General
-
Target
https://www.easyvista.com/e3t/Ctc/T7+113/cswy804/VX1bh615rPPSW12CPmM7P2CtHW2NZxg55h2Z5PN7Rflzb3qgyTW95jsWP6lZ3kTW7tD0DG1Gtx1fN7bGTnsMT30cVz4S-82YwnK2W9czBsQ96ZW5jW54mv6j3vVZ3wN1h84K8WD0TRW8Bx9kn2Qj_jvVHxb9555TRHFVc2-jq1J17K5W7LtFBw3zJLM9VHscGL3Y2hwQN2pVp93gxNSyW3CjT-63JmQMPW2kmX_292Q_g6W7hdJ2m65SWZQVlBlJz4tW7hgW7xVbQr38x1N9W7RBbNL29cGN2W17bSkN4rh8YvN62z3CG8HMwCW24wvW94M06VRW1XdMSJ20n9wqW4Gb26z1htV4pW5PBMdh2tB4XRW10Dc0F742pYQW6rFKQj3stmYgW4P-WHC3FKY9mV1209v71SPt5VrGwq9697k_zW468ZS76jbNyjf6-KrZY04&data=05|02|[email protected]|e599cc5763da4a79bf5a08dc9b644b44|10338048193a4298abea3596ae88b05e|0|0|638556102276087612|Unknown|TWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=|0|||&sdata=nJuGd3IVvVK7crJBmuzWxIhC4wP+x/EgoVNnIHu4Zm8=&reserved=0
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: VX1bh615rPPSW12CPmM7P2CtHW2NZxg55h2Z5PN7Rflzb3qgyTW95jsWP6lZ3kTW7tD0DG1Gtx1fN7bGTnsMT30cVz4S-82YwnK2W9czBsQ96ZW5jW54mv6j3vVZ3wN1h84K8WD0TRW8Bx9kn2Qj_jvVHxb9555TRHFVc2-jq1J17K5W7LtFBw3zJLM9VHscGL3Y2hwQN2pVp93gxNSyW3CjT-63JmQMPW2kmX_292Q_g6W7hdJ2m65SWZQVlBlJz4tW7hgW7xVbQr38x1N9W7RBbNL29cGN2W17bSkN4rh8YvN62z3CG8HMwCW24wvW94M06VRW1XdMSJ20n9wqW4Gb26z1htV4pW5PBMdh2tB4XRW10Dc0F742pYQW6rFKQj3stmYgW4P-WHC3FKY9mV1209v71SPt5VrGwq9697k_zW468ZS76jbNyjf6-KrZY04&data=05|02|[email protected]|e599cc5763da4a79bf5a08dc9b644b44|10338048193a4298abea3596ae88b05e|0|0|638556102276087612|Unknown|TWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=|0|||&sdata=nJuGd3IVvVK7crJBmuzWxIhC4wP+x