{ "Event": { "analysis": "2", "date": "2023-05-04", "extends_uuid": "", "info": "[Threat Intel] Not quite an Easter egg: a new family of Trojan subscribers on Google Play", "protected": false, "publish_timestamp": "1780040144", "published": true, "threat_level_id": "3", "timestamp": "1772902026", "uuid": "c0da94a9-7372-4952-9739-2745e76ab85a", "Orgc": { "name": "Rectifyq", "uuid": "cd9bd516-61fa-476b-980f-2f8de03992d4" }, "Tag": [ { "colour": "#ffffff", "local": false, "name": "tlp:clear", "relationship_type": "" }, { "colour": "#004646", "local": false, "name": "type:OSINT", "relationship_type": "" }, { "colour": "#49a260", "local": false, "name": "rectifyq:category=\"threat\"", "relationship_type": "" }, { "colour": "#130049", "local": false, "name": "rectifyq:sub-category=\"campaign-analysis\"", "relationship_type": "" }, { "colour": "#ffd12e", "local": false, "name": "rectifyq:target=\"broad-based\"", "relationship_type": "" }, { "colour": "#dd2e44", "local": false, "name": "rectifyq:MY-relevancy=\"relevant\"", "relationship_type": "" }, { "colour": "#b94b1d", "local": false, "name": "rectifyq:mitre-att&ck=\"none-from-src\"", "relationship_type": "" }, { "colour": "#1ebce4", "local": false, "name": "misp-galaxy:producer=\"Kaspersky\"", "relationship_type": "" }, { "colour": "#f9cdc4", "local": false, "name": "misp-galaxy:target-information=\"Indonesia\"", "relationship_type": "" }, { "colour": "#915448", "local": false, "name": "misp-galaxy:target-information=\"Malaysia\"", "relationship_type": "" }, { "colour": "#809a25", "local": false, "name": "misp-galaxy:target-information=\"Poland\"", "relationship_type": "" }, { "colour": "#7dbb86", "local": false, "name": "misp-galaxy:target-information=\"Singapore\"", "relationship_type": "" }, { "colour": "#33360c", "local": false, "name": "misp-galaxy:target-information=\"Thailand\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#3800d9", "local": false, "name": "rectifyq:action-taken=\"VT-comment\"", "relationship_type": "" } ], "Attribute": [ { "category": "External analysis", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1740786325", "to_ids": false, "type": "link", "uuid": "6719f395-84b7-48dc-af94-b4af6b722730", "value": "https://securelist.com/fleckpe-a-new-family-of-trojan-subscribers-on-google-play/109643/" }, { "category": "Payload delivery", "comment": "No sample in VT\r\nLast check:09/05/2025", "deleted": false, "disable_correlation": false, "timestamp": "1746793629", "to_ids": true, "type": "md5", "uuid": "c24f3740-a98b-4b2e-ab64-facf26292795", "value": "c5dd2ea5b1a292129d4ecfbeb09343c4", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"VirusTotal\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "No sample in VT\r\nLast check:09/05/2025", "deleted": false, "disable_correlation": false, "timestamp": "1746793630", "to_ids": true, "type": "md5", "uuid": "4e08f9db-855b-4be5-add9-a67957ad711b", "value": "2b6b1f7b220c69d37a413b0c448aa56a", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"VirusTotal\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "No sample in VT\r\nLast check:09/05/2025", "deleted": false, "disable_correlation": false, "timestamp": "1746793631", "to_ids": true, "type": "md5", "uuid": "8037ba57-2680-4a36-b904-cd659912e672", "value": "aa1cec619bf65972d220904130aed3d9", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"VirusTotal\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "No sample in VT\r\nLast check:09/05/2025", "deleted": false, "disable_correlation": false, "timestamp": "1746793632", "to_ids": true, "type": "md5", "uuid": "8dd1763f-c067-47ec-9a40-1d4e139ab4c4", "value": "0beec878ff2645778472b97c1f8b4113", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"VirusTotal\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "No sample in VT\r\nLast check:09/05/2025", "deleted": false, "disable_correlation": false, "timestamp": "1746793633", "to_ids": true, "type": "md5", "uuid": "ed653a8d-4574-47e8-a1e4-38c43ca20d58", "value": "40c451061507d996c0ab8a233bd99ff8", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"VirusTotal\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "No sample in VT\r\nLast check:09/05/2025", "deleted": false, "disable_correlation": false, "timestamp": "1746793634", "to_ids": true, "type": "md5", "uuid": "98cee8e8-0e0c-448d-a1f6-9d52e9a28802", "value": "bdbbf20b3866c781f7f9d4f1c2b5f2d3", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"VirusTotal\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "No sample in VT\r\nLast