-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathsample.tsv
We can make this file beautiful and searchable if this error is corrected: Illegal quoting in line 2.
33 lines (33 loc) · 6.84 KB
/
sample.tsv
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
date Org User Event Title(Info) Tag1(Event Source) Tag2(Event Type1) Tag2(Event Type2) Tag2(Event Type3) value category type Attribute Tag comment
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https://www.lac.co.jp/english/report/2018/01/23_alert_01.html External analysis link
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https://www.jpcert.or.jp/magazine/acreport-plugx2.html External analysis link
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https://www.fireeye.com/content/dam/fireeye-www/global/en/current-threats/pdfs/wp-operation-quantum-entanglement.pdf External analysis link
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https://researchcenter.paloaltonetworks.com/2016/08/unit42-aveo-malware-family-targets-japanese-speaking-users/ External analysis link
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https://researchcenter.paloaltonetworks.com/2017/01/unit42-dragonok-updates-toolset-targets-multiple-geographic-regions/ External analysis link
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 97763d25af878d73d19deabe9ea2d564 Payload delivery md5 PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 29cdae7dc2a7f7376a19e4de91b69c98 Payload delivery md5 PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 58ba2c0ed39d5c874a4933677508f5cc Payload delivery md5 PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX php.marbletemps.com Network activity hostname PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX bbs.donkeyhaws.info Network activity hostname PIPX 2017.9.20-12.6
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX http.donkeyhaws.info Network activity hostname PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https.osakaintec.com Network activity hostname PIPX -2017.12.6
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 206.161.218.49 Network activity ip-dst PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 207.226.137.207 Network activity ip-dst PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 118.193.163.133 Network activity ip-dst PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 103.226.153.39 Network activity ip-dst PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https://www.lac.co.jp/english/report/2018/01/23_alert_01.html External analysis link
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https://www.jpcert.or.jp/magazine/acreport-plugx2.html External analysis link
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https://www.fireeye.com/content/dam/fireeye-www/global/en/current-threats/pdfs/wp-operation-quantum-entanglement.pdf External analysis link
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https://researchcenter.paloaltonetworks.com/2016/08/unit42-aveo-malware-family-targets-japanese-speaking-users/ External analysis link
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https://researchcenter.paloaltonetworks.com/2017/01/unit42-dragonok-updates-toolset-targets-multiple-geographic-regions/ External analysis link
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 97763d25af878d73d19deabe9ea2d564 Payload delivery md5 PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 29cdae7dc2a7f7376a19e4de91b69c98 Payload delivery md5 PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 58ba2c0ed39d5c874a4933677508f5cc Payload delivery md5 PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX php.marbletemps.com Network activity hostname PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX bbs.donkeyhaws.info Network activity hostname PIPX 2017.9.20-12.6
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX http.donkeyhaws.info Network activity hostname PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX https.osakaintec.com Network activity hostname PIPX -2017.12.6
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 206.161.218.49 Network activity ip-dst PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 207.226.137.207 Network activity ip-dst PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 118.193.163.133 Network activity ip-dst PIPX
2018/4/3 LAC [email protected] How PlugX is related to the APT attack group "DragonOK" tlp:white,OSINT APT DragonOK Poison Ivy,PlugX,PIPX 103.226.153.39 Network activity ip-dst PIPX