General
-
Target
https://attachments.office.net/owa/[email protected]/service.svc/s/GetAttachmentThumbnail?id=AAMkAGM4OTQwMDdlLTU5ODMtNGYxMi05ZWY4LTkyY2E2Mzc1MWUzOABGAAAAAAC9neELq5stTZ6zVdKty7GcBwA8NbYJvBe2T6Wd3qa%2Bg0wYAAAAAAEJAAA8NbYJvBe2T6Wd3qa%2Bg0wYAAD16QvpAAABEgAQAARwb4wiODBAn6SYG2kEKE4%3D&thumbnailType=2&owa=outlook.office.com&X-OWA-CANARY=bdvoV8oYx84AAAAAAAAAACBAKVoigNwYlXqeqh6Yx1gmNvnXTmoMr42CuaguzLAl5cx7UfyxC6Q.&token=eyJhbGciOiJSUzI1NiIsImtpZCI6IkU1RDJGMEY4REE5M0I2NzA5QzQzQTlFOEE2MTQzQzAzRDYyRjlBODAiLCJ0eXAiOiJKV1QiLCJ4NXQiOiI1ZEx3LU5xVHRuQ2NRNm5vcGhROEE5WXZtb0EifQ.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.wQlxhZ8whNR-Qymy8zjhoo5U8jd9EuGQ6zkUVXkbaknuLJaK4McjVOog2IjA68zxeAniJNeK8xdD2Jew4eEgxA_x40rU_VfImJYvs4e5cFRPwU7BGubv_4tYSbH04XBmXV4jBptfMJFauudeq4T4nl76I_2kRPWtbf1wPhejMozgdl7TPddKzXKTU7NfUNEJu5Yxy208kQZlYIrHF0ezrtUlV5v7cKVnCgTN3GgtXyDSVuXADQ5tJz7bBI-lhdXzs9S-NF3pPktm-Qn6UdI5VPWYDbgLV4UOGEhbgdgNax6ex1n8kD0NZT54fBkDxdvJeh2Oj_ArhsbLmxdpVO8Lrw&animation=true
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]