check:09/05/2025", "deleted": false, "disable_correlation": false, "timestamp": "1746793635", "to_ids": true, "type": "md5", "uuid": "3e45caeb-2d1c-4d17-a280-584f39dc62e3", "value": "063093eb8f8748c126a6ad3e31c9e6fe", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"VirusTotal\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "No sample in VT\r\nLast check:09/05/2025", "deleted": false, "disable_correlation": false, "timestamp": "1746793636", "to_ids": true, "type": "md5", "uuid": "3c9eda17-4ad7-458a-8f62-d0ba602ceb93", "value": "8095c11e404a3e701e13a6220d0623b9", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"VirusTotal\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746833802", "to_ids": true, "type": "url", "uuid": "671d6502-3894-465f-b3af-1dbc2649a0f7", "value": "http://ac.iprocam.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746833823", "to_ids": true, "type": "url", "uuid": "3cb59f0f-3e80-4bd2-843a-5ba103da1ba5", "value": "http://ad.iprocam.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746833843", "to_ids": true, "type": "url", "uuid": "dd9fcde2-be26-4835-b834-da3c4d9412e3", "value": "http://ap.iprocam.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746833864", "to_ids": true, "type": "url", "uuid": "b9528230-be4a-48e0-91f6-27f67fb424f0", "value": "http://b7.photoeffect.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746833885", "to_ids": true, "type": "url", "uuid": "915bc49e-0ae5-4c32-9092-5cc92a196bd0", "value": "http://ba3.photoeffect.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746833905", "to_ids": true, "type": "url", "uuid": "83c60ed8-a0ae-494c-9a10-02203af2e322", "value": "http://f0.photoeffect.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746833927", "to_ids": true, "type": "url", "uuid": "0d8b207f-07ae-4545-96a0-46a629673c7a", "value": "http://m11.slimedit.live", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746833947", "to_ids": true, "type": "url", "uuid": "d1a8707c-de59-42a3-ae0b-b85712aa52ce", "value": "http://m12.slimedit.live", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746833968", "to_ids": true, "type": "url", "uuid": "b9aa7a18-b324-47f5-9d46-9e396ed959ad", "value": "http://m13.slimedit.live", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746833989", "to_ids": true, "type": "url", "uuid": "a7815124-ce56-4a0e-a490-793d4df09ebe", "value": "http://ba.beautycam.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746834009", "to_ids": true, "type": "url", "uuid": "2bf25e4d-8abe-45ba-9754-f95209520235", "value": "http://f6.beautycam.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746834030", "to_ids": true, "type": "url", "uuid": "eea2f0f8-76cb-4e2c-8395-3056609cdfd6", "value": "http://f8a.beautycam.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746834051", "to_ids": true, "type": "url", "uuid": "98e27738-d709-4fea-8177-738116e3164b", "value": "http://ae.mveditor.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746834071", "to_ids": true, "type": "url", "uuid": "cd1d2a6b-4112-409a-be9e-082964c3071c", "value": "http://b8c.mveditor.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746834092", "to_ids": true, "type": "url", "uuid": "91edac81-c604-4f31-8b73-283b11bd6da6", "value": "http://d3.mveditor.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746834112", "to_ids": true, "type": "url", "uuid": "ede96701-ebfc-491a-922a-ec94e75e1c2c", "value": "http://fa.gifcam.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746834133", "to_ids": true, "type": "url", "uuid": "4f32bb85-d3d4-48fb-a32f-eb2797dee739", "value": "http://fb.gifcam.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746834154", "to_ids": true, "type": "url", "uuid": "8dc8a339-07eb-4bd6-bd85-bae2bce80274", "value": "http://fl.gifcam.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1746834174", "to_ids": true, "type": "url", "uuid": "9ba0e2ee-1029-46e6-abb3-99eaee08b95f", "value": "http://a.hdmodecam.live", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023733", "to_ids": true, "type": "url", "uuid": "2e7ae071-3312-49ba-a721-600e2319de9e", "value": "http://b.hdmodecam.live", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023754", "to_ids": true, "type": "url", "uuid": "9dfd8a08-611c-4c6b-9952-9a6eb6e23acd", "value": "http://l.hdmodecam.live", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023774", "to_ids": true, "type": "url", "uuid": "61e88479-7886-4ceb-a362-689847b57b84", "value": "http://vd.toobox.online", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023795", "to_ids": true, "type": "url", "uuid": "0293eebc-46c6-4ca8-9886-bfca67387ab4", "value": "http://ve.toobox.online", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023816", "to_ids": true, "type": "url", "uuid": "cca5c0c0-bf8d-465b-90c3-57ad556fa846", "value": "http://vt.toobox.online", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023836", "to_ids": true, "type": "url", "uuid": "181a406b-1e1a-4bcd-8d75-8ff5ede4139c", "value": "http://54.245.21.104", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023857", "to_ids": true, "type": "url", "uuid": "603ef893-5a53-45ba-9ef3-e287851fe3c3", "value": "http://t1.twmills.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023878", "to_ids": true, "type": "url", "uuid": "990482b4-add6-4c55-ad6c-67ce8fa4ac05", "value": "http://t2.twmills.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023899", "to_ids": true, "type": "url", "uuid": "99d3ad24-3121-45f1-b0c0-abe0864c63b6", "value": "http://t3.twmills.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023919", "to_ids": true, "type": "url", "uuid": "d76ca3ca-dada-4250-a843-f634099c87c4", "value": "http://api.odskguo.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023940", "to_ids": true, "type": "url", "uuid": "f48acd21-0366-4def-abd4-422138a2947d", "value": "http://gbcf.odskguo.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "C&C", "deleted": false, "disable_correlation": false, "timestamp": "1747023961", "to_ids": true, "type": "url", "uuid": "65a8b88d-0355-4bca-8117-14b2db538500", "value": "http://track.odskguo.xyz", "Tag": [ { "colour": "#f08989", "local": false, "name": "NotFoundError", "relationship_type": "" } ] } ], "Object": [ { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747023982", "uuid": "ec6d379a-68dd-4077-92dc-f758179f4e58", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747023982", "to_ids": true, "type": "md5", "uuid": "9ba351e4-d0b2-4795-8a67-2fc57ada93ff", "value": "f671a685fc47b83488871ae41a52bf4c", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792652", "to_ids": true, "type": "sha1", "uuid": "13ae80a7-2c5c-46d5-8b30-69140ec43334", "value": "de91ab9d1816d07cfb2e675f6541f5694b0a0140", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792652", "to_ids": true, "type": "sha256", "uuid": "bb62f974-1954-41ab-a000-689eebacb616", "value": "48a2e8ee4152b901b02dd17e64d675e32aac8baf163406b2dc2729103cb1206d", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792652", "to_ids": true, "type": "ssdeep", "uuid": "4fae05e6-810c-42c1-865b-f97e91db4802", "value": "786432:TFTtGcJoPWFF202oNt007aR/a3cFZoz5QbSEdGjqHCrgLbhIqD:TFZLJoPWFo0ztgqccadGjKIqD" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792652", "to_ids": false, "type": "size-in-bytes", "uuid": "ac5d4be5-5886-4065-8be0-ca78969d835d", "value": "33176213" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792652", "to_ids": true, "type": "vhash", "uuid": "f767c851-b339-4b34-9ac7-6475511d7abc", "value": "b8d946e7c0fd1ba18c7b159a10b35a71" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "filename", "timestamp": "1746792652", "to_ids": true, "type": "filename", "uuid": "319c6310-a3e6-462a-98ae-880f82a966a5", "value": "Impressionism Pro Camera_1.6.8_apkcombo.com.apk" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 04/10/2023", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792652", "to_ids": false, "type": "text", "uuid": "932224ef-085e-45f0-b3e0-f48c491092b4", "value": "Type Description: Android\nMicrosoft: Trojan:AndroidOS/Multiverze\nVT Total Detection:25/65\nFirst Submission:2022-11-02T03:20:37.000000+00:00\nLast Submission:2023-12-13T11:01:27.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024003", "uuid": "825a8745-daf1-448c-99ca-5945e69abf1e", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024003", "to_ids": true, "type": "md5", "uuid": "0b4b23d0-ad92-4047-a065-fd5038dd9612", "value": "5ce7d0a72b1bd805c79c5fe3a48e66c2", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792674", "to_ids": true, "type": "sha1", "uuid": "9102c4c3-731c-46b1-9a7b-794f3db815af", "value": "30d75e9117bfe6634a55e3e71d99210e5c346f64", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792674", "to_ids": true, "type": "sha256", "uuid": "0f67f6bf-fc07-4345-b391-eb6951a6fe94", "value": "b98d11a7fc5cb157ef9cc0bfc0d2f95229b148cc7fbbd4b0de79e0532a34516f", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792673", "to_ids": true, "type": "ssdeep", "uuid": "387e6e80-3d29-4344-a55f-0fc36b273cfd", "value": "786432:6SgBDF8/P/b85u+SlHEpD2cji7iFlhSSRQV:bg2b856G2cji76CdV" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792673", "to_ids": false, "type": "size-in-bytes", "uuid": "edb9c14a-64d3-4bf7-8643-f2384cd6d2e2", "value": "27138404" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792673", "to_ids": true, "type": "vhash", "uuid": "adbc2dee-0c5b-40be-80e2-97c365142855", "value": "961bee9d1e608eac6e1522712aac12f2" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "filename", "timestamp": "1746792673", "to_ids": true, "type": "filename", "uuid": "d80ec6cd-5f8f-41fe-a450-4c1b4d8d5526", "value": "com.picture.pictureframe.apk" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 02/05/2025", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792673", "to_ids": false, "type": "text", "uuid": "640eac78-ffb6-46df-a8b8-5afc79bbcb8a", "value": "Type Description: Android\nMicrosoft: Trojan:AndroidOS/Fleckpe.AA\nVT Total Detection:24/67\nFirst Submission:2023-04-15T08:16:41.000000+00:00\nLast Submission:2023-04-15T08:16:41.