http://The email body was reviewed and the artifacts, nothing malicious was found that confirm phishing activity, so I am going to close this ticket as a FP. Sandbox evidence was added on L2 tab.