From 1dba5e23d0565c508a841a8e046133eb97123e9e Mon Sep 17 00:00:00 2001 From: StrangerealIntel <54320855+StrangerealIntel@users.noreply.github.com> Date: Sat, 16 May 2020 23:33:47 +0200 Subject: [PATCH] Create IOC-JS-Loader_2020_05_16.json --- .../JSON/IOC-JS-Loader_2020_05_16.json | 278 ++++++++++++++++++ 1 file changed, 278 insertions(+) create mode 100644 Additional Analysis/Unknown/2020-05-12/JSON/IOC-JS-Loader_2020_05_16.json diff --git a/Additional Analysis/Unknown/2020-05-12/JSON/IOC-JS-Loader_2020_05_16.json b/Additional Analysis/Unknown/2020-05-12/JSON/IOC-JS-Loader_2020_05_16.json new file mode 100644 index 0000000..0084cc4 --- /dev/null +++ b/Additional Analysis/Unknown/2020-05-12/JSON/IOC-JS-Loader_2020_05_16.json @@ -0,0 +1,278 @@ +[ + { + "Date": "2020-05-07", + "Type": "SHA-256", + "Indicator": "7837e15bf4d38996a3d85cdb16f425c4ec9f110fae80bc774f875db6229f1d5a", + "Description": "invoice_159306.js" + }, + { + "Date": "2020-05-07", + "Type": "SHA-256", + "Indicator": "f1f4f4bd35f78049015d1e3a87a4635dce044480b88f9d296f7a600c1365c2d0", + "Description": "invoice_159306.zip" + }, + { + "Date": "2020-05-07", + "Type": "Domain", + "Indicator": "softcheck3u.biz", + "Description": "Domain C2" + }, + { + "Date": "2020-05-07", + "Type": "IP", + "Indicator": "51.83.171.37", + "Description": "IP C2" + }, + { + "Date": "2020-05-07", + "Type": "URL", + "Indicator": "https://softcheck3u.biz/inc/server/gate.php", + "Description": "URL C2" + }, + { + "Date": "2020-05-07", + "Type": "SHA-256", + "Indicator": "6795f0a7bc63e5a0e58c6e800f4386eed41e05cc9c32fa60355be15544bda71f", + "Description": "invoice_159306.zip" + }, + { + "Date": "2020-05-07", + "Type": "SHA-256", + "Indicator": "91792ffa6909533367499c32adbbdf03960602734eed6bd2267aa27ecab0efc5", + "Description": "invoice_159306.js" + }, + { + "Date": "2020-05-05", + "Type": "SHA-256", + "Indicator": "4c01f02882154ccb2ce82f1da5533dc51b7b949cc2459a95eab24c4ee1d52510", + "Description": "SAMPLE.js" + }, + { + "Date": "2020-05-05", + "Type": "IP", + "Indicator": "51.83.171.37", + "Description": "IP C2" + }, + { + "Date": "2020-05-05", + "Type": "Domain", + "Indicator": "softcheck3u.biz", + "Description": "Domain C2" + }, + { + "Date": "2020-05-05", + "Type": "URL", + "Indicator": "https://softcheck3u.biz/inc/server/gate.php", + "Description": "URL C2" + }, + { + "Date": "2020-05-05", + "Type": "SHA-256", + "Indicator": "5cc8957a64f28870a956aab1a10ca94fdf5c8c8a7e299b71d2b1128edc04b0f9", + "Description": "invoice_1593066.js" + }, + { + "Date": "2020-05-05", + "Type": "SHA-256", + "Indicator": "b1516020bd5ebcf9b0f8ff9a7e6924a1763072b7438aea0a0e8e585fb74809a7", + "Description": "invoice_1593066.zip" + }, + { + "Date": "2020-05-05", + "Type": "URL", + "Indicator": "https://softcheck3u.biz/inc/server/gate.php", + "Description": "URL C2" + }, + { + "Date": "2020-05-05", + "Type": "IP", + "Indicator": "51.83.171.37", + "Description": "IP C2" + }, + { + "Date": "2020-05-05", + "Type": "Domain", + "Indicator": "softcheck3u.biz", + "Description": "Domain C2" + }, + { + "Date": "2020-05-05", + "Type": "SHA-256", + "Indicator": "6327035bdec77941d86b6b7ce6794e934235a7994c2235010de129a06b4082ca", + "Description": "invoice_15930610.js" + }, + { + "Date": "2020-05-05", + "Type": "URL", + "Indicator": "https://softcheck3u.biz/inc/server/gate.php", + "Description": "URL C2" + }, + { + "Date": "2020-05-05", + "Type": "IP", + "Indicator": "51.83.171.37", + "Description": "IP