Generic Email ec34bc68

A generic email phishing kit loading CSS from an appspot project using a hard-coded access token.

References

IOK Rule (edit)

title: Generic Email ec34bc68
description: |
  A generic email phishing kit loading CSS from an appspot project using a hard-coded access token.
references:
  - https://urlscan.io/result/67743b55-f830-49e6-b71e-2fc71e4b8914/
detection:
  bootstrapToken:
    requests|contains: 'bootstrap.min.css?alt=media&token=ec34bc68-b721-48e5-a02a-8deed9a44325'

  condition: bootstrapToken