General
-
Target
https://www.paypal.com/signin/?returnUri=%2Fmyaccount%2Ftransfer%2FpayRequest%2FU-5UB84074YT229120V%2FU-2W252641YK736252L%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq&id=DnpkC6.b1hLl.-weOsBE2QMcoWgIbQekxW9ceA&expId=p2p&onboardData=%7B%22signUpRequest%22%3A%7B%22method%22%3A%22get%22%2C%22url%22%3A%22https%3A%2F%2Fwww.paypal.com%2Fmyaccount%2Ftransfer%2FguestLogin%2FpayRequest%2FU-5UB84074YT229120V%2FU-2W252641YK736252L%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq%26id%3DDnpkC6.b1hLl.-weOsBE2QMcoWgIbQekxW9ceA%22%7D%7D&flowContextData=Bve7AqWfClaQRPLkUdoPNyWf5jbuBpfWv52KHcQX99Yjz1Ifg97khRduTzqneUoSgc_RUuyWPHeQBmvS7NqYWDvf0sv7nEjacqnV6AcBFinsvwkUSxgdm7VQAPU3C1y7KZr6O1gxQgx2gLFQt8CahG8s9HroPT7M5k1hJ-MnSQF0fAgdIxJBuZGjZflNZbPnBgcJXgd738lTXe4_C5B9XDUVrb-YfHo0dELN_maYNX4W-9s81H6vDINg_SEKaN1obnfYyjw03AjS7tHuMh3agquXQZRY0jgwBagZ9khrECTWlIuE&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=6f5d23f0-b701-11ef-be69-f9c3b19e83a4&ppid=RT000186&cnac=US&rsta=en_US%28en-US%29&unptid=6f5d23f0-b701-11ef-be69-f9c3b19e83a4&calc=f5359029ccf3c&unp_tpcid=requestmoney-notifications-requestee&page=main%3Aemail%3ART000186&pgrp=main%3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585%2C150948%2C104038&link_ref=www.paypal.com_signin
-
Sample
241210-s4d5fatqgk
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://www.paypal.com/signin/?returnUri=%2Fmyaccount%2Ftransfer%2FpayRequest%2FU-5UB84074YT229120V%2FU-2W252641YK736252L%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq&id=DnpkC6.b1hLl.-weOsBE2QMcoWgIbQekxW9ceA&expId=p2p&onboardData=%7B%22signUpRequest%22%3A%7B%22method%22%3A%22get%22%2C%22url%22%3A%22https%3A%2F%2Fwww.paypal.com%2Fmyaccount%2Ftransfer%2FguestLogin%2FpayRequest%2FU-5UB84074YT229120V%2FU-2W252641YK736252L%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq%26id%3DDnpkC6.b1hLl.-weOsBE2QMcoWgIbQekxW9ceA%22%7D%7D&flowContextData=Bve7AqWfClaQRPLkUdoPNyWf5jbuBpfWv52KHcQX99Yjz1Ifg97khRduTzqneUoSgc_RUuyWPHeQBmvS7NqYWDvf0sv7nEjacqnV6AcBFinsvwkUSxgdm7VQAPU3C1y7KZr6O1gxQgx2gLFQt8CahG8s9HroPT7M5k1hJ-MnSQF0fAgdIxJBuZGjZflNZbPnBgcJXgd738lTXe4_C5B9XDUVrb-YfHo0dELN_maYNX4W-9s81H6vDINg_SEKaN1obnfYyjw03AjS7tHuMh3agquXQZRY0jgwBagZ9khrECTWlIuE&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=6f5d23f0-b701-11ef-be69-f9c3b19e83a4&ppid=RT000186&cnac=US&rsta=en_US%28en-US%29&unptid=6f5d23f0-b701-11ef-be69-f9c3b19e83a4&calc=f5359029ccf3c&unp_tpcid=requestmoney-notifications-requestee&page=main%3Aemail%3ART000186&pgrp=main%3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585%2C150948%2C104038&link_ref=www.paypal.com_signin
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
https://www.paypal.com/signin/?returnUri=%2Fmyaccount%2Ftransfer%2FpayRequest%2FU-5UB84074YT229120V%2FU-2W252641YK736252L%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq&id=DnpkC6.b1hLl.-weOsBE2QMcoWgIbQekxW9ceA&expId=p2p&onboardData=%7B%22signUpRequest%22%3A%7B%22method%22%3A%22get%22%2C%22url%22%3A%22https%3A%2F%2Fwww.paypal.com%2Fmyaccount%2Ftransfer%2FguestLogin%2FpayRequest%2FU-5UB84074YT229120V%2FU-2W252641YK736252L%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq%26id%3DDnpkC6.b1hLl.-weOsBE2QMcoWgIbQekxW9ceA%22%7D%7D&flowContextData=Bve7AqWfClaQRPLkUdoPNyWf5jbuBpfWv52KHcQX99Yjz1Ifg97khRduTzqneUoSgc_RUuyWPHeQBmvS7NqYWDvf0sv7nEjacqnV6AcBFinsvwkUSxgdm7VQAPU3C1y7KZr6O1gxQgx2gLFQt8CahG8s9HroPT7M5k1hJ-MnSQF0fAgdIxJBuZGjZflNZbPnBgcJXgd738lTXe4_C5B9XDUVrb-YfHo0dELN_maYNX4W-9s81H6vDINg_SEKaN1obnfYyjw03AjS7tHuMh3agquXQZRY0jgwBagZ9khrECTWlIuE&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=6f5d23f0-b701-11ef-be69-f9c3b19e83a4&ppid=RT000186&cnac=US&rsta=en_US%28en-US%29&unptid=6f5d23f0-b701-11ef-be69-f9c3b19e83a4&calc=f5359029ccf3c&unp_tpcid=requestmoney-notifications-requestee&page=main%3Aemail%3ART000186&pgrp=main%3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585%2C150948%2C104038&link_ref=www.paypal.com_signin
-
A potential corporate email address has been identified in the URL: [email protected]
-