Phishing Analyzer
Welcome to the SOC Triage simulator. An employee has reported this email as suspicious. Your mission is to click on the 3 red flags that prove this is a Social Engineering attack.
Dear customer,
We have detected unusual activity on your business account and for security reasons we have temporarily suspended your transactions.
To restore immediate access and avoid permanent suspension of your funds, please verify your identity at the following secure link:
If you do not recognize this activity, please download and review the access report attached to this email.
Sincerely,
The security team.
๐ก๏ธ THREAT NEUTRALIZED! ๐ก๏ธ
Excellent analytical work. You correctly identified the attack vectors:
- Visual Spoofing (Typosquatting): The attacker used "paypaI" (with a capital 'i') to deceive the human eye.
- Malicious Link: The button text appeared legitimate but hid a redirect to a Russian HTTP server.
- Attached Malware: The file used a double extension (.pdf.exe) to hide its true executable nature.
Validate your audit in the main terminal with the flag: submit FLAG{phishing_triage_expert}