Let's Defend - Windows Memory Dump

Description Our friend fell victim to a suspicious crack tool. but it seems it didn't goes in the right path so investigate it to find any evidence. Tools Tools Required 1- Volatility 2- Notepad++ 3- VirusTotal or VM. 4- Linux Command Line Writeup Q1 How many users are on the machine? In this question we can use filescan then grep the Users and sort them and find the uniq...

January 3, 2024 · 3 min · MMOX

Let's Defend - Cl0p

Description Our friend fell victim to a ransomware attack and reached out to seek your expertise in analyzing the system to uncover the cause of the breach. We have provided you with a memory dump of his computer as the starting point for your investigation. Tools Tools Required 1- Volatility 2- Notepad++ 3- VirusTotal or VM. Writeup Q1 What is the dump profile? Well by checking the file we got it’s a memory dump so we are going to use volatility in this case for our investigations....

July 25, 2023 · 3 min · MMOX