Static task
static1
Behavioral task
behavioral1
Sample
phish_alert_whitefish_muncipal_12032024.eml
Resource
win10ltsc2021-20241023-en
Behavioral task
behavioral2
Sample
phish_alert_whitefish_muncipal_12032024.eml
Resource
win11-20241007-en
Behavioral task
behavioral3
Sample
email-html-2.html
Resource
win10ltsc2021-20241023-en
Behavioral task
behavioral4
Sample
email-html-2.html
Resource
win11-20241023-en
Behavioral task
behavioral5
Sample
email-plain-1.txt
Resource
win10ltsc2021-20241023-en
Behavioral task
behavioral6
Sample
email-plain-1.txt
Resource
win11-20241007-en
General
-
Target
phish_alert_whitefish_muncipal_12032024.eml
-
Size
60KB
-
MD5
453419084607eee276dc79185b6f18fe
-
SHA1
c9b04275f61a1a56109c337fb6b4d2c9a1e70311
-
SHA256
d5f446c33216d26ed66fdc70bc492280d93c0c23e8c21054aa2546896c489c77
-
SHA512
34372cdc262da07b55801e463f3676a7515ff431b56e11a0c69da2e95f8a8830f4dec3afd6fcdac17a5875d636728201ec5a65f045438526efe458ed935fd825
-
SSDEEP
768:9cTMTAZh9P749V3N6vUUaTM0BQ7h9SItodhIBP6cp3el6Iq45aIPMuOP/LGS91ZK:9cTMTARP74rNxBAvUydz5WLl
Malware Config
Signatures
Files
-
phish_alert_whitefish_muncipal_12032024.eml.eml
-
http://www.linkedin.com/company/1482?trk=tyah&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=company_1482
-
http://www.linkedin.com/company/1482?trk=tyah&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=company_1482__;JSUlJSUlJQ!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sLNl6BZL$
-
https://t.paypal.com/ts?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US%28en-US%29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main%3Aemail%3ART000186&pgrp=main%3Aemail&e=op&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585%2C150948%2C104038&link_ref=t.paypal.com_ts
-
https://twitter.com/PayPal?v=1*2C0.1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=twitter.com_paypal
-
https://twitter.com/PayPal?v=1*2C0.1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=twitter.com_paypal__;JSUlJSUlJSU!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sG9vUvF-$
-
https://urldefense.com/v3/__
-
https://www.facebook.com/PayPalUSA?v=1*2C0.1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=www.facebook.com_paypalusa
-
https://www.facebook.com/PayPalUSA?v=1*2C0.1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=www.facebook.com_paypalusa__;JSUlJSUlJSU!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sM1yxdO2$
-
https://www.instagram.com/paypal/?v=1*2C0.1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=www.instagram.com_paypal
-
https://www.instagram.com/paypal/?v=1*2C0.1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=www.instagram.com_paypal__;JSUlJSUlJSU!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sKZXCCnO$
-
https://www.paypal.com/selfhelp/home?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=selfhelp_home
-
https://www.paypal.com/selfhelp/home?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=selfhelp_home__;JSUlJSUlJQ!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sK_9hVpr$
-
https://www.paypal.com/signin/?returnUri=*2Fmyaccount*2Ftransfer*2FpayRequest*2FU-49N824651S491790U*2FU-4U978694X6449594V*3FclassicUrl*3D*2FUS*2Fcgi-bin*2F*3Fcmd*3D_prq&id=LkJAkV5ggkIrKoPazAK-wJr9yqAp7XurjjjDMQ&expId=p2p&onboardData=*7B*22signUpRequest*22*3A*7B*22method*22*3A*22get*22*2C*22url*22*3A*22
-
