Scenario: You are tasked with conducting an analysis of a sample that is found in one of your endpoints.
Tool: IDA PRO
Question 1: What types of artifact(s) can be used as host-based IOC?
Question 2: How does the sample persist in the system?
Question 3: What process does the sample possibly look for?
Question 4: Does the sample load have additional functions?
#note: Use separate isolated machine to perform this task.
⚠️ YOU ARE TRYING TO DOWNLOAD A FILE THAT CONTAINS MALICIOUS EXECUTABLE ⚠️
eyehatemalwares is “PAY WHAT YOU CAN” project.
The zip file associated with this lab is password protected.
For hands-on experience, click the “Donate” button and you will be redirected to eyehatemalwares Paypal donation homepage or scan the QR Code below.
Click the “Download” button again to download the lab zip file.
After successful donation, email us the zip file name and the Paypal transaction details for the password.
Thank you for helping us build this community!
We will make sure that your donation will be use to bring more value to the community.
Contact us: About
– EHM Team