C2" + }, + { + "Date": "2020-05-05", + "Type": "Domain", + "Indicator": "softcheck3u.biz", + "Description": "Domain C2" + }, + { + "Date": "2020-02-25", + "Type": "SHA-256", + "Indicator": "9da43b6cca00d58be09f481d803b7cfbf051bb645a892049f1665f3b0c7bb58a", + "Description": "00001.js" + }, + { + "Date": "2020-02-25", + "Type": "URL", + "Indicator": "http://sissj.site/O/server/gate.php", + "Description": "URL C2" + }, + { + "Date": "2020-02-25", + "Type": "Domain", + "Indicator": "sissj.site", + "Description": "Domain C2" + }, + { + "Date": "2020-02-25", + "Type": "IP", + "Indicator": "54.36.185.104", + "Description": "IP C2" + }, + { + "Date": "2019-12-05", + "Type": "SHA-256", + "Indicator": "d1249f91152cdae3b44bdaf819f29dead89ea1783525c4ffc3619287588496a6", + "Description": "sssdlient.js" + }, + { + "Date": "2019-12-05", + "Type": "URL", + "Indicator": "http://sissj.site/8/server/gate.php", + "Description": "URL C2" + }, + { + "Date": "2019-12-05", + "Type": "Domain", + "Indicator": "sissj.site", + "Description": "Domain C2" + }, + { + "Date": "2019-12-05", + "Type": "IP", + "Indicator": "54.36.185.104", + "Description": "IP C2 " + }, + { + "Date": "2019-12-05", + "Type": "SHA-256", + "Indicator": "6530abff8bae2df855dc513a0dd02d5b06ac4e26d803760f6b9b51290719b088", + "Description": "Client.js" + }, + { + "Date": "2019-12-05", + "Type": "URL", + "Indicator": "http://sissj.site/O/server/gate.php", + "Description": "URL C2" + }, + { + "Date": "2019-12-05", + "Type": "IP", + "Indicator": "54.36.185.104", + "Description": "IP C2 " + }, + { + "Date": "2019-12-03", + "Type": "SHA-256", + "Indicator": "6c3bb047985ee9996e9cfc8ce03eaf5246538321acbd788dd0b8bab7cf0c8eed", + "Description": "8888.js" + }, + { + "Date": "2019-12-03", + "Type": "URL", + "Indicator": "http://sissj.site/8/server/gate.php", + "Description": "URL C2" + }, + { + "Date": "2019-12-03", + "Type": "IP", + "Indicator": "54.36.185.104", + "Description": "IP C2" + }, + { + "Date": "2019-12-02", + "Type": "SHA-256", + "Indicator": "37eadeb29765559e0931a41ac4c750b8a3e3c4a1df2c24797317429fbbcf8456", + "Description": "firefox.js" + }, + { + "Date": "2019-12-02", + "Type": "URL", + "Indicator": "http://sissj.site/O/server/gate.php", + "Description": "URL C2" + }, + { + "Date": "2019-12-02", + "Type": "IP", + "Indicator": "54.36.185.104", + "Description": "IP C2" + }, + { + "Date": "2019-09-06", + "Type": "SHA-256", + "Indicator": "fcc550358ddeae5061b3bdf1b720be49b39b78356e3cb189cfe26cd170ac7aa2", + "Description": "ml.exe" + }, + { + "Date": "2019-09-06", + "Type": "SHA-256", + "Indicator": "fd364d8ee051876c67ea160f898d846335219dbdbe2b6f983fd012fc17dfcaa6", + "Description": "n.vbs" + }, + { + "Date": "2019-09-06", + "Type": "IP", + "Indicator": "45.88.77.34", + "Description": "IP C2" + }, + { + "Date": "2019-09-06", + "Type": "Domain", + "Indicator": "sissj.space", + "Description": "Domain C2" + }, + { + "Date": "2019-09-06", + "Type": "URL", + "Indicator": "http://sissj.space/8/gate.php", + "Description": "URL C2" + }, + { + "Date": "2019-04-27", + "Type": "SHA-256", + "Indicator": "59d9349ef822c5bf6e3c6393a99315e602e80bde2b328434a2c2c2bc37c04ffa", + "Description": "7E6AC995F182FF2F2D797B359605725F.mlw" + }, + { + "Date": "2019-04-27", + "Type": "Domain", + "Indicator": "sissj.site", + "Description": "Domain C2" + }, + { + "Date": "2019-04-27", + "Type": "URL", + "Indicator": "http://sissj.site/O/server/gate.php", + "Description": "URL C2" + }, + { + "Date": "2019-04-27", + "Type": "IP", + "Indicator": "54.36.185.104", + "Description": "IP C2" + } +]