General
-
Target
https://attachments.office.net/owa/paula%40aarc-west.com/service.svc/s/GetAttachmentThumbnail?id=AAMkAGFhYWI3NDZmLWU4YTAtNDAyZi04YjE0LThjYzY0ZDQ4ZTYzNQBGAAAAAAAUpCQgTeSaSatK5EKqz4I6BwDekLDk4ktbRbdjWRMftN8ZAAAATmmmAADekLDk4ktbRbdjWRMftN8ZAAC8OBfgAAABEgAQAEczfisj8O9JpygfrHZyIL8%3D&thumbnailType=2&token=eyJhbGciOiJSUzI1NiIsImtpZCI6IkQ4OThGN0RDMjk2ODQ1MDk1RUUwREZGQ0MzODBBOTM5NjUwNDNFNjQiLCJ0eXAiOiJKV1QiLCJ4NXQiOiIySmozM0Nsb1JRbGU0Tl84dzRDcE9XVUVQbVEifQ.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.jn_c8fz7mC96pdzpyZyhcHwTY7DzFT1oN-lADtWH1uSOrgw0N-5w9cc-fxyKexri-N-VsPdRDyOWsb-7_e8O-PT0B0Ar4PcnRVPSuwm3fjTgMk2Fr5gfCa_pAFTBTAZNJZswRbBj700_x-XUl0OufwUWMnj-ZEKgXgU8GM0eE3FuY42gydSl3Bc9YgjYbdVuHfWuOL9BV2HY7ePZNW92mqOwgdTOLrY_4dZdQPStHIF6XUwM4rV9Hn5OCr5M7e9oLFjvkn3m6HCvOTJucu1AMBNruMBXABkzfDGDUHNQmhKNYaXaykcZPPVKmPmZvYyDOnzxto7TkMYSnnbU-GatCw&X-OWA-CANARY=ex3PkYGFVU64msTwLEOzGfDxHW9_MNsYQYao6yCLUQYy6IhatShh0P_lte7iGBR4OtbRU8bVumM.&owa=outlook.office.com&scriptVer=20230324008.06&animation=true
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]