Source: https://mobile1austin.com/Title-docs/RD-FITT | SlashNext: detection malicious, Label: Fake Login Page type: Phishing & Social Engineering |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | SlashNext: Label: Fake Login Page type: Phishing & Social Engineering |
Source: Yara match | File source: 302494.pages.csv, type: HTML |
Source: Yara match | File source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\RD-FITT[1].htm, type: DROPPED |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | Matcher: Template: office matched |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | HTTP Parser: Number of links: 0 |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | HTTP Parser: Number of links: 0 |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | HTTP Parser: Title: Office365 Portal does not match URL |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | HTTP Parser: Title: Office365 Portal does not match URL |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | HTTP Parser: Invalid link: Need help signing in? |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | HTTP Parser: Invalid link: Need help signing in? |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | HTTP Parser: No <meta name="author".. found |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | HTTP Parser: No <meta name="author".. found |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | HTTP Parser: No <meta name="copyright".. found |
Source: https://mobile1austin.com/Title-docs/RD-FITT/ | HTTP Parser: No <meta name="copyright".. found |
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe | File opened: C:\Program Files (x86)\Java\jre1.8.0_211\bin\msvcr100.dll | Jump to behavior |
Source: unknown | HTTPS traffic detected: 162.241.70.248:443 -> 192.168.2.7:49714 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 162.241.70.248:443 -> 192.168.2.7:49715 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 104.16.18.94:443 -> 192.168.2.7:49719 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 104.16.18.94:443 -> 192.168.2.7:49720 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 162.241.70.248:443 -> 192.168.2.7:49738 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 151.101.1.192:443 -> 192.168.2.7:49752 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 151.101.1.192:443 -> 192.168.2.7:49753 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 192.229.221.185:443 -> 192.168.2.7:49764 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 192.229.221.185:443 -> 192.168.2.7:49763 version: TLS 1.2 |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <img src="//www.microsoft.com/onerfstatics/marketingsites-neu-prod/_h/85288795/coreui.statics/images/social/facebook.png" alt="Facebook"> equals www.facebook.com (Facebook) |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <img src="//www.microsoft.com/onerfstatics/marketingsites-neu-prod/_h/93690392/coreui.statics/images/social/twitter.png" alt="Twitter"> equals www.twitter.com (Twitter) |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <img src="//www.microsoft.com/onerfstatics/marketingsites-neu-prod/_h/b23f9ba2/coreui.statics/images/social/linkedin.png" alt="LinkedIn"> equals www.linkedin.com (Linkedin) |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <img src="//www.microsoft.com/onerfstatics/marketingsites-neu-prod/_h/c79952ca/coreui.statics/images/social/youtube.png" alt="Youtube"> equals www.youtube.com (Youtube) |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <source type="image/svg+xml" srcset="//www.microsoft.com/onerfstatics/marketingsites-neu-prod/_h/2532198d/coreui.statics/images/social/facebook.svg"> equals www.facebook.com (Facebook) |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <source type="image/svg+xml" srcset="//www.microsoft.com/onerfstatics/marketingsites-neu-prod/_h/2d505657/coreui.statics/images/social/youtube.svg"> equals www.youtube.com (Youtube) |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <source type="image/svg+xml" srcset="//www.microsoft.com/onerfstatics/marketingsites-neu-prod/_h/413bd4a8/coreui.statics/images/social/linkedin.svg"> equals www.linkedin.com (Linkedin) |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <source type="image/svg+xml" srcset="//www.microsoft.com/onerfstatics/marketingsites-neu-prod/_h/6f40299c/coreui.statics/images/social/twitter.svg"> equals www.twitter.com (Twitter) |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <a data-m='{"id":"n1m1r5a2","sN":1,"aN":"m1r5a2"}' itemprop="sameAs" href="https://www.facebook.com/microsoftschweiz" title="Microsoft auf Facebook folgen (öffnet in einem neuen Tab)." target="_blank"> equals www.facebook.com (Facebook) |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <a data-m='{"id":"n3m1r5a2","sN":3,"aN":"m1r5a2"}' itemprop="sameAs" href="https://www.linkedin.com/company/1035" title="Microsoft auf LinkedIn folgen (öffnet in einem neuen Tab)." target="_blank"> equals www.linkedin.com (Linkedin) |
Source: de-ch[1].htm.2.dr | String found in binary or memory: <a data-m='{"id":"n4m1r5a2","sN":4,"aN":"m1r5a2"}' itemprop="sameAs" href="https://www.youtube.com/user/MicrosoftCH" title="Microsoft auf YouTube folgen (öffnet in einem neuen Tab)." target="_blank"> equals www.youtube.com (Youtube) |
Source: privacystatement[1].htm.2.dr | String found in binary or memory: <ul><li>Sources of personal data: Interactions with users</li><li>Purposes of Processing (Collection and Sharing with Third Parties): Provide our products; product improvement; product development; customer support; and help, secure, and troubleshoot</li><li>Recipients: Service providers and user-directed entities</li></ul></li></ul><p>While the bulleted list above contains the primary sources and purposes of processing for each category of personal data, we also collect personal data from the sources listed in the <a target="_blank" class="mscom-link" href="#mainpersonaldatawecollect">Personal data we collect</a> section, such as developers who create experiences through or for Microsoft products. Similarly, we process all categories of personal data for the purposes described in the <a target="_blank" class="mscom-link" href="#mainhowweusepersonaldatamodule">How we use personal data</a> section, such as meeting our legal obligations, developing our workforce, and doing research.</p><p><strong>Disclosures of personal data for business or commercial purposes</strong>. As indicated in the <a target="_blank" class="mscom-link" href="#mainreasonswesharepersonaldatamodule">Reasons we share personal data</a> section, we share personal data with third parties for various business and commercial purposes. The primary business and commercial purposes for which we share personal data are the purposes of processing listed in the table above. However, we share all categories of personal data for the business and commercial purposes in the <a class="mscom-link" href="#mainreasonswesharepersonaldatamodule">Reasons we share personal data</a> section.</p></span></div><div class="divModuleDescription"><span id="Header13">Advertising</span><span id="navigationHeader13">Advertising</span><span id="moduleName13">mainadvertisingmodule</span><div class="printsummary" style="display: block;">Summary</div><span class="Description" id="ShortDescription13"><p>Advertising allows us to provide, support, and improve some of our products. Microsoft does not use what you say in email, chat, video calls or voice mail, or your documents, photos, or other personal files to target ads to you. We use other data, detailed below, for advertising in our products and on third-party properties. For example:</p><ul><li>Microsoft may use data we collect to select and deliver some of the ads you see on Microsoft web properties, such as <a target="_blank" class="mscom |