Latter is quite unlikely since he was not able to dig up my personal email address on his own. I finally concluded that either there is no malware, or he's just too good. By this time I had finished my investigation, and the White hat expert from Hackforums didn't find anything either. He turned out to be a fellow Indian and was even younger than me (I'm 17 he is 16). He replied and said he didn't send any malware or anything. I replied to him saying that I'm finding out and cleaning the malware he sent me (if any). He said he wants me to spread public awareness regarding this kind of phishing He knew I found out the phishing page thing Meanwhile, the following mails had been sent to me. ![]() An expert analyzed my computer thoroughly via teamviewer, and the file was clean indeed. ![]() So after this, I went to white hat section of hackforums and asked for help ( everyone needs help at some time or the other, and I suck at forensics and related stuff) . I have Windows Defender on my Windows 8 machine, but with proper crypting , anti-viruses can be evaded. He could have used a FUD remote administration tool which my antivirus wouldn't be able to detect. The content looked genuine and then I realized, well, what if this was a 2 fold attack, first phishing, followed by infection. ![]() It completed successfully and I ran the PDF. So, after entering the bogus login data, the PDF download started. it recorded whatever someone entered in the form) and would simply download the PDF no matter what we entered in the form. Now if it were a real page, it would have said incorrect password, but this page had no mechanism for verifying the form data, it actually just kept logging everything (i.e. So I entered the and password:lookslikephishing and pressed sign in. So, I decided, I cannot just dismiss the page as phishing as such without trying.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |