Import of the JSON directly via elastic is probably a bad idea. A JSON file should be generated (including the file name) with the VT output, then ingested via logstash.