General
-
Target
https://outlook.office365.com/Encryption/retrieve.ashx?recipientemailaddress=Ailsa.McKain%40scotland.police.uk&senderemailaddress=Karen%40kelsolegal.com&senderorganization=AwGBAAAAAn0AAAADAQAAAKRPIeeviJFIv%2bu2tITHIdFPVT1rZWxzb2xlZ2FsLm9ubWljcm9zb2Z0LmNvbSxPVT1NaWNyb3NvZnQgRXhjaGFuZ2UgSG9zdGVkIE9yZ2FuaXphdGlvbnMsREM9TkFNUFIxMUEwMDQsREM9UFJPRCxEQz1PVVRMT09LLERDPUNPTfXaXp9Hj55Hok93n3N3m7VDTj1Db25maWd1cmF0aW9uLENOPWtlbHNvbGVnYWwub25taWNyb3NvZnQuY29tLENOPUNvbmZpZ3VyYXRpb25Vbml0cyxEQz1OQU1QUjExQTAwNCxEQz1QUk9ELERDPU9VVExPT0ssREM9Q09NAQ%3d%3d&messageid=%3cDU2PR07MB94875A89CA004A182B1F7970CFC4A%40DU2PR07MB9487.eurprd07.prod.outlook.com%3e&cfmRecipient=SystemMailbox%7bD0E409A0-AF9B-4720-92FE-AAC869B0D201%7d%40kelsolegal.onmicrosoft.com&consumerEncryption=false&senderorgid=a253d710-5d92-4c33-8758-7f3897f8deeb&urldecoded=1&e4e_sdata=bzNA%2b9qlN59IA7GSndjdAUBGthgp7YeQ8pcxM8995gyW9i%2fH8IWzki2SgnQrRB%2fIQkpNUeOH%2b0hrIzBWg7KLYYVOsX0aITMtw%2f8XuZFPZJyXAxDf66KChl%2bSGGq%2bDzErWGHtRiQy9L9gchmFKBXBschD02Ci7z8ypd%2bDXIoq25HVRm84K46aWIzuvum5wmCve8ZDhKb0xr2wDqKh1s66QhrC5Bl99LFOTjewzpMMkp87E5JmmXtTupWJBKboItfR1osd9ZHLVH9cvMCE5PXNkuZhumPmCpvQBpGtG3MUguAU2XoH4r4jweSGOktWri3jOQLk44o1PRyGdqvv%2fGsAdA%3d%3d
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]