "2a42886a-67dc-44e5-bdec-bca5c3b4aaf3",
|
|
"referenced_uuid": "09d1177b-e3e6-4f3d-925b-ac25620cad00",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "5b83bff2-3d56-4d21-ad1a-c8264a266165"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "b0b001d7-466a-468f-b5f4-4c607e515d0f",
|
|
"value": "274cc6ab4f50a45f91bd491efbd9c7ba"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e6267bf7-27d6-431e-821d-bca7732a5a24",
|
|
"value": "16d66c07666dc9900ff46cdb3738f4df48368cb3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "7fef6329-372d-4c5f-8fad-56fc25fb6038",
|
|
"value": "d9dc572d6e446ec7629479eb60119b57a135e77aae22ea9f5a29a543af85b7da"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048188",
|
|
"uuid": "09d1177b-e3e6-4f3d-925b-ac25620cad00",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "a7d77b68-1945-4cd3-8082-eec0234042c6",
|
|
"value": "2020-05-07T15:18:07+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "f762a1bc-bd9d-4c66-9257-5ccc15d86f3d",
|
|
"value": "https://www.virustotal.com/gui/file/d9dc572d6e446ec7629479eb60119b57a135e77aae22ea9f5a29a543af85b7da/detection/f-d9dc572d6e446ec7629479eb60119b57a135e77aae22ea9f5a29a543af85b7da-1588864687"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "4559dbdb-43c7-425b-b9fd-3344f1966af9",
|
|
"value": "0/59"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "be44f41e-6b44-4cc5-9f3d-8bf5755c4e91",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "be44f41e-6b44-4cc5-9f3d-8bf5755c4e91",
|
|
"referenced_uuid": "90c6a983-0097-405d-816a-d7d0aa604363",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "3f072f33-903c-48a9-b041-31f07f425d4c"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "3af64b70-b61c-4b8e-a097-e1c7d7b367ea",
|
|
"value": "f2d75e2de4845c1478497c28cbc42251"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "62304165-4d56-480f-a55d-7c26a552962f",
|
|
"value": "f4a806dc83bddf79d1973c421997668a9e125cfc"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "fa6ba591-7985-4941-9f79-11bd80304302",
|
|
"value": "5c3569c166654eed781b9a2a563adec8e2047078fdcbafcdef712fabf2dd3f57"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048188",
|
|
"uuid": "90c6a983-0097-405d-816a-d7d0aa604363",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "ffc60bae-969c-465b-afd3-6b2f7a4bc7a6",
|
|
"value": "2020-08-26T20:02:37+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "2da6cd1d-a596-4464-9855-c7be999a0e96",
|
|
"value": "https://www.virustotal.com/gui/file/5c3569c166654eed781b9a2a563adec8e2047078fdcbafcdef712fabf2dd3f57/detection/f-5c3569c166654eed781b9a2a563adec8e2047078fdcbafcdef712fabf2dd3f57-1598472157"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "510a5537-0ed6-4f67-8413-51737ebed69e",
|
|
"value": "52/68"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "c2b35c06-e9fb-4bc9-be25-fc70417cedf4",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "c2b35c06-e9fb-4bc9-be25-fc70417cedf4",
|
|
"referenced_uuid": "8a87830e-ecc9-495e-84ba-a143f2bcd94f",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "446bdeab-d5d1-4014-aae2-c0636c81bb7d"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "5127290a-b979-4754-a9f5-52867c1767da",
|
|
"value": "f8aae4c883e19e3e1e880e7ae38c2369"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "d22ab7dc-dd12-48b7-8770-3387fc8f9828",
|
|
"value": "f3ca59da7702ca9cb8fdb9f1b764ef2c7915a8a5"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "6df08d01-d5be-4aa0-8385-a33a0038613b",
|
|
"value": "8b6c3018958e7ae20989045811358b1225606000c879000c779444cc50290d9e"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048188",
|
|
"uuid": "8a87830e-ecc9-495e-84ba-a143f2bcd94f",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "b39033ca-a37c-41bf-a06b-f1d307e6419b",
|
|
"value": "2020-10-30T00:44:36+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "d6bab64e-816d-4cc0-833c-9afcfab48587",
|
|
"value": "https://www.virustotal.com/gui/file/8b6c3018958e7ae20989045811358b1225606000c879000c779444cc50290d9e/detection/f-8b6c3018958e7ae20989045811358b1225606000c879000c779444cc50290d9e-1604018676"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "2a749950-8809-4ce2-b906-07c453156a80",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048188",
