Scribd
Upload
4 views7 pages

wikiQR 8

The document contains metadata related to a QR code linked to the URL 'http://www.wikipedia.com'. It includes information about the file's creation, threat level, and various hashes for data integrity verification. Additionally, it details an email associated with the QR code, including sender and recipient information.

Uploaded by

gr.iakimenko
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
4 views7 pages

wikiQR 8

The document contains metadata related to a QR code linked to the URL 'http://www.wikipedia.com'. It includes information about the file's creation, threat level, and various hashes for data integrity verification. Additionally, it details an email associated with the QR code, including sender and recipient information.

Uploaded by

gr.iakimenko
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 7

{

"args": {
"isMainObj": false,
"moduleName": "QR",
"data": {
"Content": {
"url": "http://www.wikipedia.com"
},
"head": {
"_id": "66a8f59a2d4f920028e49926",
"type": "HASH",
"submitterCountry": "UNKNOWN",
"uuid": "25eb6e9b-fb72-4e3a-b296-4ec657fdd479",
"lastSeen": "2024-07-30T14:15:54.964Z",
"threatLevel": "UNKNOWN",
"threats": [],
"data": {
"size": 21855,
"preview": {
"image": "9598d415-2508-4f70-89e9-fb9906364afa",
"hex": true
},
"gridfs": "66a8f59b2d4f920028e4992d",
"removed": false,
"hashes": {
"md5": "e4eccc94b3fac9156d1bb2474037c11c",
"head_hash": "aeca351e5c48f0c316a93cc541072270",
"sha1": "da853a17491a694a39bbfccdb2097ca46b940e20",
"sha256":
"66ff578d47540875323ae5ec399ae8a25609104bcd06e4e1745fb6d56e2e3b65",
"ssdeep":
"384:DA1QOPQ3NjkgBqzSeRn3dTBUjWJqAyGVoXMBeitjpzplK:DsQOPQ3NjTqzSYXTVoX6eittK"
},
"entropy": 7.084299453713363
},
"source": "dropped",
"tags": [],
"created": "2024-07-30T14:15:54.963Z",
"version": 1,
"__v": 0,
"icon": "image"
},
"entry": {
"__v": 0,
"task": "66c35e11138e67002a1ff5ae",
"parent": null,
"parentColl": null,
"submitterCountry": "UNKNOWN",
"linkToParent": null,
"head": "66a8f59a2d4f920028e49926",
"head_hash": "aeca351e5c48f0c316a93cc541072270",
"_id": "66c35e12f1d6fd0028c89dad",
"threatLevel": "UNKNOWN",
"names": {
"full": "wikiQR.jpg",
"part": "wikiQR.jpg"
},
"initDiscVersion": 0,
"ext": ".jpg",
"scores": [],
"source": "extracted",
"type": "DROP",
"created": "2024-08-19T15:00:34.267Z",
"version": 1
},
"detail": {
"__v": 0,
"head": "66a8f59a2d4f920028e49926",
"entry": "66c35e12f1d6fd0028c89dad",
"parent": "66c35e11c888fc00272312e8",
"type": "QR",
"info": {
"data": [
{
"value": [
{
"value": "http://www.wikipedia.com",
"name": "url"
}
],
"name": "Content"
}
],
"isDataUnifiedStruct": true
},
"_id": "66c35e13f1d6fd0028c89dc3",
"nestingLvl": 1,
"times": {
"created": "2024-08-19T15:00:35.397Z"
},
"discovering": {
"done": true,
"need": false,
"queue": 6
},
"isError": false,
"doNotRender": false,
"version": 1
},
"attachments": [],
"callStack": [
{
"_id": "66c35e11c888fc00272312e8",
"head": {
"_id": "66a8f599378c29002747cf99",
"type": "HASH",
"submitterCountry": "unknown",
"uuid": "5248da06-8820-4a7d-b4b3-92b2d06ad130",
"lastSeen": "2024-07-30T14:15:53.986Z",
