[Day 7] CyberChef

December 7, 2022

Today, I was able to take an in-depth lesson for CyberChef. I have used this web application before but not at this level where TryHackMe allows us to dissect layers and layers of obfuscated information. Not only is this application able to decode information, but it can also encode the information to create payloads for attackers.

Flags

What is the version of CyberChef found in the attached VM?

9.49.0

How many recipes were used to extract URLs from the malicious doc?

We found a URL that was downloading a suspicious file; what is the name of that malware?

mysterygift.exe

What is the last defanged URL of the bandityeti domain found in the last step?

hxxps[://]cdn[.]bandityeti[.]THM/files/index/

What is the ticket found in one of the domains? (Format: Domain/<GOLDEN_FLAG>)

THM_MYSTERY_FLAG

Previous[Day 6] Email Analysis Next[Day 8] Smart Contracts

Last updated 2 years ago