|
|
"uuid": "4e1bef3c-5152-40f7-b83f-b29b1737af98",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "4e1bef3c-5152-40f7-b83f-b29b1737af98",
|
|
"referenced_uuid": "6a445163-58d2-473d-9100-c9b17e1d420b",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "2e7041f2-1b20-4a9f-ab50-189dfdc8e0d4"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "96174b67-61c8-4a43-a506-6efc24b3f2fb",
|
|
"value": "940cc2c6dcd0bdc0875abbc7a309a345"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "e345ead2-bab0-4c69-9dcf-3b3787709cbd",
|
|
"value": "83d78d12cf7f8bb291c7a65ece1a0bc92d11d03d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "237b222d-e6a9-4dc0-a5b1-4842c8cbf651",
|
|
"value": "98266835a238797f34d1a252e6af0f029c7823af757df10609f534c4f987e70f"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048189",
|
|
"uuid": "6a445163-58d2-473d-9100-c9b17e1d420b",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "433fc300-54dc-4fcd-ba73-96b5c730d76a",
|
|
"value": "2020-09-18T21:42:06+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "79f307a4-cf36-434a-9696-a45a70e2837c",
|
|
"value": "https://www.virustotal.com/gui/file/98266835a238797f34d1a252e6af0f029c7823af757df10609f534c4f987e70f/detection/f-98266835a238797f34d1a252e6af0f029c7823af757df10609f534c4f987e70f-1600465326"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "df18e53a-9f89-4b53-b67f-237b8bdc32bc",
|
|
"value": "48/66"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048189",
|
|
"uuid": "059a2690-75da-4ce5-aa90-f93ab97f530f",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "059a2690-75da-4ce5-aa90-f93ab97f530f",
|
|
"referenced_uuid": "fbaaca08-1b6c-44c6-9aec-171935d04e5c",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "d6c5ef5c-d92f-4415-8215-7ad66410913e"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "f8361373-33c6-40c9-ab1b-42967ddd9a04",
|
|
"value": "26337d35353d2df5d778a4ed6075cb70"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "f4769878-6d21-42e1-b755-8660f39c2523",
|
|
"value": "996bfa802dc83374fe9b018f39a004aae76e51fb"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "60f71ba7-88af-494c-924a-3efff6c9191e",
|
|
"value": "5eddf95ec34e512d6db1058fdd9fa886e3fc1e7d4090d1999f1764627db5c1ee"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048189",
|
|
"uuid": "fbaaca08-1b6c-44c6-9aec-171935d04e5c",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "53c7a1b3-6d46-48dc-8459-7730db9958bc",
|
|
"value": "2020-10-29T09:44:32+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "408461a3-6fb8-4e40-96ca-48a9415f1a7c",
|
|
"value": "https://www.virustotal.com/gui/file/5eddf95ec34e512d6db1058fdd9fa886e3fc1e7d4090d1999f1764627db5c1ee/detection/f-5eddf95ec34e512d6db1058fdd9fa886e3fc1e7d4090d1999f1764627db5c1ee-1603964672"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "daafdcb0-8f46-47df-9774-254638c648dc",
|
|
"value": "52/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048189",
|
|
"uuid": "1e10c051-b1b1-44b5-9c28-8dd9e3752a6c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "1e10c051-b1b1-44b5-9c28-8dd9e3752a6c",
|
|
"referenced_uuid": "8dfb30ca-fe11-45b7-96df-67e092866720",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "27177178-016c-4106-ba9d-94b6d27fc8c7"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "658c1e46-fede-4199-b3f8-fcbd0c16ffc0",
|
|
"value": "89c640bec51ab9f8d97add9a0dd39512"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "1f05b64e-53a3-4f89-bdcc-f69cafda21fd",
|
|
"value": "607b6ac839547dc71058044d033528e34e6e004d"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "bc2a6a57-4772-4bdf-9454-eba452cd6259",
|
|
"value": "0e464ad7bde50e55aa42dac985295e22deb78c1a48809563f18cd4a6f47a104a"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048189",
|
|
"uuid": "8dfb30ca-fe11-45b7-96df-67e092866720",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "a9394aa7-bc9b-4ea1-aab9-34a1d8743d5d",
|
|