"threatLevel": "UNKNOWN",
"threats": [],
"data": {
"size": 146456,
"preview": {
"image": "66c35e12f1d6fd0028c89db5",
"hex": true,
"text": false
},
"gridfs": "66a8f59a378c29002747cf9a",
"removed": false,
"hashes": {
"md5": "3acc46d612a12a19011b9bdda891023b",
"head_hash": "521fde132f4f9b6c1c8e9f79940c2138",
"sha1": "77d12c8d08acf9604f261dd807936bc8ca25d864",
"sha256":
"04605ba209cf5e7d31d1815bcaa307cb9b6c8486541433626c521d716dc57559",
"ssdeep":
"3072:ukf2QE1m0cK8ItqZvjK5KMZ5RXSJNFsQJMbYV6Tyt1RhVIGzsPcBdzA7o7:ukNE9EUqBK5KMlXSLF
sFbYVSyt1RhVH7"
},
"entropy": 6.0181047535843515
},
"source": "unknown",
"tags": [],
"created": "2024-07-30T14:15:53.986Z",
"version": 1,
"__v": 0,
"icon": "binary"
},
"entry": {
"_id": "66c35e11c888fc00272312de",
"task": "66c35e11138e67002a1ff5ae",
"parent": null,
"parentColl": null,
"submitterCountry": "unknown",
"linkToParent": null,
"head": "66a8f599378c29002747cf99",
"head_hash": "521fde132f4f9b6c1c8e9f79940c2138",
"threatLevel": "UNKNOWN",
"names": {
"full": "1QR.eml",
"part": "1QR.eml",
"location": "desktop"
},
"initDiscVersion": 0,
"ext": ".eml",
"scores": [],
"source": "unknown",
"type": "SAMPLE",
"created": "2024-08-19T15:00:33.271Z",
"version": 1,
"__v": 0
},
"type": "EMAIL",
"info": {
"data": [
{
"value": [
{
"value": [],
"name": "IPs"
},
{
"value": [],
"name": "URLs"
},
{
"value": [
"[email protected]",
"[email protected]"
],
"name": "Emails"
}
],
"name": "IOCs"
},
{
"value": [
{
"value": "[email protected]",
"name": "Delivered-To"
},
{
"value": "<[email protected]>",
"name": "Return-path"
},
{
"value": [
"by f177.i.mail.ru with local (envelope-from
<[email protected]>)\r\n\tid 1sLaE7-0008LD-KC\r\n\tfor [email protected]; Mon, 24 Jun
2024 06:18:44 +0300",
"by e.mail.ru with HTTP;\r\n\tMon, 24 Jun 2024 06:18:43
+0300"
],
"name": "Received"
},
{
"value": "=?UTF-8?B?
0JPRgNC40LPQvtGA0LjQuSDQr9C60LjQvNC10L3QutC+?= <[email protected]>",
"name": "From"
},
{
"value": "=?UTF-8?B?
0JPRgNC40LPQvtGA0LjQuSDQr9C60LjQvNC10L3QutC+?= <[email protected]>",
"name": "To"
},
{
"value": "=?UTF-8?B?
c2FtcGxlLmpwZWcsIHNhbXBsZS5wZGYsIHdpa2lRUi5qcGc=?=",
"name": "Subject"
},
{
"value": "1.0",
"name": "MIME-Version"
},
{
"value": "Mail.Ru Mailer 1.0",
"name": "X-Mailer"
},
{
"value": "0",
"name": "X-SenderField-Remind"
},
{
"value": "Mon, 24 Jun 2024 06:18:43 +0300",
"name": "Date"
},
{
"value": "<[email protected]>",
"name": "Message-ID"
},
{
"value": "3 (Normal)",
"name": "X-Priority"
},
{
"value": "=?UTF-8?B?
0JPRgNC40LPQvtGA0LjQuSDQr9C60LjQvNC10L3QutC+?= <[email protected]>",
"name": "Reply-To"
},
{
"value": "multipart/mixed;\r\n\tboundary=\"----
3dA1fCe723296F67Be92c2114891Af63-nGRrk0GkkbN0GUTu-1719199123\"",
"name": "Content-Type"
},
{
"value": "f177.i.mail.ru; auth=pass [email protected]
[email protected]",
"name": "Authentication-Results"
},
{
"value": "fe",
"name": "X-Mailru-Src"
},
{
"value": "646B95376F6C166E",
"name": "X-7564579A"
},
{
"value":
"119C1F4DF6A9251C490D7C857312CEC2DA549D8894D515353E40853DCFAF7DEA8FD872164937FA4CA9
76836B062421CD033888C2959B81EC6B06B1929174E59F714113A1BE363A29",
"name": "X-77F55803"
},
{
