This detection rule identifies messages that contain links redirecting to the domain 'asemailmgmteu.com'. Open redirects have been used in various attacks, particularly for phishing and malware distribution. The rule checks for the presence of links in the message body (between 1 and 9 links), and if any of those links have a URL that resolves to 'asemailmgmteu.com'. It also confirms the existence of a 'redirect=' parameter in the URL's query portion and ensures that the link's display text does not include 'unsubscribe', indicating legitimate user interaction is being contrived. Furthermore, it evaluates trusted sender domains to avoid false positives, only flagging messages from high-trust domains if they fail DMARC authentication or are not part of the high-trust list. This comprehensive approach seeks to mitigate risks associated with phishing and related attacks via malicious redirection.