"value": "2020-10-30T00:42:00+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "5b461b90-473e-48e5-b9b7-3f0e929821a3",
|
|
"value": "https://www.virustotal.com/gui/file/0e464ad7bde50e55aa42dac985295e22deb78c1a48809563f18cd4a6f47a104a/detection/f-0e464ad7bde50e55aa42dac985295e22deb78c1a48809563f18cd4a6f47a104a-1604018520"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "3ae3a26e-86dc-4f38-a48f-2697f488bff4",
|
|
"value": "58/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048189",
|
|
"uuid": "1253fc5b-4990-4d6b-957f-c0df3912a373",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "1253fc5b-4990-4d6b-957f-c0df3912a373",
|
|
"referenced_uuid": "e186fa28-a483-46dc-841d-47cf32443adf",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "2deab56c-c98c-4dcd-93ae-425877289556"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "0f1230b8-d31e-496c-b4e3-760ff302834c",
|
|
"value": "0bacda01ec71e1df695121f1c614f67b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "4e3c6e23-f672-4dea-be02-bd2536a4ecbe",
|
|
"value": "b31ba210bfdbad030832f7770f55090fb4e727c3"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "2bcb72e4-5fac-415b-ad25-75f6f70cbcef",
|
|
"value": "c498a138ca1fb1ae1c834cbe5f76eda226b0fa7b29bc6cbd8b92478e394b287f"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048189",
|
|
"uuid": "e186fa28-a483-46dc-841d-47cf32443adf",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "ada0a960-ca62-4646-bbfd-48885f92acbf",
|
|
"value": "2020-10-30T00:48:53+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "b8b5215b-d7dd-41c9-8c9d-540abc742be4",
|
|
"value": "https://www.virustotal.com/gui/file/c498a138ca1fb1ae1c834cbe5f76eda226b0fa7b29bc6cbd8b92478e394b287f/detection/f-c498a138ca1fb1ae1c834cbe5f76eda226b0fa7b29bc6cbd8b92478e394b287f-1604018933"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "be3cde49-3c9d-4522-96a8-8fc26be14de0",
|
|
"value": "61/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048189",
|
|
"uuid": "80f3ef4a-a9a5-4329-9597-21fb85287468",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "80f3ef4a-a9a5-4329-9597-21fb85287468",
|
|
"referenced_uuid": "d6ecedb2-858f-4080-8238-1e674aaa6d83",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "e768ca8e-9b60-4a43-96c5-ac5b1f3674a5"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "7f938646-be7f-44ca-b265-bd8228481d94",
|
|
"value": "253ae06106861c81af9cf9b94f8e3119"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "92423753-81c2-4a07-8e51-3aebf91f0448",
|
|
"value": "935374a7e94dcf3811d2e27c46dc451688e6e71c"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "a253dea0-5558-4f7a-a4fd-fc93c0a02529",
|
|
"value": "841680207f8c57f4e183610f022f01642d86c5a2fd0323463039b751e5559dc4"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048189",
|
|
"uuid": "d6ecedb2-858f-4080-8238-1e674aaa6d83",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "04f9b9de-0bf1-46dd-8b77-c23c2effcab9",
|
|
"value": "2020-10-30T00:40:02+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "15550c70-82e2-457f-af29-8ea498b1d480",
|
|
"value": "https://www.virustotal.com/gui/file/841680207f8c57f4e183610f022f01642d86c5a2fd0323463039b751e5559dc4/detection/f-841680207f8c57f4e183610f022f01642d86c5a2fd0323463039b751e5559dc4-1604018402"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "70d8911e-13f1-451b-b7fc-850a3c10fb48",
|
|
"value": "41/72"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048189",
|
|
"uuid": "9bfa8642-f8fe-4e9e-a37f-5d43e5aeaf03",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "9bfa8642-f8fe-4e9e-a37f-5d43e5aeaf03",
|
|
"referenced_uuid": "9e583e66-b14c-47cb-815e-a0b0d1e85b4a",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "01827df7-c945-491f-ac69-f8c30fe8947b"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "480edeab-4cfc-449e-b1ad-49a20b2d480e",
|
|
"value": "fb03bd4432d38fe633327532d151e76b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "35929654-b4b5-45bf-97c7-f21a8aa48eab",
|
|
"value": "ebcd5403d15c3289621c318751eb80069c8baa38"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "e5fa875a-ec8a-436a-9f33-b7b065b2cbab",
