General
-
Target
https://edi.blackboard.com/webapps/login/?action=login&new_loc=%2Fultra%2Fredirect%3FredirectType%3Dnautilus%26userId%3D_3167_1%26courseId%3D_376_1%26contentId%3D_5029_1%26sourceId%3D_5029_1%257Cblackboard.data.content.Content%257CTE%257C_2800_1%257CNON_CALCULATED%26parentId%3Dnull%26sourceType%3DSC%26eventType%3DDUE%26disable_promiscuous_decodes%3Dtrue
-
Sample
240822-fhq6nazamd
Score
5/10
Malware Config
Targets
-
-
Target
https://edi.blackboard.com/webapps/login/?action=login&new_loc=%2Fultra%2Fredirect%3FredirectType%3Dnautilus%26userId%3D_3167_1%26courseId%3D_376_1%26contentId%3D_5029_1%26sourceId%3D_5029_1%257Cblackboard.data.content.Content%257CTE%257C_2800_1%257CNON_CALCULATED%26parentId%3Dnull%26sourceType%3DSC%26eventType%3DDUE%26disable_promiscuous_decodes%3Dtrue
Score5/10-
Drops file in System32 directory
-