General
-
Target
https://adfs3-3.sft0nlirne.net/adfs/ls/?client-request-id=ee8460c0-cf58-0e38-20c6-c777f8590bd9&wa=wsignin1.0&wtrealm=urn%3afederation%3aMicrosoftOnline&wctx=LoginOptions%3D3%26estsredirect%3d2%26estsrequest%3drQQIARAAjZE9TBNhHMbv5cpZPoSGSZ3IxQm8tm_vuwmJvUPKl8enSCGmtO-9V07u7i1310_CpgluGBMHR92YjHEwTLhIQkxkcZCJ6EIYiHFiwzYujjzDkyf_5Z_n9wzRMA7Td5P_lOLaziUtC3IIt9N_8ge6Ywdrzy6Wvyl9g18Oa5e5nh97gF0Pw3KQTiRIJXQI2YgTy7IR5iUxjoibILVC4hMAxwCcAbDXIUu8IkFBVFVFFWUZCkklXlB5KKZkgZOwwHOCpaQ4lU-qHLZkUykKuGha6KSjfyZTCddTbSO-3cR_Oros4rv5MgnCN_TaKAqnx0impD_Q5n3DaDQyCgm0uuEtrgRcMysU8zk9M9msIH1MnNPK5QZsGnCqPCFuzvOGsgn1rFFcfLhe1OvEqclLjlTJQNGT9Co0lWpdzO_R12L0gWZarV3iHdEMKWPPNn_Sd3xsOriKnXjJtVqn-n0XO3ahjec4Ak4j4DzSm6TT0Wh3jLpFDVKXEfC2s8X66vb3q5e_Xoy_23ktl76uUkedCS2Xk2t6I-ukaj404ISmuiKekRZIVuObU8NzCiosI3MUPX6kjKhpuMuAXYbZZ7qidIxiaX0WnjHgNwN2blD7XdcY7rgHnPQK3QxyCrYbDAxtsbaZD8kG9tj0Flt3gzxC7VQtOBUcsOlVtvWCfbK9vX1wk7rsOzw_-Pz81ceL8fP-e_JUilTtp7OCHnjLC16Ol-e9MckP646zYg5rS5PTORdNBOpkKTPyPkadxqi_0&cbcxt=&username=redlevel.gmfenix%40melia.com&mkt=&lc=
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]