General
-
Target
https://attachments.office.net/owa/mahesh.ligampally%40deltaiot.in/service.svc/s/GetAttachmentThumbnail?id=AAMkADcwMjg2YzMzLWMzMjQtNDM4Yy05NjNlLWQ4YTNlODA4Nzc2ZABGAAAAAABWPK7dBJb2QJwyUizxDXpkBwCuTTISUplyQbFw3%2BDggeg%2FAAAAAAENAACuTTISUplyQbFw3%2BDggeg%2FAAClkH5IAAABEgAQADw2vhvYBklImgpBA%2BKLkIc%3D&thumbnailType=2&token=eyJhbGciOiJSUzI1NiIsImtpZCI6IjczRkI5QkJFRjYzNjc4RDRGN0U4NEI0NDBCQUJCMTJBMzM5RDlGOTgiLCJ0eXAiOiJKV1QiLCJ4NXQiOiJjX3VidnZZMmVOVDM2RXRFQzZ1eEtqT2RuNWcifQ.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.UxXWZoNlvz8pke6qCuPbN8SK2Zt27vl2PDRrgTt0XnxY2DS-bz2pH6160hf7vI8vEENperA5plgVA2JHVauY6xGbV15JnywGo9LQedWa7y2vePCQglJztyRkhUYTSVS_sJIqhMFQHq8cDft2pj-lbkR8rXf__WNB21r4_CSSFCsUUwQH_M1P3S384ICTJphwrI2uxwSQEJxNgWqJHQPfYMoRvlWg7hUWiuNXX8qT9M4ZlGbm6Fx9ZB0iNzOgwf66VhKA1yHs3Fu0pALS0f4on_WK9813wpOrF7JEtBd7zJL9xti7TLpzj0II7JXqgoHWzt6a6GIQONMMaIcRPYq8eg&X-OWA-CANARY=IXZ3HtyrsECgbmuIrT47iSC5DZQBqtsY3QasVt5KZsWoYBwSKn-49RViYFn3B6oTTRcs0pU6BRQ.&owa=outlook.office.com&scriptVer=20230818006.12&animation=true
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]