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024024", "uuid": "2b6728fa-2f74-491a-94c6-b271e17d1de0", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024024", "to_ids": true, "type": "md5", "uuid": "7aaf8f50-c1ee-46b8-bb02-d0f1489c2570", "value": "d39b472b0974df19e5efbda4c629e4d5", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792695", "to_ids": true, "type": "sha1", "uuid": "11639188-1859-43ed-9f54-89c3c6676722", "value": "fdf0890504e5dc84b3e550f76ce8c094b8f80a67", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792695", "to_ids": true, "type": "sha256", "uuid": "8a6778ad-0723-448c-8576-9da4ac1296b5", "value": "916fee85c722886fa4ce112a1e28d1eb7b36b51b79e7bb17cbb9c800b01c2456", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792694", "to_ids": true, "type": "ssdeep", "uuid": "398706fe-47a3-4a74-9452-8273894d0658", "value": "786432:rMj86D7k5id69+cDxgujP7VuhvCFfVywZPrtTPk5C07WtleJ+WY+KpDggBfAVR:rMj8A7k5idvcdgQVuFgw+rps+tUJ5h0G" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792694", "to_ids": false, "type": "size-in-bytes", "uuid": "ddd8fee6-4f18-49dc-9097-996a591b8ec8", "value": "55515410" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792694", "to_ids": true, "type": "vhash", "uuid": "6cbadea1-e50e-4e0f-8dbc-448a1e63807b", "value": "c67ee2c2ff983882ffbf7aafaac6a572" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "filename", "timestamp": "1746792694", "to_ids": true, "type": "filename", "uuid": "fc2e4b9e-746c-4d68-90fc-f0a8b0877c3c", "value": "beauty-slimming-photo-editor.apk" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 05/10/2023", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792694", "to_ids": false, "type": "text", "uuid": "e40d3940-b046-4b54-a6eb-e9601a6273d6", "value": "Type Description: Android\nMicrosoft: None\nVT Total Detection:20/63\nFirst Submission:2022-11-25T12:27:31.000000+00:00\nLast Submission:2022-12-27T19:23:48.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024045", "uuid": "fe510780-f8bf-406d-b721-b5d34f846533", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024045", "to_ids": true, "type": "md5", "uuid": "86931b5b-8414-45b3-be18-87fa490d8364", "value": "175c59c0f9fab032dde32c7d5beede11", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792716", "to_ids": true, "type": "sha1", "uuid": "2edbb708-89ac-493c-bc09-556e3ed0254f", "value": "3cbbef2622999ffffa75f42f4a27996e566eda53", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792716", "to_ids": true, "type": "sha256", "uuid": "29ce89ea-e5cd-4515-b556-b4e1f46a13d8", "value": "59cb86640bbbab61e4a67e434ea8018bdec36c08fb821d479b2e205df6e73f5e", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792716", "to_ids": true, "type": "ssdeep", "uuid": "1f5a944d-2de3-4afc-9a48-8cc3c7e32cb3", "value": "786432:fyMBaptrXqw677K/QIEpy6rqplQpnE70OBiulq9DYWd:VyswaoEk6rJs0KD8VYWd" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792716", "to_ids": false, "type": "size-in-bytes", "uuid": "b1d88fb3-14e6-433b-ab76-824b3e60467e", "value": "38317237" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792716", "to_ids": true, "type": "vhash", "uuid": "88e494ad-4ee2-4947-96aa-f0b05e915989", "value": "b2aad21c3fa177bd00dad82d938dc374" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "filename", "timestamp": "1746792716", "to_ids": true, "type": "filename", "uuid": "e260de92-9c61-42ce-af60-cb570fafbbeb", "value": "beauty-camera-plus.apk" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 12/10/2023", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792716", "to_ids": false, "type": "text", "uuid": "c92775d1-3033-4c6c-b65b-5508d89f6a64", "value": "Type Description: Android\nMicrosoft: None\nVT Total Detection:21/64\nFirst Submission:2023-03-05T08:17:26.000000+00:00\nLast Submission:2023-03-05T08:17:26.