Post

Phishing Analysis

Posted Updated
Preview Image
By 2$0b.|3r0th3rcc 1 min read

I used Thunderbird

image

Who is the primary recipient of this email? (1 points)

kinnar1975@yahoo.co.uk

What is the subject of this email? (1 points)

Undeliverable: Website contact form submission

What is the date and time the email was sent? (1 points)

18 March 2021 04:14

What is the Originating IP? (1 points)

Please try opening it in text ~

image

103.9.171.10

Perform reverse DNS on this IP address, what is the resolved host? (whois.domaintools.com) (1 points)

As a suggestion, go to whois.domaintools.com

image

c5s2-1e-syd.hosting-services.net.au

What is the name of the attached file? (2 points)

image

Website contact form submission.eml

What is the URL found inside the attachment? (1 points)

https://35000usdperwwekpodf.blogspot.sg?p=9swghttps://35000usdperwwekpodf.blogspot.co.il?o=0hnd

What service is this webpage hosted on? (1 points)

image

blogspot

Using URL2PNG, what is the heading text on this page? (Doesn’t matter if the page has been taken down!) (1 points)

Let’s go URL2PNG

image

Blog has been removed

goodbye, thank you for reading until now //~//

BTLO, Security Operations
Text Editor Mozilla Thunderbird URL2PNG WHOis Blue Team btlo
This post is licensed under CC BY 4.0 by the author.