Malicious text message (USPS)

Started by xrobwx71, June 26, 2024, 05:37:03 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

xrobwx71

I received a text message today copied below.

From a phone number with an Indonesian exchange of +62

It's supposedly from the USPS (United States Postal Service) ((with an Indonesian exchange))

QuoteU�‏S‏‏‏‏P�S Noti‏fication: Your par‏cel is temporar‏ily on hold at our facil‏ity due to insuffic‏ient ad‏dr‏ess infor‏mation. Please provide a valid de‏‏li�very‏ add�re‏ss to avoid returning the pac�ka‏ge.

Wishing you an exceptional day from the U�S‏‏‏�P‏S tea‏m.

Congratulations! Your analysis is done and available at: https://www.hybrid-analysis.com/sample/b1ac1702795cd362de5f295b81bfcfb4318b46c061263802cf5a58fec28fedbb?environmentId=160

--- Falcon Sandbox Analysis Overview ---

https://www.hybrid-analysis.com/sample/b1ac1702795cd362de5f295b81bfcfb4318b46c061263802cf5a58fec28fedbb

--- Falcon Sandbox Analysis Summary ---

Analysis State: SUCCESS

Threat Verdict: malicious
Threat Score: 82/100
AV Detection Ratio: n/a
AV Family Name: n/a

Time of analysis: 2024-06-26 16:58:38

Contacted Domains: a.nel.cloudflare.com, cutt.ly, usom.mzlrpdma.top Contacted Hosts: 104.22.0.232, 172.67.189.63, 172.67.189.63, 35.190.80.1, 35.190.80.1

Environment: Windows 10 64 bit (ID: 160)