Day 7
What is the version of CyberChef found in the attached VM?
How many recipes were used to extract URLs from the malicious doc?
strings
Find / Replace
Drop bytes
From base64
Decode text
Find/Replace (to remove patterns)
Find/Replace
Extract URLs
Split
Defang URL
We found a URL that was downloading a suspicious file; what is the name of that malware?

Last step will solve the next 3 questions
What is the last defanged URL of the bandityeti domain found in the last step?
What is the ticket found in one of the domains? (Format: Domain/<GOLDEN_FLAG>)
Last updated