| _id |
5ff6416cbcb56fe1554a0963 |
| reference |
['https://urlscan.io/result/592a3780-619e-4e7b-96d2-28322bb4f1e7/', 'https://twitter.com/ffforward/status/1346538977969508354/photo/1'] |
| md5 |
[] |
| sha1 |
[] |
| sha256 |
[] |
| mail |
['donotreply@hiremee.co.in'] |
| ip |
[] |
| domain |
['marahajah.com', 'hiremee.co.in', 'deficitbanquet.com'] |
| url |
['marahajah.com/?tty'] |
| user |
ffforward |
| tweet |
#Phishing sent from donotreply@hiremee.co.in @Hiremeeinc via compromised @awscloud SES. Subject "Pending Invitation" > newly reg *.marahajah.com/?tty= (victim@domain.tld) > /deficitbanquet.com. Pivot from these: 177 malicious .com domains >
https://urlscan.io/result/592a3780-619e-4e7b-96d2-28322bb4f1e7/ https://twitter.com/ffforward/status/1346538977969508354/photo/1 |
| id |
1346538977969508354 |
| retweets |
5 |
| link |
https://twitter.com/ffforward/status/1346538977969508354 |
| mentions |
['@hiremee', '@Hiremeeinc', '@awscloud', '@domain'] |
| hashtags |
['#Phishing'] |
| date |
2021-01-05 19:28:04 |
| timestamp |
1609871284 |