tkh4ck.github.io

Personal website and blog of tkh4ck

View on GitHub

HTB Business CTF 2022 - Mr. Abilgate

Challenge

Mr. Abilgate, the CFO of a Fortune 500 company, has reportedly been the victim of a recent spree of ransomware attacks. The behavior of the malware seems consistent with our current APT target’s tactics, but the ransom note makes us think it’s a targeted attack. We suspect bad faith from corporate espionage gone wrong. Could you investigate?

Metadata

Solution

Dynamic analysis

Getting the flag

CyberChef

Flag: HTB{b1g_br41ns_b1gg3r_p0ck3ts_sm4ll3r_p4y0uts}

Review

Files