Thu Sep 29, 2022, 07:33 AM

This website makes me download an empty HTML file

Happened once before but never caught the filename before deleting. This time it was "f2s7FNx4". Any explanation?

9 replies, 1115 views

Thread info Bookmark this thread Trash this thread

Always highlight: 10 newest replies | Replies posted after I mark a forum

Replies to this discussion thread

9 replies	Author	Time	Post
This website makes me download an empty HTML file (Original post)	Jenny von Westphalen	Sep 2022	OP
what do you mean 'download?' A website doesn't make you download anything unless you initiate it	CurtEastPoint	Sep 2022	#1
This website	Jenny von Westphalen	Sep 2022	#2
HTML smuggling surges: Highly evasive loader technique increasingly used in banking malware, targete	Goonch	Sep 2022	#3
TY!	quaint	Sep 2022	#4
no title	Jenny von Westphalen	Oct 2022	#6
Happened again	Jenny von Westphalen	Oct 2022	#5
This message was self-deleted by its author	Goonch	Oct 2022	#7
What Is about:blank and How Do You Remove It	Goonch	Oct 2022	#8
You misunderstand	Jenny von Westphalen	Oct 2022	#9

Response to Jenny von Westphalen (Original post)

Thu Sep 29, 2022, 07:41 AM

CurtEastPoint (17,766 posts)

1. what do you mean 'download?' A website doesn't make you download anything unless you initiate it

What site?

Reply to this post

Response to CurtEastPoint (Reply #1)

Thu Sep 29, 2022, 07:54 AM

Jenny von Westphalen (89 posts)

2. This website

I didn't initiate it, it just happened, I think when I clicked to navigate to another page

Reply to this post

Response to Jenny von Westphalen (Original post)

Thu Sep 29, 2022, 08:44 AM

Goonch (3,050 posts)

3. HTML smuggling surges: Highly evasive loader technique increasingly used in banking malware, targete

HTML smuggling surges: Highly evasive loader technique increasingly used in banking malware, targeted attacks

https://www.microsoft.com/security/blog/2021/11/11/html-smuggling-surges-highly-evasive-loader-technique-increasingly-used-in-banking-malware-targeted-attacks/

Reply to this post

Response to Goonch (Reply #3)

Thu Sep 29, 2022, 09:42 AM

quaint (1,724 posts)

4. TY!

I'm paranoid careful, but geez that's nasty.

Reply to this post

Response to Goonch (Reply #3)

Wed Oct 5, 2022, 09:44 AM

Jenny von Westphalen (89 posts)

6. no title

This describes an attack where you have to open the HTML file which has code in it, and also it's a phishing attack via email

In this case, the HTML file is empty so I wouldn't be able to open it, and I got it from clicking a link on an otherwise normal website

Reply to this post

Response to Jenny von Westphalen (Original post)

Wed Oct 5, 2022, 09:41 AM

Jenny von Westphalen (89 posts)

5. Happened again

The link that I apparently downloaded it from is some sort of javascript, since it's listed as "about:blank"

The name is "ok-Hg5j4.html"

Reply to this post

Response to Jenny von Westphalen (Reply #5)

Goonch This message was self-deleted by its author.

Response to Jenny von Westphalen (Reply #5)

Wed Oct 5, 2022, 12:36 PM

Goonch (3,050 posts)

8. What Is about:blank and How Do You Remove It

The about:blank page in a browser isn’t an actual page. Unlike other built-in pages like about:settings or about:about, it’s nothing more than a blank screen in your browser.

https://www.online-tech-tips.com/computer-tips/what-is-aboutblank-and-how-do-you-remove-it/

Reply to this post

Response to Goonch (Reply #8)

Thu Oct 6, 2022, 11:09 AM

Jenny von Westphalen (89 posts)

9. You misunderstand

If a file downloaded through a browser lists its source as "about:blank", that usually means it's JavaScript code of some sort. Either the site admins put that script in place somehow, or a cross-site scripting attack is going on, or maybe it's nothing at all but it doesn't hurt to point it out least

Reply to this post

Community Help (Forum)