https://www.paypal.com/signin/?returnUri=*2Fmyaccount*2Ftransfer*2FpayRequest*2FU-49N824651S491790U*2FU-4U978694X6449594V*3FclassicUrl*3D*2FUS*2Fcgi-bin*2F*3Fcmd*3D_prq&id=LkJAkV5ggkIrKoPazAK-wJr9yqAp7XurjjjDMQ&expId=p2p&onboardData=*7B*22signUpRequest*22*3A*7B*22method*22*3A*22get*22*2C*22url*22*3A*22https*3A*2F*2Fwww.paypal.com*2Fmyaccount*2Ftransfer*2FguestLogin*2FpayRequest*2FU-49N824651S491790U*2FU-4U978694X6449594V*3FclassicUrl*3D*2FUS*2Fcgi-bin*2F*3Fcmd*3D_prq*26id*3DLkJAkV5ggkIrKoPazAK-wJr9yqAp7XurjjjDMQ*22*7D*7D&flowContextData=R2EckoGqt3OYnvNtCQT5svw9S965kQC6bMtwfzo3BGja3xxPIMV0jHYrktoEvtvl2zxMzYw0KSbAqLubZxvYUwDWGsORuAlLpJG9DkIDivBfyRS-Ik5umFbGwwQzFO4w7iyUUQNVhP9OgvbXlBUJptbiC4GyX5wW1_guQg091IzSRGR1NjiI5aLCG035BaOCh98RwrXd-XyKciSASMiR--X5p29g7U08DxtsQmehKPuu-PybYepI5h6DOWnuSMAWJeoCPnaqHLZnuFHlh8taQj_xFVJZxQ_al8a2h6lv5Qs-Lqz2iZ-xVRzra2mTrLwRh7VfovNxI5na2e61PWzvyG3S0RXZbkeyRefE6tM9lY3VMal6naXd537Gb4n-fyC_AODmGbMpvxlLUe4VEJMO1whDLe1jv0sGnVi61BQ8RhPByI1O19J1FKvifC-ek2Mmg1dfIW&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=www.paypal.com_signin
-
https://www.paypal.com/us/security/learn?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=security_learn
-
https://www.paypal.com/us/security/learn?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=security_learn__;JSUlJSUlJQ!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sKh6fsjH$
-
https://www.paypal.com/us/smarthelp/article/why-am-i-receiving-emails-from-paypal-when-i-dont-have-an-account-faq4172?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=article_why-am-i-receiving-emails-from-paypal-when-i-dont-have-an-account-faq4172
-
https://www.paypal.com/us/smarthelp/article/why-am-i-receiving-emails-from-paypal-when-i-dont-have-an-account-faq4172?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=article_why-am-i-receiving-emails-from-paypal-when-i-dont-have-an-account-faq4172__;JSUlJSUlJQ!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sKtMUgak$
-
https://www.paypal.com/us/smarthelp/home?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=smarthelp_home
-
https://www.paypal.com/us/smarthelp/home?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=smarthelp_home__;JSUlJSUlJQ!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sMiRTI50$
-
https://www.paypal.com/us/webapps/mpp/mobile-apps?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=mpp_mobile-apps
-
https://www.paypal.com/us/webapps/mpp/mobile-apps?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=mpp_mobile-apps__;JSUlJSUlJQ!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sLC1K6oP$
-
https://www.paypal.com/us/webapps/mpp/paypal-safety-and-security?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=mpp_paypal-safety-and-security
-
https://www.paypal.com/us/webapps/mpp/paypal-safety-and-security?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=mpp_paypal-safety-and-security__;JSUlJSUlJQ!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sIDyNKtS$
-
https://www.paypal.com/us/webapps/mpp/security/suspicious-activity?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=security_suspicious-activity
-
https://www.paypal.com/us/webapps/mpp/security/suspicious-activity?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&ppid=RT000186&cnac=US&rsta=en_US*28en-US*29&unptid=bd8c31a6-b156-11ef-93ab-51747d0c16e7&calc=f607380584773&unp_tpcid=requestmoney-notifications-requestee&page=main*3Aemail*3ART000186&pgrp=main*3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585*2C150948*2C104038&link_ref=security_suspicious-activity__;JSUlJSUlJQ!!GaaboA!rG2HUs48odyz1Sc0HpmIhM8t1xQeAoQ_fxjDLcmPd-4djLOEj-BdwkXalCmRIozGtSG899pmGyKrO-4PtdG0sAbVx8xO$
-
https://www.paypalobjects.com/digitalassets/c/system-triggered-email/n/layout/images/ppe/pp-logo_x2.png
- Show all
-
-
email-html-2.txt.html
-
email-plain-1.txt