{
  "website": "wetransfer.com",
  "tags": [
    "Phishing",
    "Download",
    "Exfiltration"
  ],
  "service_provider": "WeTransfer B.V",
  "phishing": "Attackers can upload malicious files and share them to targets via WeTransfer's email servers. wetransfer.com validates the sender email before using it.",
  "command_and_control": "None",
  "exfiltration": "Attackers can upload data to wetransfer.com and share the link to themselves to download the exfiltrated data. Requires GUI access.",
  "download": "Attackers can keep their tools stored on wetransfer.com and when required, use the custom link to download.",
  "sample_url": "https://www.joesandbox.com/analysis/487302/0/html",
  "created": "2021-11-10",
  "last_update": "2021-11-10",
  "credits": "mr.d0x",
  "detail_path": "/site/77657472616e736665722e636f6d",
  "detail_slug": "77657472616e736665722e636f6d",
  "detail_url": "https://lots-project.com/site/77657472616e736665722e636f6d",
  "scraped_at": "2026-06-16T11:57:46Z"
}