{
    "beb38119-3819-47ef-bd04-39421fb09c74": {
        "event_id": 13825,
        "created_at": "2022-12-06T15:26:24.639598+00:00",
        "updated_at": "2022-12-06T15:35:51.633284+00:00",
        "name": "Campagna Malware italiana Trojan visto per la prima volta",
        "description": "per visualizzare la nostra fattura nr. 132 o per scaricarne una copia in versione PDF prema sul bottone sottostante.\r\n\r\nI dati sono stati protetti con una password.\r\nla password per il tuo file \u00e8: 06-12-2022",
        "subject": "Invio Documento Nr. IT832773FATT del 06-DEC-2022 [PC09920123]",
        "tlp": "0",
        "campaign_type": "malware",
        "method": "linked",
        "country": "italy",
        "file_type": [
            "zip",
            "hta",
            "lnk",
            "bat"
        ],
        "theme": "Documenti",
        "malware": "Unknown",
        "phishing": null,
        "via": "email",
        "tag": [],
        "ioc_list": {
            "md5": [
                "325aae0178932659c1d89a49328066a6",
                "6793c76b50a1f2abbe7596adc0824a94",
                "f959e6882af46c0c9b31d88d596444df",
                "6f6c9bcd7104d5265ebaba45e7ccd463",
                "26ba14225d75b18c1102305d3a460573",
                "bb0af6bfb926170a0008898b87da630f",
                "67f3410bbe84cd1049d4abcae463b465",
                "1c875687265b91415cabff665af8c801",
                "72eae711b521c031d8c4616459f6da89",
                "6fff73f5118cee25cf496fbd192aa940"
            ],
            "sha1": [
                "b4dd5599a2bcf2e5abffc8bb0ede2c77ed45e1ad",
                "a9cba6ee55c8a777e3757a70d0fa1c87743b38ee",
                "4db1fa1b1b15cff5cd52ee4e51c421b5b3fcd183",
                "248bb73ad5d7356c7beee646fb19650ce9bddc71",
                "ec6e54a2dff50a8c7a9f5863216e3a651031c130",
                "6f1c50de2e8ac1741182786cc96421c671a40463",
                "220848d7c3b8e6c3a20d7e012799479d5e32fb16",
                "b85c4d56f8ce06320e686b63af0af84e16e59bfc",
                "9bd3c9d6d234252e23d6cfe033d03b3873f5a5f9",
                "93c8fed63a0c3e3b2531e307d3282a1dcfd79ff2"
            ],
            "sha256": [
                "2681a33478967ac0953785eac5f3b924c5159b6137ae96a619943c8dd1c8131b",
                "ccfa2a59f817a699433738eb52fef5e6aa236051fa68d6709e7b8a2c576c3de1",
                "cbe92ec74d77f6524ddd4836b378b6e721db8f04f6d5f9df2a131d145d4f5bb8",
                "8d4ed7017342c8b737b13f98b95956a5f3d2b2fcfbb921661d93a2c48a916911",
                "32312ed6fc1968c041c331c74760d465897b28ccd939749949d07c23df063823",
                "d3aa8fca03e9eb9911bbb51302d703afa9c04ce94d94ce6c3cd5086999e49471",
                "12aa8aa332636a6a464ad7f8853d57bdb104b66fa900be422b619c2cd9259291",
                "752a84ba60cc53ec23642402ff87c1eee074ca6ae7703bec7b1ef9e600f63e9a",
                "cd0ca06931ab2c952302a432979d6787c5155f8d081d2959acce37e252fe7763",
                "6e467f45f0537356789dca883b9235a7076534a514915e21a7708036145d58d4"
            ],
            "imphash": [],
            "domain": [],
            "url": [
                "https://dl.dropboxusercontent.com/s/52eq2p19vc0dcei/IT_Fattura_n99392.zip",
                "https://337727.seu2.cleverreach.com/c/78225876/9c8031ea866b-rmgvk2",
                "http://116.203.19.97/1/Fattura_IT9032003.bat",
                "https://github.com/NET-FrameWork-x64/NET/raw/main/NETFramework.zip",
                "https://downloadpdf-fattura.de/dpd/",
                "https://i.ibb.co/4tv84rK/image.png",
                "http://116.203.19.97/1/lib32.hta"
            ],
            "ipv4": [
                "195.201.23.210",
                "116.203.19.97"
            ],
            "email": []
        },
        "email_victim": [],
        "ioca_version": "1.0",
        "organization": "cert-agid"
    }
}