General
-
Target
https://attachments.office.net/owa/[email protected]/service.svc/s/GetAttachmentThumbnail?id=AAMkAGVhMDk1MjgxLTJiYzktNGIwOS1hMWY0LTA0NGZhMWExN2M5MwBGAAAAAAAKuxJTCRsdTJa5IM%2FXuN0rBwC%2BqAPgh0bZTYjOuRcxAfFoAAAD2CCSAAC%2BqAPgh0bZTYjOuRcxAfFoAAChZhN7AAABEgAQAPbxu7Mt0tZPsU4y50RPHn4%3D&thumbnailType=2&token=eyJhbGciOiJSUzI1NiIsImtpZCI6IkU1RDJGMEY4REE5M0I2NzA5QzQzQTlFOEE2MTQzQzAzRDYyRjlBODAiLCJ0eXAiOiJKV1QiLCJ4NXQiOiI1ZEx3LU5xVHRuQ2NRNm5vcGhROEE5WXZtb0EifQ.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.R_2ZZdDNOkerJgYa5bsBCtYf0nSRoaZNNUnZzX_jcVi4AEDr2Bl3IRWvl5Q-xzei_mKLBmamt6kOn0moV4uGPKm17aS3OQ3u_2i0kxc64ETElXm6NLUzehCALeMjlIXvyxMSN9utM6QrIHIl6KhOUpgrJE8o7Tec0OfvBNj0xN3pULKn1Xsy8gFXGI8Z3f2doIOosyZQW9mOp49M9WAH3D4Ml3nerA5_DzEIayga9eye9ODThKw4XVz0bYTh8YazVcCWHcKfkBve1YvbtkjbbWAQrsbvy_Z_VH33DwOhgmHwxjs0s4mkuSKL29TnzCT67RbnMMeymQ9Hocf8Bw_kQA&X-OWA-CANARY=bdvoV89VXj8AAAAAAAAAAPDIWnMrndwY7BNizkhKftnaa6-GbHVFVXWYlzvq3pHnXDF8KTLdz9o.&owa=outlook.office.com&scriptVer=20240628004.07&clientId=0AFF811E1CA7482CA062D3CD0E420898&animation=true
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]