hxxps://cfapi[.]mdlinx[.]com/ct[.]cfm?cid=44&typ=rc&rdr=hxxp://known[.]unknown3[.]garcov[.]com/?=david[.]carlen@blackrock[.]com | Triage

Submit
Reports

Overview

overview

Static

static

URLScan

urlscan

1

https://cfapi.mdlinx...

windows7-x64

1

https://cfapi.mdlinx...

windows10-2004-x64

Sharing

General

Target

https://cfapi.mdlinx.com/ct.cfm?cid=44&typ=rc&rdr=http://known.unknown3.garcov.com/?=david.carlen@blackrock.com
Sample

220804-sn58zsgce3

Score

10^/10

microsoft phishing product:outlook

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

https://cfapi.mdlinx.com/ct.cfm?cid=44&typ=rc&rdr=http://known.unknown3.garcov.com/?=david.carlen@blackrock.com

Resource

win7-20220715-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

https://cfapi.mdlinx.com/ct.cfm?cid=44&typ=rc&rdr=http://known.unknown3.garcov.com/?=david.carlen@blackrock.com

Resource

win10v2004-20220722-en

microsoft phishing product:outlook

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  https://cfapi.mdlinx.com/ct.cfm?cid=44&typ=rc&rdr=http://known.unknown3.garcov.com/?=david.carlen@blackrock.com
Score

10^/10

microsoft phishing product:outlook
- Detected microsoft outlook phishing page
  phishing microsoft product:outlook
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

urlscan1

behavioral1

behavioral2

microsoftphishingproduct:outlook

© 2018-2024

Terms | Privacy