xrobwx71 Posted June 26 Posted June 26 I received a text message today copied below. From a phone number with an Indonesian exchange of +62 It's supposedly from the USPS (United States Postal Service) ((with an Indonesian exchange)) USPS Notification: Your parcel is temporarily on hold at our facility due to insufficient address information. Please provide a valid delivery address to avoid returning the package. URL:https://cutt.ly/repmWkJb?BKK=FH5CsqGHpI?bqy=cypMvfnNhc Wishing you an exceptional day from the USPS team. Congratulations! Your analysis is done and available at: https://www.hybrid-analysis.com/sample/b1ac1702795cd362de5f295b81bfcfb4318b46c061263802cf5a58fec28fedbb?environmentId=160 --- Falcon Sandbox Analysis Overview --- https://www.hybrid-analysis.com/sample/b1ac1702795cd362de5f295b81bfcfb4318b46c061263802cf5a58fec28fedbb --- Falcon Sandbox Analysis Summary --- Analysis State: SUCCESS Threat Verdict: malicious Threat Score: 82/100 AV Detection Ratio: n/a AV Family Name: n/a Time of analysis: 2024-06-26 16:58:38 Contacted Domains: a.nel.cloudflare.com, cutt.ly, usom.mzlrpdma.top Contacted Hosts: 104.22.0.232, 172.67.189.63, 172.67.189.63, 35.190.80.1, 35.190.80.1 Environment: Windows 10 64 bit (ID: 160)
Tripredacus Posted June 27 Posted June 27 Whatever was on that link isn't there now. It goes to a 404.
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now