General
-
Target
https://outlook.office365.com/Encryption/retrieve.ashx?recipientemailaddress=contactocp%40mt.gov&senderemailaddress=JCOPPOLA%40lccountymt.gov&senderorganization=AwF%2fAAAAAnsAAAADAQAAAEOvCLdr6axBi9oDx%2f3DLDRPVT1sY2NvdW50eS5vbm1pY3Jvc29mdC5jb20sT1U9TWljcm9zb2Z0IEV4Y2hhbmdlIEhvc3RlZCBPcmdhbml6YXRpb25zLERDPU5BTVBSMjBBMDA1LERDPVBST0QsREM9T1VUTE9PSyxEQz1DT02G7LRI26gPQo5%2bjT20P%2bhrQ049Q29uZmlndXJhdGlvbixDTj1sY2NvdW50eS5vbm1pY3Jvc29mdC5jb20sQ049Q29uZmlndXJhdGlvblVuaXRzLERDPU5BTVBSMjBBMDA1LERDPVBST0QsREM9T1VUTE9PSyxEQz1DT00B&messageid=%3cCYYPR20MB6833D3CEABCB401388311F51A2762%40CYYPR20MB6833.namprd20.prod.outlook.com%3e&cfmRecipient=SystemMailbox%7b0AF09B7F-434F-4B2F-9CBC-57639EDCFD9C%7d%40lccounty.onmicrosoft.com&consumerEncryption=false&senderorgid=f7102213-3f94-4d93-8972-b17e2d49aa8f&urldecoded=1&e4e_sdata=KiG%2b%2b2kyf%2bSoraTOkxIA75Awp4PPpAl4HYyx%2fnPJO1l48CEC18XbjVialQHxzvBiJt%2f2eIXH0yyjYFHi1KP9t%2bT9Si%2fu3IsUG3y7YM2L7jhvBRg1GedJOXZhCJhXNdj54B9QL3E8F26HWRiQ8Zyqd9z3Ve%2beFVBFJ9wZgkOJRDmQmCiOVVgejbLpUyzM1WpObwGaHp3ddJn4QOMB2aaT4li5igM6se8KvLDz32eRf2Ge93OxziT1MQ%2biNwMbVibZ3KvFWFelPr3dvegkNWmBXcxRTn7LD6FeCDKRkd6tnF9Kc8CJd6nBSszQ1QkQpKvQsGJ0XMDCqVHl5u6hXWa2kw%3d%3d
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: <CYYPR20MB6833D3CEABCB401388311F51A2762@CYYPR20MB6833.namprd20.prod.outlook.com>