Cybati Blackbox Challenge Solution
Tags
Common Information
| Type | Value |
|---|---|
| UUID | e52bf0ae-39a1-4af4-aa0e-10b0e7e7b111 |
| Fingerprint | 37a71953ad2312f2 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Aug. 5, 2016, 1:15 p.m. |
| Added to db | Jan. 18, 2023, 8:04 p.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | Adventures In Cyber Challenges |
| Title | Cybati Blackbox Challenge Solution |
| Detected Hints/Tags/Attributes | 0/0/62 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 7 | cve-2013-2729 |
|
| Details | Domain | 1 | www.ostrosoft.com |
|
| Details | Domain | 89 | vol.py |
|
| Details | Domain | 1 | evtxdump.pl |
|
| Details | Domain | 4 | blogs.sans.org |
|
| Details | Domain | 97 | virustotal.com |
|
| Details | Domain | 8 | totalhash.cymru.com |
|
| Details | Domain | 1 | controlflash.exe-84d11900.pf |
|
| Details | Domain | 1 | payload.exe-58a6a924.pf |
|
| Details | Domain | 1 | be.run.in |
|
| Details | Domain | 372 | wscript.shell |
|
| Details | Domain | 1 | ht.open |
|
| Details | Domain | 13 | oshell.run |
|
| Details | Domain | 1 | updates.installshield.com |
|
| Details | 1 | cybati@updates.installshield.com |
||
| Details | File | 1 | password.rss |
|
| Details | File | 1 | pedata.pl |
|
| Details | File | 1 | engineering_invoice.docx |
|
| Details | File | 1 | oswinsck.exe |
|
| Details | File | 1 | oswinsck.dll |
|
| Details | File | 1 | oswinsck.aspx |
|
| Details | File | 208 | setup.exe |
|
| Details | File | 4 | setup1.exe |
|
| Details | File | 1 | s7_password_hashes_extractor.py |
|
| Details | File | 58 | document.xml |
|
| Details | File | 380 | notepad.exe |
|
| Details | File | 85 | vol.py |
|
| Details | File | 1 | evtxdump.pl |
|
| Details | File | 1122 | svchost.exe |
|
| Details | File | 13 | iastoricon.exe |
|
| Details | File | 1 | rs500.exe |
|
| Details | File | 16 | runtime.exe |
|
| Details | File | 1 | controlflash.exe |
|
| Details | File | 1 | sans-holiday-challenge-2013-report.pdf |
|
| Details | File | 478 | lsass.exe |
|
| Details | File | 14 | postgres.exe |
|
| Details | File | 1 | c:\users\cybati\ntuser.dat |
|
| Details | File | 2 | aksfridge.sys |
|
| Details | File | 55 | payload.exe |
|
| Details | File | 2 | dump_dumpfve.sys |
|
| Details | File | 1 | dump_lsi_scsi.sys |
|
| Details | File | 1 | dump_storport.sys |
|
| Details | File | 2 | crashdmp.sys |
|
| Details | File | 1 | rimspe86.sys |
|
| Details | File | 1 | risdpe86.sys |
|
| Details | File | 2 | spsys.sys |
|
| Details | File | 263 | iexplore.exe |
|
| Details | File | 291 | user32.dll |
|
| Details | File | 11 | comdlg32.dll |
|
| Details | File | 30 | comctl32.dll |
|
| Details | File | 47 | oleaut32.dll |
|
| Details | File | 86 | ole32.dll |
|
| Details | File | 748 | kernel32.dll |
|
| Details | File | 137 | conhost.exe |
|
| Details | File | 2125 | cmd.exe |
|
| Details | File | 1 | %temp%\capslock.vbs |
|
| Details | File | 1 | %temp%\wl.ps1 |
|
| Details | File | 1 | %tel.ps1 |
|
| Details | File | 1 | streamwritewl.ps1 |
|
| Details | File | 1 | streamwriterl.ps1 |
|
| Details | File | 41 | msxml2.xml |
|
| Details | File | 1 | %temp%\wl.vbs |