General
-
Target
https://adclick.g.doubleclick.net/pcs/click?fjWKRXTAP84695-novemberkd&&adurl=http://www.baidu.com/link?url=kRuPteP7ef3mkmqYKWXPX2MIE97SbdelD6gnMOM3pq_#https://link.mail.beehiiv.com/ss/c/u001._ton6scdoeN17o-yacBpHKg9ViepWkdMwJZlva7d5cRr0rGASAGHDEqm73RuzRz_-jmM03A-g1kmM3siKsSRQHC6X4ciDvTY3zQuQzoq3CjAMcJWDa0pv6hTCJKOMnC61WhAJ9XgrsJZ6I1XJGUOz81HI-mWNV9OLAgAjDhbjgHcHYAV2UbmERUhpz5HTqKYPVRy5JdDoaNungfhq0iVboa1VxLcN_vQxse4OCRxHNjmPzgo4zaskO4wDJgD63WYs7ppS5noIPquLgFoVzQv3GyL4GAcb82rYvblZGjdx5XBKj7_nIxzdsi0lun-Tbw1VBMB1cXms1-UzNZPpTXFRO9uB5Gp2ybIWpnRuSdFZyYGF4t1A3IMfAkUg-0P_GAQNkRspB2rZmUC2ZIGXsc2MQ1fSqYVOJ74u9Td6EH7Sthx2zmshHgQOjBMZ_X6t5AX71XbeS34TCQFUlqruJ5HWkcx7GeLw6p8DqdpCmqKCbc/45c/h7C-CVXqQhalZov8rphGiw/h3/h001.SOR6u1MgSYgevLd22f38-Cpd1k-IVdCVR_PHkYB7XdQ#[email protected]
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: httpslink.mail.beehiiv.comsscu001.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.SOR6u1MgSYgevLd22f38Cpd1kIVdCVRPHkYB7XdQXANA.CAMBRONELL@CEPSA.COM