{
    "2e0b4d76-52e0-458a-b736-b031037dfed5": {
        "event_id": 11346,
        "created_at": "2021-07-08T09:16:50.937835+00:00",
        "updated_at": "2021-07-08T09:29:20.407709+00:00",
        "name": "Campagna Dridex come update Kaseya",
        "description": "il file allegato richiede password riportata nel messaggio: *PASSWORD:* *kaseya*",
        "subject": "Update Regarding VSA Security Incident Kaseya",
        "tlp": "0",
        "campaign_type": "malware",
        "method": "attached",
        "country": "generic",
        "file_type": [
            "zip",
            "exe"
        ],
        "theme": "Aggiornamenti",
        "malware": "Dridex",
        "phishing": null,
        "tag": [],
        "ioc_list": {
            "md5": [
                "dfc25e0ea7429af7713993ba8b849325",
                "d6c9cbed3c23d20681caa57f745265c7",
                "1e4f6fea32e12ea5806d9c08976a6d2a"
            ],
            "sha1": [
                "aa652265c401f2671f976e0f7b5d345abafb7d04",
                "bb341db6c19383aaddfe928ac6eefe55cd52f485",
                "09434ba2c13250b4ca61e863e3af714f1015dfe4"
            ],
            "sha256": [
                "b36d806eaad79bef90762133041be2ce977bca5706dd1dc5edb85e78fc6cae20",
                "03b842f01c0fcffe65528c0cda2b41426a01f1e005da63bdae4ce96aa0469a76",
                "e601c1d200be641f1384c80b3d280c5a907947aac067b3737b671e214374382f"
            ],
            "imphash": [],
            "domain": [],
            "url": [],
            "ipv4": [
                "209.44.106.71",
                "54.37.106.167",
                "207.58.132.19"
            ],
            "email": []
        },
        "email_victim": [],
        "ioca_version": "1.0",
        "organization": "cert-agid"
    }
}