General

  • Target

    https://www.paypal.com/signin/?returnUri=%2Fmyaccount%2Ftransfer%2FpayRequest%2FU-95T80545NG9986050%2FU-84173824093275136%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq&id=kI8mcTRaN0WO5xmCQ4GDITZF.kXpcGK9xdcZSQ&expId=p2p&onboardData=%7B%22signUpRequest%22%3A%7B%22method%22%3A%22get%22%2C%22url%22%3A%22https%3A%2F%2Fwww.paypal.com%2Fmyaccount%2Ftransfer%2FguestLogin%2FpayRequest%2FU-95T80545NG9986050%2FU-84173824093275136%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq%26id%3DkI8mcTRaN0WO5xmCQ4GDITZF.kXpcGK9xdcZSQ%22%7D%7D&flowContextData=MeMXGE8OqyWG2HfIlcjIdCqkEmkd0qPg-lhaEaHLPGTqVMDy2dr-KMtuRS-7bujY89g-lExX-t_08uO83_r4N_EEIRQMgJApEwMKN7hkPx2T6quR7ZSKEhWd5nxtfshiZM6XpR-GMUhe4RH0FGkgjZ3iZqr5ZYqEndbruhaZ5ewLDzd3DcpEdWdPNQSIfIvrvTronTGwwP_wCJdaAaXOvgWJx1ojC5XFx4yydpuiMx5zYTlA69DAZ1Z9DevZmNaFZd8UMtPPz7UI7gvOqq6LAmNkEwDsdD4VLjP2-Aq-gIIN7IfALBPkxrX-nmbKKVlg_55ME3MxiIiDpEeDQQSupwHELnq&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=070ad875-b707-11ef-9fd6-19bae7a5ab0e&ppid=RT000186&cnac=US&rsta=en_US%28en-US%29&unptid=070ad875-b707-11ef-9fd6-19bae7a5ab0e&calc=f1385659fab3b&unp_tpcid=requestmoney-notifications-requestee&page=main%3Aemail%3ART000186&pgrp=main%3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585%2C150948%2C104038&link_ref=www.paypal.com_signin

  • Sample

    241211-n1nr9a1nfy

Malware Config

Targets

    • Target

      https://www.paypal.com/signin/?returnUri=%2Fmyaccount%2Ftransfer%2FpayRequest%2FU-95T80545NG9986050%2FU-84173824093275136%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq&id=kI8mcTRaN0WO5xmCQ4GDITZF.kXpcGK9xdcZSQ&expId=p2p&onboardData=%7B%22signUpRequest%22%3A%7B%22method%22%3A%22get%22%2C%22url%22%3A%22https%3A%2F%2Fwww.paypal.com%2Fmyaccount%2Ftransfer%2FguestLogin%2FpayRequest%2FU-95T80545NG9986050%2FU-84173824093275136%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq%26id%3DkI8mcTRaN0WO5xmCQ4GDITZF.kXpcGK9xdcZSQ%22%7D%7D&flowContextData=MeMXGE8OqyWG2HfIlcjIdCqkEmkd0qPg-lhaEaHLPGTqVMDy2dr-KMtuRS-7bujY89g-lExX-t_08uO83_r4N_EEIRQMgJApEwMKN7hkPx2T6quR7ZSKEhWd5nxtfshiZM6XpR-GMUhe4RH0FGkgjZ3iZqr5ZYqEndbruhaZ5ewLDzd3DcpEdWdPNQSIfIvrvTronTGwwP_wCJdaAaXOvgWJx1ojC5XFx4yydpuiMx5zYTlA69DAZ1Z9DevZmNaFZd8UMtPPz7UI7gvOqq6LAmNkEwDsdD4VLjP2-Aq-gIIN7IfALBPkxrX-nmbKKVlg_55ME3MxiIiDpEeDQQSupwHELnq&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=070ad875-b707-11ef-9fd6-19bae7a5ab0e&ppid=RT000186&cnac=US&rsta=en_US%28en-US%29&unptid=070ad875-b707-11ef-9fd6-19bae7a5ab0e&calc=f1385659fab3b&unp_tpcid=requestmoney-notifications-requestee&page=main%3Aemail%3ART000186&pgrp=main%3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585%2C150948%2C104038&link_ref=www.paypal.com_signin

MITRE ATT&CK Enterprise v15

Tasks