{
  "Event": {
    "analysis": "0",
    "date": "2017-12-18",
    "extends_uuid": "",
    "info": "[Threat Intel] MA-690.122017: MyCERT Alert - Fake PDRM Malicious APK",
    "protected": false,
    "publish_timestamp": "1780039822",
    "published": true,
    "threat_level_id": "2",
    "timestamp": "1772901979",
    "uuid": "dd295f39-d156-45a9-8d41-6c505b1f094e",
    "Orgc": {
      "name": "Rectifyq",
      "uuid": "cd9bd516-61fa-476b-980f-2f8de03992d4"
    },
    "Tag": [
      {
        "colour": "#ffffff",
        "local": false,
        "name": "tlp:clear",
        "relationship_type": ""
      },
      {
        "colour": "#004646",
        "local": false,
        "name": "type:OSINT",
        "relationship_type": ""
      },
      {
        "colour": "#915448",
        "local": false,
        "name": "misp-galaxy:target-information=\"Malaysia\"",
        "relationship_type": ""
      },
      {
        "colour": "#0088cc",
        "local": false,
        "name": "misp-galaxy:sector=\"Police - Law enforcement\"",
        "relationship_type": ""
      },
      {
        "colour": "#49a260",
        "local": false,
        "name": "rectifyq:category=\"threat\"",
        "relationship_type": ""
      },
      {
        "colour": "#110041",
        "local": false,
        "name": "rectifyq:sub-category=\"malware-analysis\"",
        "relationship_type": ""
      },
      {
        "colour": "#d92121",
        "local": false,
        "name": "rectifyq:target=\"targeted\"",
        "relationship_type": ""
      },
      {
        "colour": "#dd2e44",
        "local": false,
        "name": "rectifyq:MY-relevancy=\"relevant\"",
        "relationship_type": ""
      },
      {
        "colour": "#0088cc",
        "local": false,
        "name": "misp-galaxy:f3b46834-6ce9-44ef-852d-d7ac61a12920=\"00afde8d-6de3-46b1-9f35-e98fc8c1ee07\"",
        "relationship_type": ""
      },
      {
        "colour": "#0088cc",
        "local": false,
        "name": "misp-galaxy:financial-fraud=\"Fake App\"",
        "relationship_type": ""
      },
      {
        "colour": "#0088cc",
        "local": false,
        "name": "misp-galaxy:financial-fraud=\"Fake Website\"",
        "relationship_type": ""
      },
      {
        "colour": "#e931d8",
        "local": false,
        "name": "misp-galaxy:mitre-attack-pattern=\"Capture SMS Messages - T1412\"",
        "relationship_type": ""
      },
      {
        "colour": "#e1e5b7",
        "local": false,
        "name": "misp-galaxy:mitre-attack-pattern=\"SMS Control - T1582\"",
        "relationship_type": ""
      },
      {
        "colour": "#0088cc",
        "local": false,
        "name": "misp-galaxy:producer=\"4a61b42d-e3f0-4964-9d88-4aa96e24c31d\"",
        "relationship_type": ""
      }
    ],
    "Attribute": [
      {
        "category": "External analysis",
        "comment": "",
        "deleted": false,
        "disable_correlation": false,
        "timestamp": "1740379320",
        "to_ids": false,
        "type": "link",
        "uuid": "97c2c6fb-d445-4e0d-be27-da1b95696795",
        "value": "https://www.mycert.org.my/portal/advisory?id=MA-690.122017"
      },
      {
        "category": "Targeting data",
        "comment": "",
        "deleted": false,
        "disable_correlation": false,
        "timestamp": "1740379388",
        "to_ids": false,
        "type": "target-org",
        "uuid": "f1685fa7-6638-4d50-9f9e-fda7d82fbac9",
        "value": "PDRM"
      }
    ]
  }
}