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024083", "uuid": "aa797666-b15f-4f74-9ecb-f5cca54da699", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024083", "to_ids": true, "type": "md5", "uuid": "dc4398f3-44a9-463a-84c9-3490ba102d14", "value": "101500cd421566690744558af3f0b8cc", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792737", "to_ids": true, "type": "sha1", "uuid": "113ea02b-960f-4302-9426-8840c02b4cb1", "value": "5ea7797fa294620a680e06453d3ba6733e8e1646", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792737", "to_ids": true, "type": "sha256", "uuid": "9ae0648a-4967-4543-b25e-9ab7d03844ea", "value": "1daa9930f2195837e0a318c6ae83a143d78079abc2ca4647d92f3e55e489754c", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792737", "to_ids": true, "type": "ssdeep", "uuid": "184fe3c7-b929-4eb9-afb5-c811350d552c", "value": "393216:XiF3JHlwrSQG/JvSy/HJeRQCYloKz0Vl5eZZ3mSrfKPz100SvRQdGHQ9ZOeI6P2D:XQFwrwxvSy/HwKloKz2l5QZWSMe3w3OZ" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792737", "to_ids": false, "type": "size-in-bytes", "uuid": "d9b36a55-49f8-42bc-bbe1-4db4a78e4d00", "value": "21606190" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792737", "to_ids": true, "type": "vhash", "uuid": "d4830a3b-0f45-4c14-9510-078573c7aad5", "value": "4a11207fa7057f41bad8b270d662f366" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "filename", "timestamp": "1746792737", "to_ids": true, "type": "filename", "uuid": "d3f6529b-16c1-429d-9274-25c9be68624d", "value": "com.microclip.vodeoeditor.apk" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 05/10/2023", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792737", "to_ids": false, "type": "text", "uuid": "9e7a75d6-6631-40ef-b525-717ba3d27ef1", "value": "Type Description: Android\nMicrosoft: Trojan:AndroidOS/Multiverze\nVT Total Detection:27/65\nFirst Submission:2023-02-23T01:43:44.000000+00:00\nLast Submission:2023-05-08T13:42:09.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024104", "uuid": "b6c27a51-ea84-4f74-bdfe-3488e40e13cf", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024104", "to_ids": true, "type": "md5", "uuid": "b6dd5e26-d2cb-4c2e-925c-add275a0a38f", "value": "7f391b24d83cee69672618105f8167e1", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792758", "to_ids": true, "type": "sha1", "uuid": "ce84fa29-3a00-4e9e-ae9e-5a5f678e803d", "value": "70149e996d6a5b5004342c7203365d44ee46625b", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792759", "to_ids": true, "type": "sha256", "uuid": "b7042480-eec6-46e6-a128-cfdd4c78ddb9", "value": "90b9ddfe8498d8e38f27a30eb3f777e2972dc2df8427acb5b7bc32329edf082a", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792758", "to_ids": true, "type": "ssdeep", "uuid": "c37ff7cd-79cd-4d56-988c-a61f52081288", "value": "196608:9Ch9/WuySXn8yiXjgDTC1jTZPBvOn11Ng264p2LB6w0FockX2aocXy9OCYfHN1G1:949/RMnTgOm3S2MBN0ecpao6yy3GYe" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792758", "to_ids": false, "type": "size-in-bytes", "uuid": "86dda0a5-9ea2-458a-a39e-5b005ac350d9", "value": "14352523" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792758", "to_ids": true, "type": "vhash", "uuid": "74829602-7093-47f9-a00a-b56de9099e57", "value": "242fedf822bf01a6d7539ff4761a8c2b" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "filename", "timestamp": "1746792758", "to_ids": true, "type": "filename", "uuid": "2873170a-a552-4602-a730-51f5ceaf60a3", "value": "com.gif.camera.editor-13-apksos.com.apk" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 05/10/2023", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792758", "to_ids": false, "type": "text", "uuid": "7c244fcb-d0b6-4943-a906-9b4eecc0cae1", "value": "Type Description: Android\nMicrosoft: None\nVT Total Detection:21/65\nFirst Submission:2022-12-14T08:17:42.000000+00:00\nLast Submission:2023-09-10T08:50:49.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024125", "uuid": "47d270db-23f3-43da-b67f-bc08e9f1250c", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024125", "to_ids": true, "type": "md5", "uuid": "2b30f4ac-f9b4-439a-902c-2c8436265d98", "value": "f3ecf39bb0296ac37c7f35ee4c6eddbc", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792780", "to_ids": true, "type": "sha1", "uuid": "783ddefa-f10a-4c69-8e80-a7c4ad56652e", "value": "e1c925b5a9476ab60d6d857a8db5d46737ac15f9", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792780", "to_ids": true, "type": "sha256", "uuid": "bfd95d15-96b2-44eb-8331-415b487c001e", "value": "692b29b56e644b5edd4d9e26d637a983ae1340c497d1eb8880ebc1ac982aa761", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792779", "to_ids": true, "type": "ssdeep", "uuid": "49657909-19dc-4a97-9fa2-b8280f5edecb", "value": "393216:F9tsi5rjEo0B0f67jhJt+vR0dMQ7jpdJZZhG45RUO4FM6Oah+dY9lh6QbQhnPWyW:3tsC+k6J+07TjsO4FFsslhhbQQyCZ" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792779", "to_ids": false, "type": "size-in-bytes", "uuid": "002d5a2d-9c90-477f-be68-07ea34427fe2", "value": "23024290" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792779", "to_ids": true, "type": "vhash", "uuid": "c9dbb1b6-418f-427f-a9f5-5df14a963c4f", "value": "9597692182161d4f61535a84856528bf" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 