General

  • Target

    https://s3.eu-west-1.amazonaws.com/craspoczm22828382/overtimerecipescxm238283828383.htm

  • Sample

    240812-t8sdaszdpj

Malware Config

Targets

    • Target

      https://s3.eu-west-1.amazonaws.com/craspoczm22828382/overtimerecipescxm238283828383.htm

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Detected potential entity reuse from brand microsoft.

MITRE ATT&CK Enterprise v15

Tasks