Overview

overview

8

Static

static

8

URLScan

urlscan

https://attachments....

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://attachments.office.net/owa/swebb3%40ccc.edu/service.svc/s/GetFileAttachment?id=AAMkAGMyZGMxYTk2LTAxYzgtNGI0MC05ZjRhLWMxZDdiZjQ4YzhhNwBGAAAAAADSfXBPFtZaRrCZKg7hgvNYBwBmNbXUTSwPRItnjHxuR2%2FqAAAABQ2wAADL7RfwKlEhT46jDSY4QhQxAADNRLzIAAABEgAQAFF1bG2XgXpDlbx0pIju5g8%3D&token=eyJhbGciOiJSUzI1NiIsImtpZCI6IjMwODE3OUNFNUY0QjUyRTc4QjJEQjg5NjZCQUY0RUNDMzcyN0FFRUUiLCJ0eXAiOiJKV1QiLCJ4NXQiOiJNSUY1emw5TFV1ZUxMYmlXYTY5T3pEY25ydTQifQ.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.cD63JOBKUydnutf5Y_cix06L6EeO4OmRK4RjP1311pObKLpsBv_IHTr12_OB-W4ZAMJxaKkFMhfIc8KtNVSTbB249eR3CWxP4VFBYJmJJMPOGwjEvcxq5Na5vBjr-XuyDYDjQDzuMzmmhyMU5fFsIxKYtFYy--lK6ScQiyYK0Wd6IVJS8W01POZ1VKop4LchGejFVHa906ZW4w9y3NUqmcEi-MnTBe886or-eaOw3M_VxQNGH7n4qG_aXXVAdWfNDhOxqWWZQUHPQAsVOwAxYxISN10CxgP0jSBL-425ss9fKEjV-8janQDENwtEb-d2QEnH8S01YKiCzJam7a3oOA&X-OWA-CANARY=orI5HeFpR0Ozi5FEsTjMBsCwJJbVfdkYGyWZAgUrFg1eojJ8oWROzbhX-D6NU1DoZFwm--iaKQk.&owa=outlook.office.com&scriptVer=20210823004.07&isDownload=true&animation=true

  • Sample

    210922-r69tfsffbp

Score
8/10
phishing

Malware Config

Targets

    • Target

      https://attachments.office.net/owa/swebb3%40ccc.edu/service.svc/s/GetFileAttachment?id=AAMkAGMyZGMxYTk2LTAxYzgtNGI0MC05ZjRhLWMxZDdiZjQ4YzhhNwBGAAAAAADSfXBPFtZaRrCZKg7hgvNYBwBmNbXUTSwPRItnjHxuR2%2FqAAAABQ2wAADL7RfwKlEhT46jDSY4QhQxAADNRLzIAAABEgAQAFF1bG2XgXpDlbx0pIju5g8%3D&token=eyJhbGciOiJSUzI1NiIsImtpZCI6IjMwODE3OUNFNUY0QjUyRTc4QjJEQjg5NjZCQUY0RUNDMzcyN0FFRUUiLCJ0eXAiOiJKV1QiLCJ4NXQiOiJNSUY1emw5TFV1ZUxMYmlXYTY5T3pEY25ydTQifQ.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.cD63JOBKUydnutf5Y_cix06L6EeO4OmRK4RjP1311pObKLpsBv_IHTr12_OB-W4ZAMJxaKkFMhfIc8KtNVSTbB249eR3CWxP4VFBYJmJJMPOGwjEvcxq5Na5vBjr-XuyDYDjQDzuMzmmhyMU5fFsIxKYtFYy--lK6ScQiyYK0Wd6IVJS8W01POZ1VKop4LchGejFVHa906ZW4w9y3NUqmcEi-MnTBe886or-eaOw3M_VxQNGH7n4qG_aXXVAdWfNDhOxqWWZQUHPQAsVOwAxYxISN10CxgP0jSBL-425ss9fKEjV-8janQDENwtEb-d2QEnH8S01YKiCzJam7a3oOA&X-OWA-CANARY=orI5HeFpR0Ozi5FEsTjMBsCwJJbVfdkYGyWZAgUrFg1eojJ8oWROzbhX-D6NU1DoZFwm--iaKQk.&owa=outlook.office.com&scriptVer=20210823004.07&isDownload=true&animation=true

    Score
    1/10
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks