URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://attachments.office.net/owa/CNsaliwa%40eisa-edmonton.org/service.svc/s/GetAttachmentThumbnail?id=AAMkADA2ZmFlZWMzLWI1MTYtNDdlZi1hMmMzLTQ4ZTFkNTZmY2JmMwBGAAAAAACG9puBjc7rQIaILLY4QXP9BwCeK%2FlCCEdoRJZgmt%2B8BJWoAAAAjgwzAAA%2B3M87Q5zeQIrEDRI1r2PAAAJmEC%2BfAAABEgAQANOw26Wgyt1ArwGifPkJ9ns%3D&thumbnailType=2&token=eyJhbGciOiJSUzI1NiIsImtpZCI6IkU1RDJGMEY4REE5M0I2NzA5QzQzQTlFOEE2MTQzQzAzRDYyRjlBODAiLCJ0eXAiOiJKV1QiLCJ4NXQiOiI1ZEx3LU5xVHRuQ2NRNm5vcGhROEE5WXZtb0EifQ.eyJvcmlnaW4iOiJodHRwczovL291dGxvb2sub2ZmaWNlLmNvbSIsInVjIjoiN2QxYTc3MWVmYTljNDVmODg3NWI0Y2RhYjg5NTc2YjgiLCJzaWduaW5fc3RhdGUiOiJrbXNpIiwidmVyIjoiRXhjaGFuZ2UuQ2FsbGJhY2suVjEiLCJhcHBjdHhzZW5kZXIiOiJPd2FEb3dubG9hZEA0OWJiNDU2OS02OTA3LTQzMTctYmZiMi1kNjcxNTM5NTQxZmUiLCJpc3NyaW5nIjoiV1ciLCJhcHBjdHgiOiJ7XCJtc2V4Y2hwcm90XCI6XCJvd2FcIixcInB1aWRcIjpcIjExNTM4MDExMTY3NDc0ODgzODJcIixcInNjb3BlXCI6XCJPd2FEb3dubG9hZFwiLFwib2lkXCI6XCI0NGE1MzBiYi05YzUyLTQ1ZmQtYTI0MC1kNWE0NDYyMWU2ODNcIixcInByaW1hcnlzaWRcIjpcIlMtMS01LTIxLTM2MjU1Njc5NDItMTgzNDkwNTM2Ny0xMzU0NDA3MjktMTQzNDg5NTBcIn0iLCJuYmYiOjE3MTgwNTg5MTgsImV4cCI6MTcxODA1OTIxOCwiaXNzIjoiMDAwMDAwMDItMDAwMC0wZmYxLWNlMDAtMDAwMDAwMDAwMDAwQDQ5YmI0NTY5LTY5MDctNDMxNy1iZmIyLWQ2NzE1Mzk1NDFmZSIsImF1ZCI6IjAwMDAwMDAyLTAwMDAtMGZmMS1jZTAwLTAwMDAwMDAwMDAwMC9hdHRhY2htZW50cy5vZmZpY2UubmV0QDQ5YmI0NTY5LTY5MDctNDMxNy1iZmIyLWQ2NzE1Mzk1NDFmZSIsImhhcHAiOiJvd2EifQ.xsRxvtAlgABanlY0chiceFqb9CJS3kmJUA-f4D-Hyqq1ZCiyGdV1zPK0h86oEaqL5o-vuGPBg8W1iUK6ZfpH_HRe-C3RzeJcGAs91uisewoAnwBj7PVDzJXGRSMhaQNJ9kiPoglgbm1S68QlQA5FQt2Zlypl8095zsRMfaOsI9Nc4aV6w6oH5IAJOCJlfE9d1s2OhLaa1c507ytxnMi9fVz9UtFaSBzXOHygIyh01F_Ik34NPBo7xVTeQGZ4K_Cm4GW90qDf4GehExrdcy1RNUkFrjV0JE5gO2A0Jo_sPWvLYTJjkI3WucQptUGtCGyNXPAgKdqclz4bNLpu05fA9A&X-OWA-CANARY=bdvoV_nwi2cAAAAAAAAAAAA5AuadidwYJTAJjcM673OsNjzVVQ3Q7_U3VWo71FUuxAGSfQavtNs.&owa=outlook.office.com&scriptVer=20240531006.09&clientId=1E0AABF68BA9486399985C5507916BAA&animation=true
Resource
win10v2004-20240508-en
