An attacker compromised a server and impersonated https://pancakeswap.finance/, a decentralized exchange native to BNB Chain, to host a phishing kit at https://apankewk.soup.xyz/mainpage.php. The attacker set it as an open directory with the file name "pankewk.zip".
Provided the phishing kit, you are requested to analyze it and do your threat intel homework.
Which wallet is used for asking the seed phrase?
What is the file name that has the code for the phishing kit?
In which language was the kit written?
What service does the kit use to retrieve the victim's machine information?
How many seed phrases were already collected?
Write down the seed phrase of the most recent phishing incident?
Which medium had been used for credential dumping?