{
  "website": "evernote.com",
  "tags": [
    "Phishing",
    "Exfiltration",
    "Download"
  ],
  "service_provider": "Evernote",
  "phishing": "Attackers can upload malicious files to evernote and share the direct download link of the file with target users.",
  "command_and_control": "None",
  "exfiltration": "Attackers can upload files to Evernote and share the direct download link to themselves to download the exfiltrated data.",
  "download": "Attackers can upload malicious files to Evernote and use the direct download link to drop files on a target machine.",
  "sample_url": "https://www.joesandbox.com/analysis/501613/0/html",
  "created": "2022-01-20",
  "last_update": "2022-01-20",
  "credits": "@lpha3ch0",
  "detail_path": "/site/657665726e6f74652e636f6d",
  "detail_slug": "657665726e6f74652e636f6d",
  "detail_url": "https://lots-project.com/site/657665726e6f74652e636f6d",
  "scraped_at": "2026-06-16T11:58:27Z"
}