AT related malicious URL (voicedatacenterrecice-address-desktopam-a150.widivag676.workers.dev/Voicemailacess-document-authorization-m365-sector-ag265KgYspNAcotT6okDqqCDrMgSSilZ/h2d4535fCWWE0u6EWkEmxpTzhMgfxreMoI786J4q/)

SID: 6006595Rev: 10 views
Sourcejulioliraup/antiphishing
CreatedMay 25, 2026
UpdatedMay 25, 2026
Classificationsocial-engineering
alert http $HOME_NET any -> any any (msg:"AT related malicious URL (voicedatacenterrecice-address-desktopam-a150.widivag676.workers.dev/Voicemailacess-document-authorization-m365-sector-ag265KgYspNAcotT6okDqqCDrMgSSilZ/h2d4535fCWWE0u6EWkEmxpTzhMgfxreMoI786J4q/)"; flow:established,to_server; http.uri; content:"/Voicemailacess-document-authorization-m365-sector-ag265KgYspNAcotT6okDqqCDrMgSSilZ/h2d4535fCWWE0u6EWkEmxpTzhMgfxreMoI786J4q/"; startswith; fast_pattern; http.host; content:"voicedatacenterrecice-address-desktopam-a150.widivag676.workers.dev"; endswith; reference:url,openphish.com; reference:url,julioliraup.github.io/ET/signature.html?sid=6006595; classtype:social-engineering; sid:6006595; rev:1; metadata:signature_severity Major, created_et 2026_05_25;)

References

urlopenphish.com
urljulioliraup.github.io/ET/signature.html?sid=6006595

Metadata

signature severityMajor
created et2026_05_25

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!