Website
evernote.com
Tags
Phishing Exfiltration Download
Phishing
Attackers can upload malicious files to evernote and share the direct download link of the file with target users.
Command and Control
None
Exfiltration
Attackers can upload files to Evernote and share the direct download link to themselves to download the exfiltrated data.
Download
Attackers can upload malicious files to Evernote and use the direct download link to drop files on a target machine.
Service Provider
Evernote
Sample
https://www.joesandbox.com/analysis/501613/0/html
Created: 2022-01-20
Last Update: 2022-01-20
Credits: @lpha3ch0