ESET Online Help

Search
Select the topic

Botnet - Target feed

This feed is a subset of a Botnet feed and provides information about the targets.

ei.target

Below is a description of some attributes of the ei.target feed.

Target—The targeted link string that the botnet is attacking (*paypal.*/webscr?cmd=_login-submit*).

Targeted by—The family name of the attacking botnet. This field has the same value as ei.botnet and ei.cc (Win32/Dorkbot.B worm).

JSON

Below is a snippet of an ei.target feed in JSON format.

STIX 2.0

Below is a snippet of an ei.target feed in STIX 2.0 format.

 

The following types of STIX domain objects are available for the target feed:

Malware—The detection name of the malware targeting the identity

Identity—The name of the target, usually in the form of a link string, human-readable company name, or process name

Relationship

stix_relationships_target_feed