04/10/2023", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792779", "to_ids": false, "type": "text", "uuid": "5b081a58-d83c-4f06-9cd1-c80c8da31b5e", "value": "Type Description: Android\nMicrosoft: Trojan:AndroidOS/Fleckpe!MTB\nVT Total Detection:23/64\nFirst Submission:2023-05-06T16:45:50.000000+00:00\nLast Submission:2023-05-06T16:45:50.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024146", "uuid": "5279db71-bd41-470a-8302-3e7cb9d83e7a", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024146", "to_ids": true, "type": "md5", "uuid": "bd3e3781-d109-4244-bd63-cbcb94c8e8bf", "value": "e92ff47d733e2e964106edc06f6b758a", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792801", "to_ids": true, "type": "sha1", "uuid": "698ed04c-6361-4d54-9980-2e025d9b2e07", "value": "11dcbab9e550e8a242b5ee96551767a4f2924536", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792801", "to_ids": true, "type": "sha256", "uuid": "7222ff51-e3a2-4233-81ab-f5d503718bd0", "value": "3f586d3a87ce5adcd9e2f0f84a564bfe54c71cf1543020c5870760e70120bb18", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792801", "to_ids": true, "type": "ssdeep", "uuid": "a5a0489d-ca4e-419f-81af-03bde576868f", "value": "3145728:saGFbuieJ0QOsue7SmezJ8lMJWjEKFIqve9h0qrCDfI:saGhy0re7CzJkMcot5hLf" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792801", "to_ids": false, "type": "size-in-bytes", "uuid": "3e7aaa7c-50ba-4bfd-af63-bbbe8f8e01b6", "value": "115885795" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792801", "to_ids": true, "type": "vhash", "uuid": "9c1ddbc1-c737-4d3a-b551-eaeac8a1ad5d", "value": "ac00e829a68ee4e53220a4668b22f291" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "filename", "timestamp": "1746792801", "to_ids": true, "type": "filename", "uuid": "1bf35314-7c06-4fad-aa0e-8c460c30f9de", "value": "Photo Camera Editor_12.13_apkcombo.com.apk" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 05/10/2023", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792801", "to_ids": false, "type": "text", "uuid": "4113cdae-7a36-483e-908e-bd36a5e297b2", "value": "Type Description: Android\nMicrosoft: None\nVT Total Detection:18/65\nFirst Submission:2022-12-23T13:10:05.000000+00:00\nLast Submission:2024-06-20T10:13:47.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024167", "uuid": "065f585c-d7c8-4272-9bd8-d91d2f0fcd6e", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024167", "to_ids": true, "type": "md5", "uuid": "17b8bf22-f372-486d-853d-c3706867bd81", "value": "b66d77370f522c6d640c54da2d11735e", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792822", "to_ids": true, "type": "sha1", "uuid": "22427261-e586-4d2c-883d-cc480085ee40", "value": "09204fb48d1bf56579db56c2cd3143cc44b52458", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792822", "to_ids": true, "type": "sha256", "uuid": "92ff8aa8-0269-4a84-8a01-bd8c4befed9d", "value": "7bc4783bcfbfe948577d25411869fa96c1fb8783c8e3600ef97f3053eab0d66e", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792822", "to_ids": true, "type": "ssdeep", "uuid": "a5fec39e-8da8-4445-bf8b-4fa702191ed5", "value": "393216:QTZz6LFlVQYHHb1C6M/okemok0NOWUhhu3h6bvY2VHQnLLu5DpjVizRHPivs44eV:ONAhbQ/XoQ4IR6LS5FjVUKvp4eqkj" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792822", "to_ids": false, "type": "size-in-bytes", "uuid": "588881a2-eeb2-4543-8fa9-b201411c2d0b", "value": "26232825" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792822", "to_ids": true, "type": "vhash", "uuid": "6c93b803-5255-4039-9ec7-c03f3354108f", "value": "b0b1480adc48e3736ce9c7eeb0c400f1" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "filename", "timestamp": "1746792822", "to_ids": true, "type": "filename", "uuid": "7f80601f-32bc-411b-8bc5-72637ed46a1b", "value": "hd-4k-wallpaper.apk" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 05/10/2023", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792822", "to_ids": false, "type": "text", "uuid": "00a98d6b-59f5-407f-be31-d9960fed1766", "value": "Type Description: Android\nMicrosoft: Trojan:AndroidOS/Multiverze\nVT Total Detection:26/65\nFirst Submission:2022-03-06T23:20:48.000000+00:00\nLast Submission:2022-03-06T23:20:48.