hxxps://es[.]sempra-infra[.]splunkcloud[.]com/en-US/app/SplunkEnterpriseSecuritySuite/search?q=search%20index%3Dglobal_proofpoint%20sender%3Dcobranzayfacturacion%40vps-e0fc7fe3[.]vps[.]ovh[.]net&earliest=1715497860&latest=1715526660&display[.]page[.]search[.]mode=verbose&dispatch[.]sample_ratio=1&display[.]page[.]search[.]tab=events&display[.]general[.]type=events&sid=1715536500[.]1520060#

Sharing

Target

https://es.sempra-infra.splunkcloud.com/en-US/app/SplunkEnterpriseSecuritySuite/search?q=search%20index%3Dglobal_proofpoint%20sender%3Dcobranzayfacturacion%40vps-e0fc7fe3.vps.ovh.net&earliest=1715497860&latest=1715526660&display.page.search.mode=verbose&dispatch.sample_ratio=1&display.page.search.tab=events&display.general.type=events&sid=1715536500.1520060#

Score

8^/10

phishing

A potential corporate email address has been identified in the URL: searchindex=global_proofpointsender=cobranzayfacturacion@vps-e0fc7fe3.vps.ovh.net
phishing