General

  • Target

    https://proton66925.lt.emlnk.com/Prod/link-tracker?notrack=1&redirectUrl=aHR0cHMlM0ElMkYlMkZjbG91ZGZsYXJlLWlwZnMuY29tJTJGaXBmcyUyRmJhZnliZWlmZTdybWczdTVubjd1anNwNDczcXpoZWZybnBrbTZqZDNjd3JlbXVra2FhcnN6M2FoNGVtJTJGcmVkbS5odG0=&sig=6ZSZc6StcYZmVG8FC5aeDDQTmP9zoRtyhA59wmNX6bvG&iat=1715682248&a=%7C%7C28568550%7C%7C&account=proton66925%2Eactivehosted%2Ecom&email=eiKUYajHSA1U5u0QULKZcGvv8EgBnmKCPHpZMaGp7F8P57HTxyiA%3AeNHAM94BoVf%2F6U3yFZQFGcuUz3TymuBZ&s=801122f2c89732 136cebf4049753605e&i=1A3A0A4#m.xhaja@balfin.al

  • Sample

    240514-mzg3msda86

Score
10/10

Malware Config

Targets

    • Target

      https://proton66925.lt.emlnk.com/Prod/link-tracker?notrack=1&redirectUrl=aHR0cHMlM0ElMkYlMkZjbG91ZGZsYXJlLWlwZnMuY29tJTJGaXBmcyUyRmJhZnliZWlmZTdybWczdTVubjd1anNwNDczcXpoZWZybnBrbTZqZDNjd3JlbXVra2FhcnN6M2FoNGVtJTJGcmVkbS5odG0=&sig=6ZSZc6StcYZmVG8FC5aeDDQTmP9zoRtyhA59wmNX6bvG&iat=1715682248&a=%7C%7C28568550%7C%7C&account=proton66925%2Eactivehosted%2Ecom&email=eiKUYajHSA1U5u0QULKZcGvv8EgBnmKCPHpZMaGp7F8P57HTxyiA%3AeNHAM94BoVf%2F6U3yFZQFGcuUz3TymuBZ&s=801122f2c89732 136cebf4049753605e&i=1A3A0A4#m.xhaja@balfin.al

    Score
    6/10
    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Matrix ATT&CK v13

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Command and Control

Web Service

1
T1102

Tasks