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024188", "uuid": "3cceb559-ea40-4c01-a628-f94862446e7d", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024188", "to_ids": true, "type": "md5", "uuid": "3a740d75-7750-45ac-839a-ff2039d11067", "value": "3d0a18503c4ef830e2d3fbe43ecbe811", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792844", "to_ids": true, "type": "sha1", "uuid": "d15b1dec-9e8a-4ba2-876b-ac9a2368f5c2", "value": "ebcc7136aefb541e1f6d4793f3c088e7123cba14", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792844", "to_ids": true, "type": "sha256", "uuid": "ebe7c290-9f37-4942-a9bb-fba9dbeb0555", "value": "c20ca63ba151271dbf67115abff26d92676cdbbefead1a2838a3b0cd459e7f89", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792843", "to_ids": true, "type": "ssdeep", "uuid": "bbc66b79-4766-45e6-8622-b0700537edb8", "value": "393216:RksGtTTLlTToZTaLfyl72Zg82xSO+IfpH3W7VeVmt5zWIbMzDx18hDxndN:SlfLG3XSXSpH33oYq01WndN" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792843", "to_ids": false, "type": "size-in-bytes", "uuid": "d133f4f4-5b3d-407e-93d8-14f59ffcd0d1", "value": "26850746" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792843", "to_ids": true, "type": "vhash", "uuid": "8e530e44-de64-4494-9e86-1bd641ecc3a4", "value": "1337ce02b1a4eeb592357ca22cdf8158" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "filename", "timestamp": "1746792843", "to_ids": true, "type": "filename", "uuid": "f9d53244-413d-45e7-9c40-2c2f608f339e", "value": "Fingertip Graffiti_1.3.5_apkcombo.com.apk" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 04/10/2023", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792843", "to_ids": false, "type": "text", "uuid": "93b10d79-7352-4181-b84b-b3d5627d1a15", "value": "Type Description: Android\nMicrosoft: Trojan:Script/Wacatac.B!ml\nVT Total Detection:22/66\nFirst Submission:2022-10-22T01:11:58.000000+00:00\nLast Submission:2024-06-20T10:09:55.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024210", "uuid": "c7ea1c5d-7117-478b-a82e-3027ba353d49", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024210", "to_ids": true, "type": "md5", "uuid": "9b06c7fc-be2f-4b7c-a734-67cf2283cbf9", "value": "1879c233599e7f2634ef8d5041001d40", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792865", "to_ids": true, "type": "sha1", "uuid": "96ce415a-cc12-4f6b-925e-9becf9cfbf84", "value": "61dc4a0ee5cf305c28524f490855a5c39f3ebaa0", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792865", "to_ids": true, "type": "sha256", "uuid": "2bc729ec-a17d-4d6a-a4a9-191d5d837011", "value": "4f5ea5f0ecbe75cb3d70f1442c52b6d2e27793110af154a5471a71235d0cd404", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792864", "to_ids": true, "type": "ssdeep", "uuid": "3dd6a4be-7be2-4227-924c-7e3373d4d0a6", "value": "196608:bB25MPC0CgwDcOjqFdxX91Z0fzSVEQ1K/naVaUNe5/ZdkOsw:gl0OM91qfzFnavOZuOsw" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792864", "to_ids": false, "type": "size-in-bytes", "uuid": "4fdeeaaf-9db5-4f45-8347-b980c9d676f9", "value": "6920009" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792864", "to_ids": true, "type": "vhash", "uuid": "a3164fe4-5bcd-4a1f-9400-02fc52efb470", "value": "06e5c853386c8537b28a63b6c34c566b" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 04/10/2023", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792864", "to_ids": false, "type": "text", "uuid": "9ae03802-c6b2-495d-9f41-4e0973fd9ca5", "value": "Type Description: Android\nMicrosoft: Trojan:AndroidOS/Fleckpe!MTB\nVT Total Detection:23/65\nFirst Submission:2023-05-06T16:43:59.000000+00:00\nLast Submission:2023-05-06T16:43:59.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024231", "uuid": "ff7d97da-e5d2-4c6f-a9df-b989f0db349f", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024231", "to_ids": true, "type": "md5", "uuid": "4ee473c8-8b35-46ae-b2dd-5525a8530828", "value": "dd16bd0cb8f30b2f6daac91af4d350be", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746792907", "to_ids": true, "type": "sha1", "uuid": "0db6adc5-88a5-4b7a-856b-dd1e967e7a2f", "value": "9ec52f428dea79ef1c241dfcce3c7faf2e4e529e", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746792907", "to_ids": true, "type": "sha256", "uuid": "b8241c77-1cb8-4ecb-b320-495dad35be00", "value": "10f0be20bc9c0a1281df3d36d7e6bb7d9b09fc43e9133e131803a69c9cd5f3dd", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746792907", "to_ids": true, "type": "ssdeep", "uuid": "9816d1b0-562d-479f-818b-64d6a55d2750", "value": "768:skMSi4PpEAENr30Z1LWKIIa55PwzoUMi/EcAZxQZU/R9bgz+m0w:skMSFyNoO55nU+40R9b0cw" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746792907", "to_ids": false, "type": "size-in-bytes", "uuid": "1999bb20-ed65-471a-bb92-332fcfa8d02a", "value": "39496" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746792907", "to_ids": true, "type": "vhash", "uuid": "9de56750-42c3-43d1-b186-28a67761b3f5", "value": "d42c8e20f81bea36d5ee9317726cf707" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 25/02/2025", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746792907", "to_ids": false, "type": "text", "uuid": "94dbf04f-a466-4878-9531-a3e55055a1e0", "value": "Type Description: JAR\nMicrosoft: Trojan:AndroidOS/Multiverze\nVT Total Detection:17/66\nFirst Submission:2023-05-13T11:03:38.000000+00:00\nLast Submission:2023-05-13T11:03:38.