No files associated with Phishing initiated shell

[dvanbrug]

I have noticed that red shell sessions that are created as a result of phishing e-mails do not appear to have any files associated with them. This means they are undetectable by the Analyse action. Additionally, this means new red shells are not detectable by the Analyse action until they have run PrivilegeEscalate which then drops the associated file.

Here is how the session is set up as a result of phishing:

https://github.com/cage-challenge/cage-challenge-4/blob/a001e7b20585b56891c322185bc685fca4fb63ed/CybORG/Simulator/Actions/ConcreteActions/PhishingEmail.py#L95-L112

And here is how it is set up as a result of the ExploitAction:

https://github.com/cage-challenge/cage-challenge-4/blob/a001e7b20585b56891c322185bc685fca4fb63ed/CybORG/Simulator/Actions/ConcreteActions/ExploitActions/ExploitAction.py#L230-L260

Is this the intended behavior? If so, it would be helpful to highlight this difference in the documentation, maybe under the Analyse action information?

I understand this likely won't be addressed until after the competition ends, but wanted to check for addressing afterwards.

Thank you!