General
-
Target
https://outlook.office365.com/Encryption/retrieve.ashx?recipientemailaddress=karolina.gugudis%40iongroup.com&senderemailaddress=Corporatecomms%40QFCRA.COM&senderorganization=AwF%2fAAAAAnsAAAADAQAAAAPpTeWjXrFDq9SAWlLfsXVPVT1xZmNyYTM2NS5vbm1pY3Jvc29mdC5jb20sT1U9TWljcm9zb2Z0IEV4Y2hhbmdlIEhvc3RlZCBPcmdhbml6YXRpb25zLERDPVFBVFAyODlBMDAzLERDPVBST0QsREM9T1VUTE9PSyxEQz1DT02kRfs8VcWRQoyAEcFR3XBBQ049Q29uZmlndXJhdGlvbixDTj1xZmNyYTM2NS5vbm1pY3Jvc29mdC5jb20sQ049Q29uZmlndXJhdGlvblVuaXRzLERDPVFBVFAyODlBMDAzLERDPVBST0QsREM9T1VUTE9PSyxEQz1DT00B&messageid=%3cDO2P289MB03621C7DFF4960F94F7AD19C81922%40DO2P289MB0362.QATP289.PROD.OUTLOOK.COM%3e&cfmRecipient=SystemMailbox%7b2C41C89D-35A4-465B-B69B-6F1FC54D8B03%7d%40qfcra365.onmicrosoft.com&consumerEncryption=false&senderorgid=dbbbce05-3c7d-4318-a718-2abda77a1062&urldecoded=1&e4e_sdata=nH7LeNp2%2fTy%2fQ4UKkMrB41mNtari9DkzC7mRsW7rDuI9nvYAwD51WEBMaaeBBOvUot1miPbOc4XRD1gYFgTjMv%2fPI0iWjqZA2Ck%2bLVqXQMux9hKodohjMxpH5LfI4itqxDiZcwQrtfZDsG5ZbPLorqViQGvvR74xmrrIf2AMDkGz%2bixrosbOb570%2fad4KwPm50Ch3QiQRfOpYcRclHe%2f%2fdwMVHe3hYEpOP4oyINy0Aqlx2W5aZ4%2btc8iZ6SGMKVOrbINwT4GdROFf6%2fISIHhTow7HSamSeDuGf9lG7IRWkFEEarlnImk%2f2%2bbPOGMCPPfab2dzYUrIGHVnNpgG8BklA%3d%3d
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]