enriched.json

{
    "args": "http://157.52.151.215/s443ls",
    "user": "root",
    "datetime": "2019-03-01 12:29:29:276538",
    "type": "spyusers",
    "processInfo": 7960,
    "containerName": "honeypot-157.52.151.215",
    "containerId": "e6a625ff7a00",
    "srcaddr": "157.52.151.215",
    "baseCommand": "wget",
    "@timestamp": "2019-03-01T12:29:29.276538",
    "src_geo": "34.0729,-118.2606",
    "geo_info": {
      "continent_code": "NA",
      "country_code2": "US",
      "country_name": "United States",
      "location": {
        "lon": -118.2606,
        "lat": 34.0729
      },
      "dma_code": 803,
      "timezone": "America/Los_Angeles",
      "region_name": "CA",
      "real_region_name": "California",
      "city_name": "Los Angeles",
      "postal_code": "90012"
    },
    "callouts": [
      {
        "fullUri": "http://157.52.151.215/s443ls",
        "schema": "http",
        "username": "",
        "ip": "157.52.151.215",
        "port": "",
        "file": "/s443ls",
        "params": "",
        "whoisInfo": {
          "asn_registry": "arin",
          "asn": "46573",
          "asn_cidr": "157.52.151.0/24",
          "asn_country_code": "US",
          "asn_date": "2015-04-01",
          "asn_description": "GLOBAL-FRAG-NETWORKS - Global Frag Networks, US",
          "query": "157.52.151.215",
          "network": {
            ... snip ...
          }
        }
      }
    ]
}