General
-
Target
https://www.google.at/url?sa==fXAyzqJOuo1MZpC667hPpjen8sVJqF&rct=A1YBWxr6hqcm6XItj8z0gdkwPQOOogfHXrUjmLCgPZVJTqTwAfaLrMr5sGSm0yLDz6&sa=t&url=amp/e3a.co.tz/authh/mvmth/i7ZUWjLObxX1KHpszpVJIBgVmW5czj5Cc8hHs/YXJAZXNhYi5jb20=
-
Sample
250109-l1zteawqey
Score
7/10
Malware Config
Targets
-
-
Target
https://www.google.at/url?sa==fXAyzqJOuo1MZpC667hPpjen8sVJqF&rct=A1YBWxr6hqcm6XItj8z0gdkwPQOOogfHXrUjmLCgPZVJTqTwAfaLrMr5sGSm0yLDz6&sa=t&url=amp/e3a.co.tz/authh/mvmth/i7ZUWjLObxX1KHpszpVJIBgVmW5czj5Cc8hHs/YXJAZXNhYi5jb20=
Score7/10-
A potential corporate email address has been identified in the URL: [email protected]
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Detected potential entity reuse from brand MICROSOFT.
-