Phishing Analysis

🔬 Threat Analysis Report

• Threat: Microsoft credential harvesting phishing attempt
• Target: Microsoft users
• Method: Impersonates Microsoft's sign-in page to potentially capture credentials if a user interacts with the page after a redirect.
• Exfil: Unknown, likely to a remote server or database.
• Indicators: Unofficial domain (pub-c498eb31b5d846b1bd6aa9a794d815e7.r2.dev), Microsoft branding
• Risk: HIGH - Potential for credential theft if a user is redirected to a login form after the security check.

🔒 Obfuscation Detected

• atob
• eval
• fromCharCode
• unicode_escape
• base64_strings

📡 API Calls Detected

• ${TW}