Loading ...

Play interactive tourEdit tour

Windows Analysis Report https://priderecovery779413013.wordpress.com

Overview

General Information

Sample URL:https://priderecovery779413013.wordpress.com
Analysis ID:553465
Infos:

Most interesting Screenshot:

Detection

HTMLPhisher
Score:68
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Phishing site detected (based on shot template match)
Yara detected HtmlPhish7
Yara detected HtmlPhish10
Phishing site detected (based on image similarity)
HTML body contains low number of good links
Found iframes
No HTML title found

Classification

Process Tree

  • System is w10x64
  • chrome.exe (PID: 6784 cmdline: C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://priderecovery779413013.wordpress.com MD5: C139654B5C1438A95B321BB01AD63EF6)
    • chrome.exe (PID: 7000 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1528,3464267663473017341,12747655211763697408,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1912 /prefetch:8 MD5: C139654B5C1438A95B321BB01AD63EF6)
  • cleanup

Malware Configuration

No configs have been found

Yara Overview

No yara matches

Sigma Overview

No Sigma rule has matched

Jbx Signature Overview

Click to jump to signature section

Show All Signature Results

Phishing: