General
-
Target
https://attachments.office.net/owa/[email protected]/service.svc/s/GetAttachmentThumbnail?id=AAMkAGVhMDk1MjgxLTJiYzktNGIwOS1hMWY0LTA0NGZhMWExN2M5MwBGAAAAAAAKuxJTCRsdTJa5IM%2FXuN0rBwC%2BqAPgh0bZTYjOuRcxAfFoAAAD2CCSAAC%2BqAPgh0bZTYjOuRcxAfFoAAAzCp%2BTAAABEgAQAL64vk96mRxNg5ib3RAVOlY%3D&thumbnailType=2&token=eyJhbGciOiJSUzI1NiIsImtpZCI6IkU1RDJGMEY4REE5M0I2NzA5QzQzQTlFOEE2MTQzQzAzRDYyRjlBODAiLCJ0eXAiOiJKV1QiLCJ4NXQiOiI1ZEx3LU5xVHRuQ2NRNm5vcGhROEE5WXZtb0EifQ.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.uNJ4YnpbbE_SvhNJElUjmFqgTcpmHoxp1EmBTeABvWIj84wM3oQd3K7oUkSByhOxB4N_qgQXTvZ6cVR1rgtpCAToJfi6W5jsmlbEIfXsFLHAxkx3U3vY3IomhG2yqQRaewqqRVo6JWv1tGPI0R1jlhnNeIyE4aMwM4njIKa4VjDl3OU__BoYnNbsWE8tG-lwN014NjYJQJ5R5xvPzMt3KDu7P24lqD5tNoAUBn-Y4fDy518K3DukrE_b38n28xu2v135lnNLRkLjW7OzWe_NsWuGx9_pvPx2pekSq3hbbR-4wOPx_4ZUB3lw7NoFG9YAmDmmCwG6QL8rsK5DPsS6ig&X-OWA-CANARY=6lG6DkW2nkqTWHVKMh9yIHDQ4gB1HtwYUhPh7u6zCBTxarEkFxZ9QXuNUPzZd7z5wcDXYPS7rPU.&owa=outlook.office365.com&scriptVer=20240119003.09&clientId=FCCF42B1D4E944D5BA9789A02AE453F6&animation=true
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]