Jump to content

Beginner

Members
  • Content Count

    4
  • Joined

  • Last visited

About Beginner

  • Rank
    New Member

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Hi David, thank you fot the answer. I can have misinterpreted it as I am not an It expert... May I ask you something? Apart from the page opening by itself, which worries me a bit, can you (or someone else) explain to me 3 parts of the big report (here the full screenshots and below the parts)? 1 - What this means: 2 : 3 And these: Thank you and have a nice day.
  2. So, I don't want to look paranoid. But: yesterday I opened this forum page and another forum page (reddit) where I wrote the same stuff and the site: https:// howtoremove.guide /remove- ****** drive-by-exploit-e mail/ opened in a tab by itself. No kidding, i don't know how this is even possible. I finally have the results from hybrid-analysis and they look REAL BAD (in my humble opinion): https://www.hybrid-analysis.com/sample/69b61e0b4b800586e84bc373eb3b181f092ae694d0c3dcdf39b88c422fcffc7d/5d3d59b4028838118b93867c Malicious 100% Risk Assessment Network Behavior Contacts 23 domains and 22 hosts. MITRE ATT&CK™ Techniques Detection This report has 2 indicators that were mapped to 4 attack techniques and 4 tactics. The windows 64 bit analysis is still in the queue since 07/24/2019 06:46:46: https://www.hybrid-analysis.com/sample/69b61e0b4b800586e84bc373eb3b181f092ae694d0c3dcdf39b88c422fcffc7d How can I check if my PC compromised? And my android phone?
  3. Hi all. I knew it was a scam E-mail, I already got some similar ones with old passwords I don't use anymore. But the sentence "if you want to find out more - Google: "Drive-by exploit" stimulated my curiosity. So I did the google search exactly as suggested, or maybe "what is a Drive-by exploit". I like to learn this kind of stuff. I was on my android phone in the bus, too relaxed. So I opened quite randomly the first 2-3 google links without thinking too much. Also this one (I think, 99% sure, I didn't make any screenshot): !! I make the link unclickable !! https: slashslash howtoremove.guide slash remove-drive-by-exploit-email Even if I know I have (had?) no malware. Well, the Chrome page opened but showed suddenly something like "loss of network connection". I looked at the android status bar. The 4G symbol disappeared for some seconds. Then came back. This in a place where there is always 100% high signal. Question: may I have got a malware like that? Or this ON/OFF/ON is just a coincidence? It would be ironic and a bit sci-fi if I get a malware by a drive-by download after connecting to a web page the guy spamming me hopes I open following his suggestions. However, I turned then my mobile phone off, removed the sim card and I spent some time to factory reset / reinstall all the usual stuff. And then i put the same simcard back, I can not be too paranoid. I am still waiting all the day for the results of hybrid-analysis on the web page. Tons of submissions pending, I don't understand it. However virustotal and the android static analysis results are not all green. https://www.hybrid-analysis.com/sample/69b61e0b4b800586e84bc373eb3b181f092ae694d0c3dcdf39b88c422fcffc7d Any thoughts?
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.