{ "Event": { "analysis": "2", "date": "2022-10-28", "extends_uuid": "", "info": "[Threat Intel] MA-880.102022: MyCERT Alert - Scam Purportedly to Help B40 and M40 Families Targeting TNG eWallet Users", "protected": false, "publish_timestamp": "1780040021", "published": true, "threat_level_id": "3", "timestamp": "1780040021", "uuid": "4546595c-d19d-45d9-8f1d-e9f4af9fb7e5", "Orgc": { "name": "Rectifyq", "uuid": "cd9bd516-61fa-476b-980f-2f8de03992d4" }, "Tag": [ { "colour": "#ffffff", "local": false, "name": "tlp:clear", "relationship_type": "" }, { "colour": "#004646", "local": false, "name": "type:OSINT", "relationship_type": "" }, { "colour": "#49a260", "local": false, "name": "rectifyq:category=\"threat\"", "relationship_type": "" }, { "colour": "#130049", "local": false, "name": "rectifyq:sub-category=\"campaign-analysis\"", "relationship_type": "" }, { "colour": "#ffd12e", "local": false, "name": "rectifyq:target=\"broad-based\"", "relationship_type": "" }, { "colour": "#dd2e44", "local": false, "name": "rectifyq:MY-relevancy=\"relevant\"", "relationship_type": "" }, { "colour": "#b94b1d", "local": false, "name": "rectifyq:mitre-att&ck=\"none-from-src\"", "relationship_type": "" }, { "colour": "#915448", "local": false, "name": "misp-galaxy:target-information=\"Malaysia\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:financial-fraud=\"Fake Website\"", "relationship_type": "" }, { "colour": "#3800d9", "local": false, "name": "rectifyq:action-taken=\"VT-comment\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:producer=\"4a61b42d-e3f0-4964-9d88-4aa96e24c31d\"", "relationship_type": "" } ], "Attribute": [ { "category": "External analysis", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1740764489", "to_ids": false, "type": "link", "uuid": "9b7d44d9-60c1-49cf-8180-05d19db1dee0", "value": "https://www.mycert.org.my/portal/details?menu=431fab9c-d24c-4a27-ba93-e92edafdefa5&id=c826fb9b-f39d-4fa8-b5ec-d5823dad3f2b" }, { "category": "Network activity", "comment": "URL of fake website", "deleted": false, "disable_correlation": false, "timestamp": "1747020528", "to_ids": true, "type": "url", "uuid": "6b68e8f6-f7c4-403a-8472-eeb3317addd1", "value": "https://touchngoimy.top", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "The IP address of the fake website", "deleted": false, "disable_correlation": false, "timestamp": "1780040021", "to_ids": true, "type": "ip-dst", "uuid": "3939378d-35ea-4ee8-a8db-51fc1621cd8c", "value": "103.212.98.179", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" }, { "colour": "#ba5afe", "local": false, "name": "asn:asn=\"45753\"", "relationship_type": "" }, { "colour": "#fcdeb8", "local": false, "name": "asn:as-owner=\"NETSEC-HK Netsec Limited\"", "relationship_type": "" }, { "colour": "#fbf8fb", "local": false, "name": "asn:as-country=\"HK\"", "relationship_type": "" }, { "colour": "#daa28c", "local": false, "name": "misp-galaxy:country=\"hong kong\"", "relationship_type": "" } ] } ] } }