|
|
"value": "7753fd8c401e0efd8e5d0db07ea7b60eb45d034b7685b656d708f3885d8e7906"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048189",
|
|
"uuid": "9e583e66-b14c-47cb-815e-a0b0d1e85b4a",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "d479b74e-2584-48bd-9b4c-2319fe10e098",
|
|
"value": "2020-10-11T04:34:18+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "85fc02fd-1640-43e6-bec5-c0a97b2c1af9",
|
|
"value": "https://www.virustotal.com/gui/file/7753fd8c401e0efd8e5d0db07ea7b60eb45d034b7685b656d708f3885d8e7906/detection/f-7753fd8c401e0efd8e5d0db07ea7b60eb45d034b7685b656d708f3885d8e7906-1602390858"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "7cc9fb79-2ca4-4674-aa0f-de1ce8f71b37",
|
|
"value": "56/69"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048189",
|
|
"uuid": "ee861cc7-1104-4b21-8c06-d0f92bef929c",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "ee861cc7-1104-4b21-8c06-d0f92bef929c",
|
|
"referenced_uuid": "35cc2bf0-ecbe-4b5e-9db6-912ebeefb488",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "e68a1961-c939-4aaf-991a-4e50b4fa4313"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "c33a55ac-8e33-4c8b-8acc-498207add39a",
|
|
"value": "3a500781f60fc0cd6ac12a51b1fad722"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "1eefdbc9-5cf7-4781-b1fc-4c0088068c20",
|
|
"value": "73051cb1c60ea18ce23e1d0ea92703faf3734cc9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "834e889f-2890-4992-a11c-fa6a255f082b",
|
|
"value": "f6f3d1d060274e114c80bcd35c3f5e97909cf6ffd793bdab27d1eb913a0d391e"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048189",
|
|
"uuid": "35cc2bf0-ecbe-4b5e-9db6-912ebeefb488",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "459f8814-f7d8-4079-9391-22db64a08009",
|
|
"value": "2020-10-14T00:53:16+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "f37a6169-d754-4198-a6dc-b5645ca4f36e",
|
|
"value": "https://www.virustotal.com/gui/file/f6f3d1d060274e114c80bcd35c3f5e97909cf6ffd793bdab27d1eb913a0d391e/detection/f-f6f3d1d060274e114c80bcd35c3f5e97909cf6ffd793bdab27d1eb913a0d391e-1602636796"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "94c442eb-e575-4ade-83cb-54861f524357",
|
|
"value": "1/59"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048189",
|
|
"uuid": "3645e877-e229-407e-9b05-f50f5bc924de",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3645e877-e229-407e-9b05-f50f5bc924de",
|
|
"referenced_uuid": "b73a48db-798e-497b-9654-9467f848615f",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "b450dcc6-3459-4909-81ae-49ad1938dd37"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "d1be1dc0-eedf-4be7-88fc-dc25bc4b9cb3",
|
|
"value": "a6d36eca69afde7c05d3d71a8612f2b9"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "3a684428-bef5-4bc5-9896-b51a5017fa8b",
|
|
"value": "4dad5f8b4fce542b1038195c33e2980a9810ea69"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045647",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "22156854-a3e6-4d55-bfe1-87d704d1cf42",
|
|
"value": "f20c78fb33d42d874ed6fdf7096a4dad9b3637e05ccc8ae52ee6cc4e5dd8a0bf"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048189",
|
|
"uuid": "b73a48db-798e-497b-9654-9467f848615f",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "7011db15-dc4f-4712-8ab5-2631d98a7034",
|
|
"value": "2020-06-11T10:18:29+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "a8f5da4a-e3e5-42f4-bac7-43a590055c1a",
|
|
"value": "https://www.virustotal.com/gui/file/f20c78fb33d42d874ed6fdf7096a4dad9b3637e05ccc8ae52ee6cc4e5dd8a0bf/detection/f-f20c78fb33d42d874ed6fdf7096a4dad9b3637e05ccc8ae52ee6cc4e5dd8a0bf-1591870709"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045647",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "321c7fbe-2c72-4ac0-80fc-0ab868c50a53",
|
|
"value": "31/61"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048189",
|
|
"uuid": "8d9e3f84-afe5-459f-a511-733d0a6c73a1",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "8d9e3f84-afe5-459f-a511-733d0a6c73a1",
|
|
"referenced_uuid": "f7bf32fc-5b23-410b-8f1d-0e5408c44680",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "8782d52c-737e-4d88-ac7e-102bfa28c4c4"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "f275a4ad-691e-46fc-806f-00f20ef44eaf",
|
|
"value": "5da1ec0c2839285fd6e098e3ffd5874b"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "b0c35e57-3323-4851-978f-cf93fa26fb58",
|
|
"value": "25cbf4ddc74289a68db98b040386f10e226455fc"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045646",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "8b6700aa-6592-4328-a7d6-6f89bbd413f4",
|
|
"value": "95d4c0e642a3b2c9fab0a2d90b2d127ed12d9ae1e8e721806e9eefc75d77ee3c"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048189",
|
|
"uuid": "f7bf32fc-5b23-410b-8f1d-0e5408c44680",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "bf5842dd-242a-4289-8cc2-599298c32209",
|
|
"value": "2020-10-30T00:47:43+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "77bd6233-0546-44f3-b435-204354765bd9",
|
|
"value": "https://www.virustotal.com/gui/file/95d4c0e642a3b2c9fab0a2d90b2d127ed12d9ae1e8e721806e9eefc75d77ee3c/detection/f-95d4c0e642a3b2c9fab0a2d90b2d127ed12d9ae1e8e721806e9eefc75d77ee3c-1604018863"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045646",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "579564e3-99d4-4823-b1aa-c8cf3b9c7f87",
|
|
"value": "59/71"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "File object describing a file with meta-information",
|
|
"meta-category": "file",
|
|
"name": "file",
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
|
"template_version": "22",
|
|
"timestamp": "1604048189",
|
|
"uuid": "3fb984a2-e658-4433-a266-93ade5cca32b",
|
|
"ObjectReference": [
|
|
{
|
|
"comment": "",
|
|
"object_uuid": "3fb984a2-e658-4433-a266-93ade5cca32b",
|
|
"referenced_uuid": "c7153b15-1d40-4e08-908c-7c2a0d374c12",
|
|
"relationship_type": "analysed-with",
|
|
"timestamp": "0",
|
|
"uuid": "5b8a2aaa-bcda-43d6-a117-e681fa01c460"
|
|
}
|
|
],
|
|
"Attribute": [
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "md5",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "md5",
|
|
"uuid": "dccd0afe-431f-410a-90ed-47d1cf90ebba",
|
|
"value": "9078b42779cf2c9db2d05b233f030405"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha1",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha1",
|
|
"uuid": "27750130-04eb-437d-ab16-038a46c4657b",
|
|
"value": "4bcdd4b2d39284feca4ee9486efe9694729858d1"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "sha256",
|
|
"timestamp": "1604045645",
|
|
"to_ids": true,
|
|
"type": "sha256",
|
|
"uuid": "ce9703d3-bb94-4d44-8656-449b991a8a43",
|
|
"value": "118611de57551faa4b7c029e50317cd6f596275725f61a9f9a11fb59e1ad70df"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"comment": "",
|
|
"deleted": false,
|
|
"description": "VirusTotal report",
|
|
"meta-category": "misc",
|
|
"name": "virustotal-report",
|
|
"template_uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4",
|
|
"template_version": "3",
|
|
"timestamp": "1604048189",
|
|
"uuid": "c7153b15-1d40-4e08-908c-7c2a0d374c12",
|
|
"Attribute": [
|
|
{
|
|
"category": "Other",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "last-submission",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "datetime",
|
|
"uuid": "bda8b7e4-c53b-41de-85ce-e2e94c158d05",
|
|
"value": "2020-10-30T00:42:05+00:00"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": false,
|
|
"object_relation": "permalink",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "link",
|
|
"uuid": "a1fd8a66-bf21-42bd-baa5-4377341c7f9e",
|
|
"value": "https://www.virustotal.com/gui/file/118611de57551faa4b7c029e50317cd6f596275725f61a9f9a11fb59e1ad70df/detection/f-118611de57551faa4b7c029e50317cd6f596275725f61a9f9a11fb59e1ad70df-1604018525"
|
|
},
|
|
{
|
|
"category": "Payload delivery",
|
|
"comment": "",
|
|
"deleted": false,
|
|
"disable_correlation": true,
|
|
"object_relation": "detection-ratio",
|
|
"timestamp": "1604045645",
|
|
"to_ids": false,
|
|
"type": "text",
|
|
"uuid": "d1641baa-1881-4657-9c21-b20ca384ff47",
|
|
"value": "59/72"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
} |