You're given a memory image and a disk image - help us find the flag!
Tools used: Volatility 3, FTK Imager, Registry Explorer (EZTOOLS), Windows event logs.
Online Report for Autoconnecor.exe:
📜 https://tria.ge/240531-nc8shsfe7s/behavioral1
📜 https://www.virustotal.com/gui/file/2aada68677409c73bf1eeb11540be3238a6aaf3e1d5dad13a0d7c3811dcdb809/detection
📜 https://www.hybrid-analysis.com/sample/2aada68677409c73bf1eeb11540be3238a6aaf3e1d5dad13a0d7c3811dcdb809?environmentId=160
📮 Room Link: https://tryhackme.com/r/room/deadend
these tutorials are for educational purposes and to encourage responsible and legal use of hacking knowledge.
#trending
