{ "d3d37794-9edc-4b1f-a948-c1672f60812d": { "event_id": 13680, "created_at": "2022-11-02T09:10:22.086798+00:00", "updated_at": "2022-11-02T09:41:57.938135+00:00", "name": "Campagna Emotet italiana", "description": "In attesa di riscontro la ringrazio e augurando una buona giornata saluto cordialmente.\r\n\r\nTeledue Fattura 2022 - IT 00348.zip\r\nparola: wRZ9ciL\r\n\r\n\r\nTIPOGRAFIA RAFFAELE SNC\r\nE-mail: info@tipografiaraffaele.it", "subject": "FW:", "tlp": "0", "campaign_type": "malware", "method": "attached", "country": "italy", "file_type": [ "zip", "xls" ], "theme": "Pagamenti", "malware": "Emotet", "phishing": null, "via": "email", "tag": [ "Epoch4" ], "ioc_list": { "md5": [ "2486374800299563ab8934122234242a", "5119259d7d893dc90b321716d779323e", "36d46575f7efbf1fa2a78d69d79facbe", "b29b43dc08d0711e04dd3125aa696413", "e29e42367f284713566c1beda1a29319", "ee3c2e627fec7ca2170dd4d990ca4727" ], "sha1": [ "47bfe94aa96ef43231890f04ccd286b0888e10c8", "74815fd0ddd0a5cdcada32865884290d7472b8df", "27062153dc2b7c9a8ae4b9eeb255468873d12613", "20d5f201fdff546c6095652bd1f422c257d802af", "bbd12f146132afbb27f57f63f81662c7cc154dc4", "af33cf29a956e21b0c9e81341dfdf6bb2850bd5d" ], "sha256": [ "70fb8b371c88b01b86fb03d204394de5913a1daacbe68c70f05ace12f2175dca", "dc7ccffe6baf26f1f8bcd2d0b66a8ba508008e1db0266c612a6ffc476e202a2e", "ef2ce641a4e9f270eea626e8e4800b0b97b4a436c40e7af30aeb6f02566b809c", "4b2253a740cfcde983eed3de1403c163f3826bed2815eb6351713f7ee900193f", "5cf990f9c334db22faf72b0d265abaabcc83a43a2285c642453aad3d2b9a1a72", "693a68b47bab2fa10eeaa560903eac79599eec90df88907fc55bf6b14ec8340c" ], "imphash": [ "6e8babed9b0b941a34aa7c12e96745c0" ], "domain": [], "url": [ "https://geringer-muehle.de/wp-admin/G/", "http://intolove.co.uk/wp-admin/FbGhiWtrEzrQ/", "https://audioselec.com/about/dDw5ggtyMojggTqhc/", "http://isc.net.ua/themes/3rU/" ], "ipv4": [ "169.60.181.70", "95.217.221.146", "187.63.160.88", "182.162.143.56", "149.28.143.92", "91.187.140.35", "94.23.45.86", "110.232.117.186", "164.68.99.3", "164.90.222.65", "115.68.227.76", "183.111.227.244", "209.97.163.214", "139.59.56.73", "119.59.103.152", "183.111.227.137", "82.223.21.224", "153.126.146.25", "201.94.166.162", "172.105.226.75", "12.24.98.99", "1.234.2.232", "129.232.188.93", "186.194.240.217", "101.50.0.91", "169.57.156.166", "185.4.135.165", "173.212.193.249", "197.242.150.244", "5.135.159.50", "139.59.126.41", "147.139.166.154", "72.15.201.15", "103.75.201.2", "159.65.140.115", "167.172.199.165", "206.189.28.199", "163.44.196.120", "160.16.142.56", "149.56.131.28", "212.24.98.99", "103.132.242.26", "97.242.150.244", "167.172.253.162", "159.89.202.34", "5.176.232.124", "172.104.251.154", "107.170.39.149", "104.168.155.143", "51.161.73.194", "45.118.115.99", "91.207.28.33", "45.176.232.124", "79.137.35.198", "213.239.212.5", "188.44.20.25", "103.43.75.120", "45.235.8.30", "159.65.88.10" ], "email": [] }, "email_victim": [], "ioca_version": "1.0", "organization": "cert-agid" } }