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024252", "uuid": "f2162d3c-2e62-40b2-ac46-ddc9c3a29422", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024252", "to_ids": true, "type": "md5", "uuid": "9c61490b-0244-440b-b016-4a92288b2914", "value": "37162c08587f5c3009afceec3efa43eb", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746793012", "to_ids": true, "type": "sha1", "uuid": "5c3760c6-92c1-493e-a457-8d1718839b46", "value": "ecf244ef50da86faebf8d629132617720b4e9671", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746793012", "to_ids": true, "type": "sha256", "uuid": "a8afa843-68d3-4034-9701-78488b421495", "value": "bdbf514e85f8827e4f75dce9e56abdb6b848e3fe0bb2d3b197770f3e5c35ecee", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746793012", "to_ids": true, "type": "ssdeep", "uuid": "0a8decb6-ce5b-47cb-9ba9-581d26e24529", "value": "1536:hnah9MbYrQLpMxMQ7odG5DAEjRcLLPAw6HMlU73/5Jup2thOmzP0Bss1b:NwMb+QLp5sgoTSLLPAz7zuiojb" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746793012", "to_ids": false, "type": "size-in-bytes", "uuid": "d4de936b-9c5c-4122-b54a-828fcc31af25", "value": "100534" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746793012", "to_ids": true, "type": "vhash", "uuid": "f2a25cba-0125-458a-a008-7931845bb790", "value": "d42c8e20f81bea36d5ee9317726cf707" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 25/02/2025", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746793012", "to_ids": false, "type": "text", "uuid": "e3a9b0cd-c50c-456d-8ede-ab31204274c9", "value": "Type Description: JAR\nMicrosoft: Trojan:AndroidOS/Fleckpe!MTB\nVT Total Detection:17/66\nFirst Submission:2023-05-11T17:01:25.000000+00:00\nLast Submission:2023-05-11T17:01:25.000000+00:00" } ] }, { "comment": "", "deleted": false, "description": "File object describing a file with meta-information", "meta-category": "file", "name": "file", "template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "template_version": "25", "timestamp": "1747024273", "uuid": "2cf92e4d-6f48-4c4b-83ff-ef1954ce7be7", "Attribute": [ { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "md5", "timestamp": "1747024273", "to_ids": true, "type": "md5", "uuid": "543bad75-220a-4794-ad22-06103bd0aa5f", "value": "ecdc4606901abd9bb0b160197efe39b7", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha1", "timestamp": "1746793096", "to_ids": true, "type": "sha1", "uuid": "38ce144c-b9ee-444b-8ef6-e8be27766015", "value": "ebaf7684774556a3d56c22f8df0ec0cdf112a578", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "sha256", "timestamp": "1746793096", "to_ids": true, "type": "sha256", "uuid": "fe519f89-31fe-48fa-89bd-68d5ab0f7fbf", "value": "62a06126343c97f0b188a5a0d667b3de570170abc1c276cdf1b459d6830f662e", "Tag": [ { "colour": "#260091", "local": false, "name": "rectifyq:ioc=\"enriched\"", "relationship_type": "" } ] }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "ssdeep", "timestamp": "1746793096", "to_ids": true, "type": "ssdeep", "uuid": "2e7a739f-4685-408b-92d6-e38ea88b58a6", "value": "192:SIl19zvFCY0mszH6mC0uHwz6W5c+hIynB+MaysvAGNwdLuei4Tn:blPzQxH6mvu06+DhICbXGNwj" }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": true, "object_relation": "size-in-bytes", "timestamp": "1746793096", "to_ids": false, "type": "size-in-bytes", "uuid": "8084cb8d-7249-46cf-aa4a-b4e341593814", "value": "9733" }, { "category": "Payload delivery", "comment": "", "deleted": false, "disable_correlation": false, "object_relation": "vhash", "timestamp": "1746793096", "to_ids": true, "type": "vhash", "uuid": "72ebda1f-1b74-4ba2-8853-a65faa6547bf", "value": "d42c8e20f81bea36d5ee9317726cf707" }, { "category": "Other", "comment": "Checked: 09/05/2025\nLast-scan\t: 26/02/2025", "deleted": false, "disable_correlation": true, "object_relation": "text", "timestamp": "1746793096", "to_ids": false, "type": "text", "uuid": "1af94dd8-d839-4d6d-896b-708fafbdf973", "value": "Type Description: JAR\nMicrosoft: None\nVT Total Detection:16/66\nFirst Submission:2023-05-11T16:37:36.000000+00:00\nLast Submission:2023-05-11T16:37:36.000000+00:00" } ] } ] } }