General
-
Target
https://05.emailinboundprocessing.com/preference_center/v1/eyJhbGciOiJSUzI1NiJ9/eyJzdWIiOiJwY3YxIiwiaWF0IjoxNzI2NDE4ODgyLCJleHAiOjE3NTc5NTQ4ODIsImQiOiIkMCRqNE94LzZJeVlmNHhsaHV2ODZ3YlBRPT0kSkxGanBMU2p5QnEwTWxuZG8yUHdhWXhmd3pVaGNFZUEzNE5TQS9lWU5vMTdQYnpleWhKaUMyb3JCdDRRXG5DZWhqIiwiaCI6IjA1LmVtYWlsaW5ib3VuZHByb2Nlc3NpbmcuY29tIiwiYyI6IjE1NTMiLCJtIjoiNjZlNDczYTYwMmJkOWUwMDY0ODU3NGQ0In0/ReTuoKPI7ArT-bB-KJbspMSVSWnjYurqQDz51I_7uoIq2KCuadOPYDYNVWXhHHKTen4DjRzkOVqRSYiI1Qtup3Cp-WOx9fDipmXDJqvpgWR3fej_fI_JxjIdsELkUb_a5-UzTAUswGauI6SBWw4nhQ0hOoQuJwkVmu8CRuzo67jHHOEmDO4Cpy74XN0f-e8bF-_yMnLVDY8rb_dITrd20UQ5zeyvJiWJiGJBiRUi3BY9dn2Avyi9eSNx1xVbq_MkFX4qKQola2jGk9mLhduGZkyfk7qmN67sXxw9sI7iSqt5dmRKYQS9E3qDFv6MdxJvZz0AQN2Bufhd484rWI1WkgW%03spcBf%EF%BF%BD%EF%BF%BD%0F%EF%BF%BDf%7Co%08%EF%BF%BDR%[email protected]
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: ReTuoKPI7ArTbBKJbspMSVSWnjYurqQDz51I7uoIq2KCuadOPYDYNVWXhHHKTen4DjRzkOVqRSYiI1Qtup3CpWOx9fDipmXDJqvpgWR3fejfIJxjIdsELkUba5UzTAUswGauI6SBWw4nhQ0hOoQuJwkVmu8CRuzo67jHHOEmDO4Cpy74XN0fe8bFyMnLVDY8rbdITrd20UQ5zeyvJiWJiGJBiRUi3BY9dn2Avyi9eSNx1xVbqMkFX4qKQola2jGk9mLhduGZkyfk7qmN67sXxw9sI7iSqt5dmRKYQS9E3qDFv6MdxJvZz0AQN2Bufhd484rWI1WkgWspcBffoRguan.ge1988@gmail.com