General
-
Target
http://secure-web.cisco.com/1qJ_8rzXicOKrJHySlt-h3hUf6LOSe1izF1TkMzxawnzjRHtgjZvd_5ruDsnT0e2vxzWIXtMhzIJotnYF4c9T5J61ZgeSkitIflrydVSnEG4znrob8rzD4is3cQaD8JtdGebqw3cddhvJasmjWhyoW0an2Oxb-xMN0aq1_m_lLLETmvb53zr5vbFc8JfjvnI2Jg5hdaumr0DYdY5Y0nVyplWejPmbV4TJ6qWt237n5EpyDbzXiSc7nSGPpCW2w_t5enz14I0PaeZwYj8LN3Q1hxZkofetgyRwISHRViH7I1rwHbZtc_FcXRpKyzNFrfEhX20_2XwsHi5HwkcP-adHio2XZ_7VvZZSR9N08bEni6faNlW9-UwlaomIdeMnDcJ3VPoDYIU4tvL35XZRituz4tft_K4bsGh6zYwAjfqzO6ebPWL914nZfgH3H4ZVhZP22_ediI6r09HKWgkwdh-MFg6ALQ49xoVP9ORa8N-KRc7pErwpKCV9gQQl05OcLVKe/l69%3Amailto%3Aunsubscribe%2Bunsubscribe_659ce27937d75553327166%40account-cms.com68%3Ahttps%3A%2F%2Fems.account-cms.com%2Femail%2Funsubscribe%2F659ce27937d75553327166220%3Ahttps%3A%2F%2Fprotect2.fireeye.com%2Fv1%2Furl%3Fk%3D7e398b4b-1d3d0c72-7e39a7a2-74fe4868cb60-f427c2930f10ef4d%26q%3D1%26e%3D7dc19148-5ad0-48f0-90fd-101cb1dfedfa%26u%3Dhttps%253A%252F%252Fems.account-cms.com%252Femail%252Funsubscribe%252F659ce27937d75553327166e
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: l69mailtounsubscribeunsubscribe659ce27937d75553327166@accountcms.com68https