I have a virus that need to be analyzed, which an ec-council homework (Cyber Journeyman I (Windows Threat Hunting)):
The questions are:
Question 1
What PE packer was used to pack the downloader (C:UsersLabUserDownloadss2023.exe)? (Answer format: xxx)
Question 1
For the malicious file to trigger a download, a file with a specific MD5 hash must exist on the system. What is the MD5 hash value? (Answer format: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx)
Question 2
What is the MD5 hash of the downloaded executable? (Answer format: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx)
Question 3
s2023.exe downloads a file when executed. What is the URL to this file? (Answer format: xxxx://xx.xx.x.x:xxxx/xxxxx.xxx)
Question 4
The downloaded executable file calls RegCreateKeyEx when executed. What is the string passed as the second parameter of the API when it is called? (Answer format: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx)
Can you help me in that, if so, I will upload the exe file
Place this order or similar order and get an amazing discount. USE Discount code “GET20” for 20% discount