Learn the different indicators of phishing attempts by examining actual phishing emails.
THM Room https://tryhackme.com/room/phishingemails2rytmuv
TASK 1 : Introduction
Read the above.
No Answer
TASK 2 : Cancel your PayPal order
What phrase does the gibberish sender email start with?
Answer : noreply
TASK 3 : Track your package
What is the root domain for each URL? Defang the URL.
Answer : devret[.]xyz
TASK 4 : Select your email provider to view document
This email sample used the names of a few major companies, their products, and logos such as OneDrive and Adobe. What other company name was used in this phishing email?
Answer : citrix
TASK 5 : Please update your payment details
What should users do if they receive a suspicious email or text message claiming to be from Netflix?
Answer : forward the message to phishing@netflix.com
TASK 6 : Your recent purchase
What does BCC mean?
Answer : Blind Carbon Copy
What technique was used to persuade the victim to not ignore the email and act swiftly?
Answer : urgency
TASK 7 : DHL Express Courier Shipping notice
What is the name of the executable that the Excel attachment attempts to run?
Answer : regasms.exe
TASK 8 : Conclusion
Read the above.
No Answer