"value":
"70AAF3C13DB70168C09775C1D3CA48CFF82DE84504A19E5EB2086D80B0504778CF19DD082D7633A0AC
BFF42033827DA764CD17681C2FEB7A23F8577A6DFFEA7C7FD3A6AEABDCB6AAC4224003CC836476ABE13
4FDCE4E2725BFD28B28ED4578739E625A9149C048EE9ECD01F8117BC8BEBFD28B28ED4578732EF20D2F
80756B5F40A5AABA2AD37119BCF491FFA38154B6D5E8D9A59859A8B6E323A604FE95ED09BFD28B28ED4
57873F004C9065253843040AFE8DEDB3B89069295C2E9FA3191EE1B59CA4C82EFA658159CCE17956333
355E29C5A3E0D866D6BB0A4F435E46E6718B35066C979671628AA50765F79006377C70927E348084853
89733CBF5DBD5E913377AFFFEAFD269176DF2183F8FC7C0C26CFBAC0749D213D2E47CDBA5A96583BD4B
6F7A4D31EC0BC014FD901B82EE079FA2833FD35BB23D27C277FBC8AE2E8BAE9A1BBD95851C5BA471835
C12D1D977C4224003CC8364762BB6847A3DEAEFB0F43C7A68FF6260569E8FC8737B5C2249D082881546
D93491E827F84554CEF50127C277FBC8AE2E8B8C7ADC89C2F0B2A5AAAE862A0553A39223F8577A6DFFE
A7CA35FE21102777C0943847C11F186F3C59DAA53EE0834AAEE",
"name": "X-7FA49CB5"
},
{
"value":
"0D63561A33F958A5CD9CBEBD03CFBAB37AED802D2AC07035AB6FF83CFACC343EF87CCE6106E1FC07E6
7D4AC08A07B9B03D903A0D247D34EBCB5012B2E24CD356",
"name": "X-C1DE0DAB"
},
{
"value":
"1C3962B70DF3F0ADE2815F1F17DA719077DD89D51EBB77422CCB5A6D6581D03D0776B5B2C279835F17
BCBE6708A5A68D02015372BE9702A276D35132830B2779475DA22060A64C4C931C343929A2685B4428E
D6FC6F2FC65124F8A7CC5F765C4406BD9281BAFFD7F8A118F55D0C5E4245F899364573E73B552EE4E5D
9E54FDA44C41F94D744909CE45136B7CD43F6E34BD2848E32C35BB7CF0A6D2C91ED28CB6",
"name": "X-C8649E89"
},
{
"value":
"3ZO7eAau8CL7WIMRKs4sN3D3tLDjz0dLbV79QFUyzQ2Ujvy7cMT6pYYqY16iZVKkSc3dCLJ7zSJH7+u4VD
18S7Vl4ZUrpaVfd2+vE6kuoey4m4VkSEu530nj6fImhcD4MUrOEAnl0W826KZ9Q+tr5+wYjsrrSY/
u8Y3PrTqANeitKFiSd6Yd7yPpbiiZ/d5BsxIjK0jGQgCHUM3Ry2Lt2G3MDkMauH3h0dBdQGj+BB/
iPzQYh7XS329fgu+/vnDh4tFHUL/eqsJyxZSqtAqNMA==",
"name": "X-D57D3AED"
},
{
"value":
"cc01/6NNU1NdBgBddLUKAwplAfWxhksaTDadlajb/bxNkGjzYymT8w==",
"name": "X-F696D7D5"
},
{
"value":
"AE8590FDF2E1EF2EDE8669C2D2338D2016DF82A1281F2A29FBFBCFB1F46794BFE55148A95031F3DE9C
643B22177C1CFEEE11A96758FCA380CEBC4A272121FA44CD26BA14935EF1A179F801B34316C252E08AD
13A84CB394574B856138ABC29FF66FEC6BF5C9C28D967EA787935ED9F1B",
"name": "X-Mailru-Sender"
},
{
"value": "Ok",
"name": "X-Mras"
},
{
"value": "undefined",
"name": "X-Spam"
},
{
"value": "d,30633d0",
"name": "X-Mailru-Intl-Transport"
}
],
"name": "Headers"
},
{
"value": [],
"name": "Properties"
},
{
"value": [],
"name": "Recepients"
}
],
"isDataUnifiedStruct": true
},
"nestingLvl": 0,
"times": {
"created": "2024-08-19T15:00:33.733Z"
},
"discovering": {
"done": true,
"need": false,
"queue": 6
},
"isError": false,
"doNotRender": false,
"version": 1,
"__v": 0
}
]
},
"path": "wikiQR.jpg",
"basename": "wikiQR.jpg"
},
"indicator": {
"task": "66c35e11138e67002a1ff5ae",
"epoch": "2024-07-30T14:15:54.963Z",
"message": {
"filename": "wikiQR.jpg",
"eventCollectionName": "events.drops",
"isDiscoveringDrop": true,
"md5": "e4eccc94b3fac9156d1bb2474037c11c",
"sha1": "da853a17491a694a39bbfccdb2097ca46b940e20",
"sha256": "66ff578d47540875323ae5ec399ae8a25609104bcd06e4e1745fb6d56e2e3b65",
"time": "2024-07-30T14:15:54.963Z"
}
}
}

You might also like