Zion Boggan
repos/cti-detection-automation/fixtures/otx.json
zionboggan.com ↗
Code Commits Tags
28 lines · json
History for this file →
1
{
2
  "results": [
3
    {
4
      "id": "664f1a2b9c1e4d0012a3bc77",
5
      "name": "AgentTesla campaign targeting finance sector",
6
      "attack_ids": ["T1566.001", "T1056.001", "T1041"],
7
      "tags": ["agenttesla", "keylogger", "phishing"],
8
      "malware_families": [{"display_name": "AgentTesla"}],
9
      "indicators": [
10
        {"type": "domain", "indicator": "cdn-jquery-min.net"},
11
        {"type": "IPv4", "indicator": "45.137.21.9"},
12
        {"type": "FileHash-SHA256", "indicator": "5d41402abc4b2a76b9719d911017c592e1b2c3d4f5a6978899aabbccddeeff00"}
13
      ]
14
    },
15
    {
16
      "id": "664f33ce7b2a1f0014ddee01",
17
      "name": "Qakbot distribution infrastructure",
18
      "attack_ids": ["T1566.001", "T1055"],
19
      "tags": ["qakbot", "loader"],
20
      "malware_families": [{"display_name": "QakBot"}],
21
      "indicators": [
22
        {"type": "IPv4", "indicator": "194.36.191.55"},
23
        {"type": "domain", "indicator": "secure-doc-share.net"},
24
        {"type": "URL", "indicator": "http://secure-doc-share.net/docs/view.php"}
25
      ]
26
    }
27
  ]
28
}