HTML/Phish.A!tr
Analysis
HTML/Phish.A!tr is a detection for an Phishing trojan.
- Following are some of the near/exact IOCs/file hash associated with this detection:
- 76614744f70814c0ba130c3ccffbfcb6
- 8e3e9e1c9b0b70047ff72edac5119327
- 8f55dfee9b450d255146c018a8a048b6
- 9bcad241728fba33bbe9ecf24f0c5ea6
- The following are some illustration(s) related to the malware during our quick analysis:
- Figure 1: Phishing Site.
- Figure 2: Phishing Email.
- Figure 3: Phishing Email.
Recommended Action
- Make sure that your FortiGate/FortiClient system is using the latest AV database.
- Quarantine/delete files that are detected and replace infected files with clean backup copies.
Telemetry
Detection Availability
FortiGate | |
---|---|
FortiClient | |
FortiAPS | |
FortiAPU | |
FortiMail | |
FortiSandbox | |
FortiWeb | |
Web Application Firewall | |
FortiIsolator | |
FortiDeceptor | |
FortiEDR |