{ "278ef539-3bae-42c6-bc1b-111be296ffb1": { "event_id": 10907, "created_at": "2021-03-29T15:40:37.935101+00:00", "updated_at": "2021-03-29T15:40:38.076004+00:00", "name": "Campagna sLoad italiana via PEC", "description": "allega fatt-di-cortesia[p.iva|c.f.].zip con dentro altro ZIP e wsf", "subject": "Cognome Nome", "tlp": "0", "campaign_type": "malware", "method": "attached", "country": "italy", "file_type": [ "zip", "wsf" ], "theme": "Pagamenti", "malware": "sLoad", "phishing": null, "tag": [], "ioc_list": { "md5": [ "c8a88ff743ef398bd29aa5a0fc79c175", "81fb6cf7adb8bf5cd5576254cf83c4ef", "4c116f94234f9c65bacfb7cfb24241ce" ], "sha1": [ "2e94f292c164f362974b07891fc446513abaa391", "6ae72681971ccc10f3a1d0fdeab5e0f998a3ab2e", "1889da04e1b29a981bd02970eb913fe73a77130b" ], "sha256": [ "cad32b216b5b6caca93b4624c7bfd90f1f95a4a6f5dae5f015cc9dba628f7230", "9e467f3df97f2fa36ef20d144051e61e7884e83574454ff21b0665ff562e33e9", "49200257879e240775d7ae33f51a31b1f1ad6a0fb800c96be6a9791957efca38" ], "imphash": [], "domain": [], "url": [ "https://kuyikryf30.eu/topic/", "https://kuyikryf7.eu/topic/", "https://erthgyrteh21.eu/topic/", "https://kuyikryf3.eu/topic/", "https://erthgyrteh16.eu/topic/", "https://kuyikryf26.eu/topic/", "https://erthgyrteh22.eu/topic/", "https://erthgyrteh15.eu/topic/", "https://erthgyrteh12.eu/topic/", "https://kuyikryf27.eu/topic/", "https://erthgyrteh20.eu/topic/", "https://kuyikryf19.eu/topic/", "https://erthgyrteh17.eu/topic/", "https://erthgyrteh6.eu/topic/", "https://kuyikryf9.eu/topic/", "https://kuyikryf15.eu/topic/", "https://kuyikryf16.eu/topic/", "https://kuyikryf23.eu/topic/", "https://erthgyrteh5.eu/topic/", "https://kuyikryf17.eu/topic/", "https://erthgyrteh9.eu/topic/", "https://erthgyrteh3.eu/topic/", "https://erthgyrteh28.eu/topic/", "https://kuyikryf29.eu/topic/", "https://erthgyrteh.eu/topic/", "https://kuyikryf22.eu/topic/", "https://erthgyrteh11.eu/topic/", "https://pesterbdd.com/images/Pester.png", "https://kuyikryf11.eu/topic/", "https://erthgyrteh19.eu/topic/", "https://erthgyrteh23.eu/topic/", "https://erthgyrteh1.eu/topic/", "https://kuyikryf20.eu/topic/", "https://kuyikryf28.eu/topic/", "https://erthgyrteh18.eu/topic/", "https://kuyikryf21.eu/topic/", "https://erthgyrteh27.eu/topic/", "https://erthgyrteh14.eu/topic/", "https://kuyikryf14.eu/topic/", "https://erthgyrteh2.eu/topic/", "https://kuyikryf2.eu/topic/", "https://kuyikryf6.eu/topic/", "https://erthgyrteh10.eu/topic/", "https://kuyikryf10.eu/topic/", "https://bleuetsetcie.com/service/BSNCLD58A54G693Q/doc.rtf", "https://erthgyrteh13.eu/topic/", "https://erthgyrteh29.eu/topic/", "https://kuyikryf5.eu/topic/", "https://kuyikryf4.eu/topic/", "https://erthgyrteh24.eu/topic/", "https://erthgyrteh8.eu/topic/", "https://cousinlamp.com/sinal/", "https://erthgyrteh30.eu/topic/", "https://kuyikryf8.eu/topic/", "https://erthgyrteh26.eu/topic/", "https://erthgyrteh4.eu/topic/", "https://kuyikryf12.eu/topic/", "https://kuyikryf13.eu/topic/", "https://kuyikryf18.eu/topic/", "https://kuyikryf1.eu/topic/", "https://kuyikryf.eu/topic/", "https://erthgyrteh25.eu/topic/", "https://kuyikryf25.eu/topic/", "https://bottlerocketfx.com/rocky/CRANTN51B41A621U/novo.rtf", "https://kuyikryf24.eu/topic/", "https://erthgyrteh7.eu/topic/" ], "ipv4": [], "email": [] }, "email_victim": [], "ioca_version": "1.0", "organization": "cert-agid" } }