Overview

overview

10

Static

static

8

URLScan

urlscan

10

http://go.onelink.me...

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    http://go.onelink.me/107872968?pid=InProduct&c=Global_Internal_YGrowth_AndroidEmailSig__AndroidUsers&af_wl=ym&af_sub1=Internal&af_sub2=Global_YGrowth&af_sub3=EmailSignature&af_web_dp=http://fxtwhs28.sgshvs8i.shahrarman.ir/#[email protected]

  • Sample

    230317-xv59sabf5w

Score
10/10
microsoftphishingproduct:outlook

Malware Config

Targets

    • Target

      http://go.onelink.me/107872968?pid=InProduct&c=Global_Internal_YGrowth_AndroidEmailSig__AndroidUsers&af_wl=ym&af_sub1=Internal&af_sub2=Global_YGrowth&af_sub3=EmailSignature&af_web_dp=http://fxtwhs28.sgshvs8i.shahrarman.ir/#[email protected]

    Score
    10/10
    microsoftphishingproduct:outlook

    • Detected microsoft outlook phishing page

      phishingmicrosoftproduct:outlook

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks