General
-
Target
https://attachments.office.net/owa/DIANA.FUENTES%40telefonica.com/service.svc/s/GetAttachmentThumbnail?id=AAMkADI2ZmM2Nzc4LTZhODEtNDExZi04OWEzLTIwNjk2YzE5NGYxNgBGAAAAAABHXPv4mXYNRZZZg7xdXiHlBwAjtEZm%2FRhYQpRFKlKZL7TNAAIAvtZcAAAjtEZm%2FRhYQpRFKlKZL7TNAAIoctPBAAACEgAQANdE3OvjmtlEgS0XxoOZvVUSABAAHelmsbVyl0SUT1B9Klrk4g%3D%3D&thumbnailType=2&token=eyJhbGciOiJSUzI1NiIsImtpZCI6IkQ4OThGN0RDMjk2ODQ1MDk1RUUwREZGQ0MzODBBOTM5NjUwNDNFNjQiLCJ0eXAiOiJKV1QiLCJ4NXQiOiIySmozM0Nsb1JRbGU0Tl84dzRDcE9XVUVQbVEifQ.eyJvcmlnaW4iOiJodHRwczovL291dGxvb2sub2ZmaWNlLmNvbSIsInVjIjoiYTZlYmZkMDNkZDY2NDllM2E0YjUzZDYzODkxM2ZlMmYiLCJzaWduaW5fc3RhdGUiOiJbXCJrbXNpXCJdIiwidmVyIjoiRXhjaGFuZ2UuQ2FsbGJhY2suVjEiLCJhcHBjdHhzZW5kZXIiOiJPd2FEb3dubG9hZEA5NzQ0NjAwZS0zZTA0LTQ5MmUtYmFhMS0yNWVjMjQ1YzZmMTAiLCJpc3NyaW5nIjoiV1ciLCJhcHBjdHgiOiJ7XCJtc2V4Y2hwcm90XCI6XCJvd2FcIixcInB1aWRcIjpcIjExNTM4MDExMTgzMDgzMzIxMzVcIixcInNjb3BlXCI6XCJPd2FEb3dubG9hZFwiLFwib2lkXCI6XCIzMDFkYzVlNy00Y2RiLTQ0ZjEtODIxNC0zMmE5MTM0Y2EyNDFcIixcInByaW1hcnlzaWRcIjpcIlMtMS01LTIxLTE5MDIxNjIwMDktMTQ4ODkxMzQwLTExNjQxNDAwOTUtNTM5MjY3NjhcIn0iLCJuYmYiOjE2ODE3NTAzNjEsImV4cCI6MTY4MTc1MDk2MSwiaXNzIjoiMDAwMDAwMDItMDAwMC0wZmYxLWNlMDAtMDAwMDAwMDAwMDAwQDk3NDQ2MDBlLTNlMDQtNDkyZS1iYWExLTI1ZWMyNDVjNmYxMCIsImF1ZCI6IjAwMDAwMDAyLTAwMDAtMGZmMS1jZTAwLTAwMDAwMDAwMDAwMC9hdHRhY2htZW50cy5vZmZpY2UubmV0QDk3NDQ2MDBlLTNlMDQtNDkyZS1iYWExLTI1ZWMyNDVjNmYxMCIsImhhcHAiOiJvd2EifQ.HmZmW7dIPgIHagyiJ80l4kupPPgAhpy-RVBOEc5tvv1A3IcNDF257D206Avp-Ko7dcobi410gbU_bPkh-xBbMKlpiy2wwwoP_3xFJMuUXNWZq2AgDFpVX1-8toq5o6sQxDLYrrk0N03wvXrrjRJ5Pg6_9oDX48HGicqhYM8lqXIufpjahU4TP2WI65kIHAE9J_lDLKLyvLqVjq-U9qfDXoDG0ESZVECmOpAQcL41-NUFZosPGIeLlQZiwpyCk-2QWDXp2EIQpPYDRj5ADms4yK_Ny2bWX02FydPWRnQy1EqHYNjTu80FtfrRn_Hl7gXDUo-cAA4fMOKTIb6C_AuRJQ&X-OWA-CANARY=o-_7eXlI4kO_P063L7LWecBuIC9kP9sYfBBebcoToHDS-g3g8LvCaILeNAIeqpkl-Bfc-LqgjY0.&owa=outlook.office.com&scriptVer=20230407001.12&animation=true
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]