General
-
Target
https://www.paypal.com/signin/?returnUri=%2Fmyaccount%2Ftransfer%2FpayRequest%2FU-55T62746T7635374K%2FU-79G74155FX425812K%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq&id=mCDvd0ETOhZQL9cY3NaxMAKQXKs4GPgPsQ2o1w&expId=p2p&onboardData=%7B%22signUpRequest%22%3A%7B%22method%22%3A%22get%22%2C%22url%22%3A%22https%3A%2F%2Fwww.paypal.com%2Fmyaccount%2Ftransfer%2FguestLogin%2FpayRequest%2FU-55T62746T7635374K%2FU-79G74155FX425812K%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq%26id%3DmCDvd0ETOhZQL9cY3NaxMAKQXKs4GPgPsQ2o1w%22%7D%7D&flowContextData=W067YHPmc7-LRTBlEf2wpNN8kkKvbFQCZlPBoalIoV_6ugDH-B28d_OHjQpZgqcQdFmNuaeieypJVf7urF2Rq18iD2CSBcZQRQ5LDr36qJ_k7AhhsgA2waH3_MEpOWPU2D-6ZmfpyVZIvgveEvLU0XxnTI4038supGBdOZ91xMlP1UQKlqq-ZMEsoFLKIpdL6u1heQj2nC-TZIYlBdxl-mvzY91o35BnOxRrIA3dAucvDi5sxWLL_NkMinL31tV1LlLcY4EiiEBs5_uS1mJRmNc2pf983SYx_x57gO-5FiZtYYiQm8hSiWKPCBMmYCpLAOzp3tdSn86MR0IlTNCWK2OiWQi&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=550dd013-b706-11ef-8d37-f5d52b8852f8&ppid=RT000186&cnac=US&rsta=en_US%28en-US%29&unptid=550dd013-b706-11ef-8d37-f5d52b8852f8&calc=f9423155adc00&unp_tpcid=requestmoney-notifications-requestee&page=main%3Aemail%3ART000186&pgrp=main%3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585%2C150948%2C104038&link_ref=www.paypal.com_signin
-
Sample
241211-tnxghsvkcq
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://www.paypal.com/signin/?returnUri=%2Fmyaccount%2Ftransfer%2FpayRequest%2FU-55T62746T7635374K%2FU-79G74155FX425812K%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq&id=mCDvd0ETOhZQL9cY3NaxMAKQXKs4GPgPsQ2o1w&expId=p2p&onboardData=%7B%22signUpRequest%22%3A%7B%22method%22%3A%22get%22%2C%22url%22%3A%22https%3A%2F%2Fwww.paypal.com%2Fmyaccount%2Ftransfer%2FguestLogin%2FpayRequest%2FU-55T62746T7635374K%2FU-79G74155FX425812K%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq%26id%3DmCDvd0ETOhZQL9cY3NaxMAKQXKs4GPgPsQ2o1w%22%7D%7D&flowContextData=W067YHPmc7-LRTBlEf2wpNN8kkKvbFQCZlPBoalIoV_6ugDH-B28d_OHjQpZgqcQdFmNuaeieypJVf7urF2Rq18iD2CSBcZQRQ5LDr36qJ_k7AhhsgA2waH3_MEpOWPU2D-6ZmfpyVZIvgveEvLU0XxnTI4038supGBdOZ91xMlP1UQKlqq-ZMEsoFLKIpdL6u1heQj2nC-TZIYlBdxl-mvzY91o35BnOxRrIA3dAucvDi5sxWLL_NkMinL31tV1LlLcY4EiiEBs5_uS1mJRmNc2pf983SYx_x57gO-5FiZtYYiQm8hSiWKPCBMmYCpLAOzp3tdSn86MR0IlTNCWK2OiWQi&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=550dd013-b706-11ef-8d37-f5d52b8852f8&ppid=RT000186&cnac=US&rsta=en_US%28en-US%29&unptid=550dd013-b706-11ef-8d37-f5d52b8852f8&calc=f9423155adc00&unp_tpcid=requestmoney-notifications-requestee&page=main%3Aemail%3ART000186&pgrp=main%3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585%2C150948%2C104038&link_ref=www.paypal.com_signin
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
https://www.paypal.com/signin/?returnUri=%2Fmyaccount%2Ftransfer%2FpayRequest%2FU-55T62746T7635374K%2FU-79G74155FX425812K%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq&id=mCDvd0ETOhZQL9cY3NaxMAKQXKs4GPgPsQ2o1w&expId=p2p&onboardData=%7B%22signUpRequest%22%3A%7B%22method%22%3A%22get%22%2C%22url%22%3A%22https%3A%2F%2Fwww.paypal.com%2Fmyaccount%2Ftransfer%2FguestLogin%2FpayRequest%2FU-55T62746T7635374K%2FU-79G74155FX425812K%3FclassicUrl%3D%2FUS%2Fcgi-bin%2F%3Fcmd%3D_prq%26id%3DmCDvd0ETOhZQL9cY3NaxMAKQXKs4GPgPsQ2o1w%22%7D%7D&flowContextData=W067YHPmc7-LRTBlEf2wpNN8kkKvbFQCZlPBoalIoV_6ugDH-B28d_OHjQpZgqcQdFmNuaeieypJVf7urF2Rq18iD2CSBcZQRQ5LDr36qJ_k7AhhsgA2waH3_MEpOWPU2D-6ZmfpyVZIvgveEvLU0XxnTI4038supGBdOZ91xMlP1UQKlqq-ZMEsoFLKIpdL6u1heQj2nC-TZIYlBdxl-mvzY91o35BnOxRrIA3dAucvDi5sxWLL_NkMinL31tV1LlLcY4EiiEBs5_uS1mJRmNc2pf983SYx_x57gO-5FiZtYYiQm8hSiWKPCBMmYCpLAOzp3tdSn86MR0IlTNCWK2OiWQi&v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000186&utm_unptid=550dd013-b706-11ef-8d37-f5d52b8852f8&ppid=RT000186&cnac=US&rsta=en_US%28en-US%29&unptid=550dd013-b706-11ef-8d37-f5d52b8852f8&calc=f9423155adc00&unp_tpcid=requestmoney-notifications-requestee&page=main%3Aemail%3ART000186&pgrp=main%3Aemail&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.294.0&tenant_name=&xt=145585%2C150948%2C104038&link_ref=www.paypal.com_signin
-