Home Phishing Emails in Action
Post
Cancel

Phishing Emails in Action

Learn the different indicators of phishing attempts by examining actual phishing emails.

THM Room https://tryhackme.com/room/phishingemails2rytmuv

TASK 1 : Introduction

Read the above.

No Answer

TASK 2 : Cancel your PayPal order

What phrase does the gibberish sender email start with?

Answer : noreply

TASK 3 : Track your package

What is the root domain for each URL? Defang the URL.

Answer : devret[.]xyz

TASK 4 : Select your email provider to view document

This email sample used the names of a few major companies, their products, and logos such as OneDrive and Adobe. What other company name was used in this phishing email?

email2.eml email2.eml

Answer : citrix

TASK 5 : Please update your payment details

What should users do if they receive a suspicious email or text message claiming to be from Netflix?

Answer : forward the message to phishing@netflix.com

TASK 6 : Your recent purchase

What does BCC mean?

Answer : Blind Carbon Copy

What technique was used to persuade the victim to not ignore the email and act swiftly?

Answer : urgency

TASK 7 : DHL Express Courier Shipping notice

What is the name of the executable that the Excel attachment attempts to run?

Answer : regasms.exe

TASK 8 : Conclusion

Read the above.

No Answer

This post is licensed under CC BY 4.0 by the author.