{
    "84200cf2-6b8a-430f-a57c-09d279230b5c": {
        "event_id": 13892,
        "created_at": "2023-01-04T10:22:29.241778+00:00",
        "updated_at": "2023-01-04T13:51:14.123565+00:00",
        "name": "Campagna Ursnif a tema Agenzia Entrate",
        "description": "",
        "subject": "Commissione parlamentare di osservanza sull'anagrafe tributaria",
        "tlp": "0",
        "campaign_type": "malware",
        "method": "attached",
        "country": "italy",
        "file_type": [
            "zip",
            "url"
        ],
        "theme": "Agenzia Entrate",
        "malware": "Ursnif",
        "phishing": null,
        "via": "email",
        "tag": [
            "SMB"
        ],
        "ioc_list": {
            "md5": [
                "15fde0af6943a582371cfe5c55db9035",
                "84de1c1897707c0a05580893f8c6d60e",
                "7e9bfd12c39e68494fada8eabbafad3e",
                "dccd9028d1a68250ab28280feba7749f",
                "d8354688a5d605f682915d38061a5b0c",
                "d4cb178d18ec1ee1eeb33d650c86e861",
                "c0068547cbde15fe13b58ecb576c4bf7"
            ],
            "sha1": [
                "002cf71c1f2bf66d36ee8d9f2852ff43cb9a4dc4",
                "39044aa1e9293d7a5bea30b9316b97f7696091df",
                "47c39d40f2d19d78527a8ec06d50b1ab51433414",
                "318079fe95d2188e1476e6c8b0d3c6780cf94e55",
                "1516d4705af4e2f90e69d30ce5798f5d18f26e40",
                "a001b8c1347d0f9ed16f3e57c37d83f7e8f5f27e",
                "86f8247dc5c235e4117e3ca0e6b220a192124347"
            ],
            "sha256": [
                "3a7b101841bf22ff79f1a5b4f54de3bcc2d54fd172bf552ba3c9f560661ff37e",
                "7c53fed4c32bebbbd339f34720da837ab7a4349270e937b0fc50ad2e87c6e9c9",
                "2fed9281f31ebabe428ba5e9e83d0ae18d1f3fae3d45a3abd4b6032094d15b27",
                "76e094635b99eaa3d8fe76a11ed7c917ef0d76994ebe5ec7cb1ae96e8a868813",
                "c6380e565710ea58f3b63837e2aa2fe6a368fe5d1d9675f4079d812d1896713a",
                "c120a9b0f22236ec372ce1745b087a08ae494d138b2cb864bef7c660aee7afb9",
                "d1d80208de45d907fd3a8fab28bef80b917a96ee57784bcae2cd440838e26ebd"
            ],
            "imphash": [
                "143a634d0c15b00ddc8c937b8e7152cc",
                "61542f39045f4d5b49a61acb6232fd63",
                "9ec1d77cd847f96c59fd98d884b6c73b"
            ],
            "domain": [],
            "url": [
                "http://62.173.145.223/drew/",
                "http://31.41.44.105/drew/",
                "http://45.89.66.58/drew/"
            ],
            "ipv4": [
                "62.173.139.190",
                "45.89.66.58",
                "31.41.44.105",
                "66.96.188.6",
                "62.173.145.223",
                "62.173.138.109",
                "62.173.139.157",
                "185.31.160.178",
                "62.173.138.110"
            ],
            "email": []
        },
        "email_victim": [],
        "ioca_version": "1.0",
        "organization": "cert-agid"
    }
}