General
-
Target
https://outlook.office365.com/Encryption/retrieve.ashx?recipientemailaddress=aelder%40lhn.net&senderemailaddress=kallen%40verida.com&senderorganization=AwF9AAAAAnkAAAADAQAAAPkgmh5Qr1dOqiI05CSwLldPVT1zZXRpZ2Eub25taWNyb3NvZnQuY29tLE9VPU1pY3Jvc29mdCBFeGNoYW5nZSBIb3N0ZWQgT3JnYW5pemF0aW9ucyxEQz1OQU1QUjEzQTAwNyxEQz1QUk9ELERDPU9VVExPT0ssREM9Q09NWKxjPHK%2b2U%2bZZZm1ASegr0NOPUNvbmZpZ3VyYXRpb24sQ049c2V0aWdhLm9ubWljcm9zb2Z0LmNvbSxDTj1Db25maWd1cmF0aW9uVW5pdHMsREM9TkFNUFIxM0EwMDcsREM9UFJPRCxEQz1PVVRMT09LLERDPUNPTQE%3d&messageid=%3cBN0PR13MB5248EACFDF11EE6F49C70BB2B9B29%40BN0PR13MB5248.namprd13.prod.outlook.com%3e&cfmRecipient=SystemMailbox%7bD0E409A0-AF9B-4720-92FE-AAC869B0D201%7d%40setiga.onmicrosoft.com&consumerEncryption=false&senderorgid=f5dc3ec6-c52e-4b17-aad6-2de54ddac0c7&urldecoded=1&e4e_sdata=mBdod2QkTYM8PsPA588dwCOHigDaC3HSdb7DFVWaZ1LV%2bGFo0amdXEFwuTWQpIP6EkFdaq3fiyAqf7vo%2bNZUgIUpNdqzc0V1WLZmTlE80iE16n%2bUC5myb9YGD2tWn8GbKG0N93X1K3GHJhhH3mAdRaL3aIoRv3F%2fVS1iKs%2frrlmPNk82ubYt9F2BVvynoo62Das80%2bNKgJ2JmONQnqR5cZAEGa9R1MP99OEx7%2bRGl0cM9ZnUjviGbR%2bSVBhDBd6qlGuuNpyXq4nu9NBt9vvpqP41r1UFo3gg2YdzDJQ93ROTHvCHSiOWcx0Qe0IK4qa9wiN7cR1gOsGF%2bmYQAFr7aA%3d%3d
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]