General
-
Target
https://attachments.office.net/owa/CNsaliwa%40eisa-edmonton.org/service.svc/s/GetAttachmentThumbnail?id=AAMkADA2ZmFlZWMzLWI1MTYtNDdlZi1hMmMzLTQ4ZTFkNTZmY2JmMwBGAAAAAACG9puBjc7rQIaILLY4QXP9BwCeK%2FlCCEdoRJZgmt%2B8BJWoAAAAjgwzAAA%2B3M87Q5zeQIrEDRI1r2PAAAJmEC%2BfAAABEgAQANOw26Wgyt1ArwGifPkJ9ns%3D&thumbnailType=2&token=eyJhbGciOiJSUzI1NiIsImtpZCI6IkU1RDJGMEY4REE5M0I2NzA5QzQzQTlFOEE2MTQzQzAzRDYyRjlBODAiLCJ0eXAiOiJKV1QiLCJ4NXQiOiI1ZEx3LU5xVHRuQ2NRNm5vcGhROEE5WXZtb0EifQ.eyJvcmlnaW4iOiJodHRwczovL291dGxvb2sub2ZmaWNlLmNvbSIsInVjIjoiN2QxYTc3MWVmYTljNDVmODg3NWI0Y2RhYjg5NTc2YjgiLCJzaWduaW5fc3RhdGUiOiJrbXNpIiwidmVyIjoiRXhjaGFuZ2UuQ2FsbGJhY2suVjEiLCJhcHBjdHhzZW5kZXIiOiJPd2FEb3dubG9hZEA0OWJiNDU2OS02OTA3LTQzMTctYmZiMi1kNjcxNTM5NTQxZmUiLCJpc3NyaW5nIjoiV1ciLCJhcHBjdHgiOiJ7XCJtc2V4Y2hwcm90XCI6XCJvd2FcIixcInB1aWRcIjpcIjExNTM4MDExMTY3NDc0ODgzODJcIixcInNjb3BlXCI6XCJPd2FEb3dubG9hZFwiLFwib2lkXCI6XCI0NGE1MzBiYi05YzUyLTQ1ZmQtYTI0MC1kNWE0NDYyMWU2ODNcIixcInByaW1hcnlzaWRcIjpcIlMtMS01LTIxLTM2MjU1Njc5NDItMTgzNDkwNTM2Ny0xMzU0NDA3MjktMTQzNDg5NTBcIn0iLCJuYmYiOjE3MTgwNTg5MTgsImV4cCI6MTcxODA1OTIxOCwiaXNzIjoiMDAwMDAwMDItMDAwMC0wZmYxLWNlMDAtMDAwMDAwMDAwMDAwQDQ5YmI0NTY5LTY5MDctNDMxNy1iZmIyLWQ2NzE1Mzk1NDFmZSIsImF1ZCI6IjAwMDAwMDAyLTAwMDAtMGZmMS1jZTAwLTAwMDAwMDAwMDAwMC9hdHRhY2htZW50cy5vZmZpY2UubmV0QDQ5YmI0NTY5LTY5MDctNDMxNy1iZmIyLWQ2NzE1Mzk1NDFmZSIsImhhcHAiOiJvd2EifQ.xsRxvtAlgABanlY0chiceFqb9CJS3kmJUA-f4D-Hyqq1ZCiyGdV1zPK0h86oEaqL5o-vuGPBg8W1iUK6ZfpH_HRe-C3RzeJcGAs91uisewoAnwBj7PVDzJXGRSMhaQNJ9kiPoglgbm1S68QlQA5FQt2Zlypl8095zsRMfaOsI9Nc4aV6w6oH5IAJOCJlfE9d1s2OhLaa1c507ytxnMi9fVz9UtFaSBzXOHygIyh01F_Ik34NPBo7xVTeQGZ4K_Cm4GW90qDf4GehExrdcy1RNUkFrjV0JE5gO2A0Jo_sPWvLYTJjkI3WucQptUGtCGyNXPAgKdqclz4bNLpu05fA9A&X-OWA-CANARY=bdvoV_nwi2cAAAAAAAAAAAA5AuadidwYJTAJjcM673OsNjzVVQ3Q7_U3VWo71FUuxAGSfQavtNs.&owa=outlook.office.com&scriptVer=20240531006.09&clientId=1E0AABF68BA9486399985C5507916BAA&animation=true
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]