Warning! We are currently in recovery mode. The complete archive is not available.

Sample details: ff5d7671cbfc133ac3a2c004673b3318 --

Hashes
MD5: ff5d7671cbfc133ac3a2c004673b3318
SHA1: 3e637cd06c677b7ac21ec3d7df357363f36cdbba
SHA256: 43dc1c856f018a409ca6e9cbacaaa90fc518c400cc5b249436c67c209cd6e89f
SSDEEP: 48:2hCN9a20szTv0VIh5Fk20VzABM0UedkTu//ZQNwUnoUiEvbE:Qc8+i1SUedkq//iKuoUnvbE
Details
File Type: HTML
Yara Hits
Source
https://protect2.fireeye.com/url?k=bbabe5bcd080576c.bbab31d4-65b5c3a21ea78c57&u=http://manatour.cl/560WIJINFO/SUJP795536HZKDFK/Aug-13-2018-53127340793/AKV-WIIWL
Strings
		<html>
	<head>
		<meta charset="utf-8">
		<title>Fireeye EX Advanced URL Defense Engine</title>
		<link type="text/css" rel="stylesheet" href="static/css/faude.css" />
	</head>
	<body>
		<div class="header">
			<div class="header-bd">
				<div class="ph"><br></div>
				<img class="logo" src="static/img/fireeye.png" alt="FireEye, Inc.">
			</div>
		</div>
		<div class="nav">
		</div>
		<div class="container">
			<div class="intro-mal">
				This site contains malicious content. Access to this site has been blocked for your safety.
			</div>
			<div class="content">
				<div class="content-bd">
					<p>
						You have been redirected to this page because your organization has deployed FireEye Advanced Targeted Protection to protect you against targeted phishing attacks. 
					</p>
					<p class="url-text-mal">
						<b>http://manatour.cl/560WIJINFO/SUJP795536HZKDFK/Aug-13-2018-53127340793/AKV-WIIWL</b>
					</p>
					<p>
						For more information about your organization's security practices, or if a legitimate site was blocked incorrectly,  please contact your organization's help desk.
					</p>
				</div>
			</div>
		<div class="footer">
			<div class="footer-bd">
				Copyright &copy; 2017 FireEye, Inc. All rights reserved.
			</div>
		</div>
	<script type="text/javascript">
//<![CDATA[
(function() {
var _analytics_scr = document.createElement('script');
_analytics_scr.type = 'text/javascript'; _analytics_scr.async = true; _analytics_scr.src = '/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=2034725423';
var _analytics_elem = document.getElementsByTagName('script')[0]; _analytics_elem.parentNode.insertBefore(_analytics_scr, _analytics_elem);
// ]]>
</script></body>
</html>