Phishing Analysis

🔬 Threat Analysis Report

• Amenaza: Phishing
• Objetivo: Empleados de Malta Airport
• Método: Recopilación de credenciales
• Exfil: Desconocido
• Indicadores: Discordancia de dominio, formulario de inicio de sesión
• Riesgo: Alto

🎯 Kit Endpoints

• https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000001-0000-cff1-ce00-948463173626&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=d98292e6-fa3f-ce32-9137-21bc5137cc6d&protectedtoken=true&domain_hint=maltairport.com&nonce=451294972200.ec82d3ed-b372-7cd6-3e42-fcfc13352e79&state=c2FsbWEubWJhamphQG1hbHRhaXJwb3J0LmNvbQ#
• https://passwordreset.microsoftonline.com/?ru=https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000001-0000-cff1-ce00-761534286862&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=d98292e6-fa3f-ce32-9342-21bc5137cc6d&protectedtoken=true&domain_hint=maltairport.com&nonce=923736829528.ec82d3ed-b372-7cd6-3e42-fcfc13352e79&state=c2FsbWEubWJhamphQG1hbHRhaXJwb3J0LmNvbQ#
• https://login.microsoftonline.com/common/login#
• https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000001-0000-cff1-ce00-412809100797&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=1&msaredir=1&client-request-id=d98292e6-fa3f-ce32-1527-21bc5137cc6d&protectedtoken=true&domain_hint=maltairport.com&nonce=802288103944.ec82d3ed-b372-7cd6-3e42-fcfc13352e79&state=c2FsbWEubWJhamphQG1hbHRhaXJwb3J0LmNvbQ#

Domain Information