SOC Analyst – Phishing Email Investigation

Attachment Review Without Detonation

Inspect a suspicious attachment and determine whether it is likely malicious.

intermediate30 min40 pts

Review the scenario

Read the scenario summary and note the primary investigation goal.

Inspect the provided artifact or environment

Use the artifact downloads or the live container session to gather evidence.

Answer the guided questions

Submit answers and the final flag before time expires.