Website
*.cloudfront.net
Tags
Phishing C&C Download
Phishing
Attackers can use *.cloudfront.net to host their phishing websites.
Command and Control
Subdomains of cloudfront.net have been used as C&C servers by ransomware.
Exfiltration
None
Download
Malicious tools can be stored on *.cloudfront.net and downloaded when required.
Service Provider
Amazon Web Services
Sample
https://www.joesandbox.com/analysis/481251/0/html
Created: 2021-11-10
Last Update: 2021-11-10
Credits: mr.d0x