{ "Event": { "analysis": "2", "date": "2016-10-14", "extends_uuid": "", "info": "[Threat Intel] MA-640.102016: MyCERT Alert - Phishing Emails Targeting Bank Negara Malaysia (BNM)", "protected": false, "publish_timestamp": "1780039811", "published": true, "threat_level_id": "2", "timestamp": "1772901977", "uuid": "96f7a456-317e-4efc-8874-0ff5c0bce9f6", "Orgc": { "name": "Rectifyq", "uuid": "cd9bd516-61fa-476b-980f-2f8de03992d4" }, "Tag": [ { "colour": "#ffffff", "local": false, "name": "tlp:clear", "relationship_type": "" }, { "colour": "#004646", "local": false, "name": "type:OSINT", "relationship_type": "" }, { "colour": "#915448", "local": false, "name": "misp-galaxy:target-information=\"Malaysia\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:sector=\"Bank\"", "relationship_type": "" }, { "colour": "#49a260", "local": false, "name": "rectifyq:category=\"threat\"", "relationship_type": "" }, { "colour": "#130049", "local": false, "name": "rectifyq:sub-category=\"campaign-analysis\"", "relationship_type": "" }, { "colour": "#d92121", "local": false, "name": "rectifyq:target=\"targeted\"", "relationship_type": "" }, { "colour": "#dd2e44", "local": false, "name": "rectifyq:MY-relevancy=\"relevant\"", "relationship_type": "" }, { "colour": "#b94b1d", "local": false, "name": "rectifyq:mitre-att&ck=\"none-from-src\"", "relationship_type": "" }, { "colour": "#870443", "local": false, "name": "misp-galaxy:mitre-attack-pattern=\"Spearphishing Link - T1192\"", "relationship_type": "" }, { "colour": "#c202a1", "local": false, "name": "misp-galaxy:mitre-attack-pattern=\"Spearphishing Link - T1566.002\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:f3b46834-6ce9-44ef-852d-d7ac61a12920=\"82a4a09c-ca5b-4dd1-b194-df3e65f93fa3\"", "relationship_type": "" }, { "colour": "#82eae0", "local": false, "name": "misp-galaxy:mitre-attack-pattern=\"Domains - T1583.001\"", "relationship_type": "" }, { "colour": "#3800d9", "local": false, "name": "rectifyq:action-taken=\"VT-comment\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:producer=\"4a61b42d-e3f0-4964-9d88-4aa96e24c31d\"", "relationship_type": "" } ], "Attribute": [ { "category": "External analysis", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1740373238", "to_ids": false, "type": "link", "uuid": "f9fdc934-0077-408e-800d-1195a1527add", "value": "https://mycert.org.my/portal/advisory?id=MA-640.102016" }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500399", "to_ids": true, "type": "url", "uuid": "cbddb9c5-ecba-499c-8fb1-f8bc27d6f014", "value": "http://www.albasolar.es/dmdocuments/3fSrdMY7zYEvLQLhEx3PCHeQ/", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500424", "to_ids": true, "type": "url", "uuid": "bfb03578-6584-498f-8d67-abaa355f2030", "value": "http://ahvc-naturopath.com.au/RdShTeVwh7WYpHUyXPPyTkAx/", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500447", "to_ids": true, "type": "url", "uuid": "a4d39a2e-9b38-4ac4-a638-eb7cc5b0a10f", "value": "http://ahvc-naturopath.com.au/wp-content/plugins/xzAUA3dv5Ng7JhhxG3VXfAJE/", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500470", "to_ids": true, "type": "url", "uuid": "b52e3090-f346-42e0-840e-975ebaca6814", "value": "http://ahvc-naturopath.com.au/wp-includes/pomo/JaVBsAjL47gb4Zw3YGgWxeDv/", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500491", "to_ids": true, "type": "url", "uuid": "64338503-3076-469e-ad8c-a4c93d62366c", "value": "http://ahvc-naturopath.com.au/wp-includes/pomo/JaVBsAjL47gb4Zw3YGgWxeDv/2c7295bc272f8191ba842f5c2236b816/", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500512", "to_ids": true, "type": "url", "uuid": "413a7244-ffde-4a1f-8c97-ac4d6002980e", "value": "http://ahvc-naturopath.com.au/wp-includes/pomo/JaVBsAjL47gb4Zw3YGgWxeDv/58911ca38fe269b2b7231b6977168883", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500533", "to_ids": true, "type": "url", "uuid": "f71285dc-71d4-4137-b767-90206c007ad9", "value": "http://ahvc-naturopath.com.au/wp-includes/theme-compat/5zLXyNSL2R7Mr452c", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500554", "to_ids": true, "type": "url", "uuid": "a2cb85d7-d6d5-450a-9b5a-47e2b6bb0184", "value": "http://ahvc-naturopath.com.au/wp-includes/theme-compat/5zLXyNSL2R7Mr452cSvQVBa8/", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500576", "to_ids": true, "type": "url", "uuid": "0f1879de-aebc-4800-be21-75106e85899a", "value": "http://darlinlildresses.com/includes/kVHQ7MqUtDt5JJCaTg6CpsPP/", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500599", "to_ids": true, "type": "url", "uuid": "35c68772-803e-4786-9a1f-8ad146e3d23e", "value": "http://nexgentruckrepair.com/wp-content/plugins/", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500624", "to_ids": true, "type": "url", "uuid": "19606837-d7e5-4f2b-9fcd-651738c8a21e", "value": "http://nova4u.com/meps/K8XzAnSfBC3sWBpRWPpXk4CY/configure/", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500648", "to_ids": true, "type": "url", "uuid": "9fdcde88-e317-4c08-a34c-bcc7b67fa6c5", "value": "http://ww1.banknegara.com/", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500671", "to_ids": true, "type": "url", "uuid": "8c106337-751d-40ac-8e35-5cf87f45e19e", "value": "http://banknegara2u.com/", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1746500694", "to_ids": true, "type": "url", "uuid": "87feba43-47a3-47b1-9844-376898b19cef", "value": "http://reports.banknegara2u.com/", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Targeting data", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1740373338", "to_ids": false, "type": "target-org", "uuid": "c89be600-717f-4716-bd73-248053a69869", "value": "Bank Negara Malaysia (BNM)" } ] } }