Forum Discussion

Bronze I

23 days ago

Incident Response Suspicious Email Part 2 last Question

Hello I am getting slowly crazy here. The last question of Suspicious Email Part 2 asks to find the FQDN of the threat actor within the output that in the previous questions we had to deobfuscate af...

help & support

questions & feedback

autom8on

Silver I

23 days ago

Something must be going wrong with your decoding somewhere? Running strings across the executable you created should definitely return someword.something-something.something, that they're looking for...

Though, I'm curious how you managed to get the right MD5 for the previous question, if this one isn't working... 🤔

Forum Discussion

Incident Response Suspicious Email Part 2 last Question

Featured Places

Help & Support Forum

Related Content

Incident Response and Forensics for EC2: Preparation

Incident Response: Suspicious Email – Part 3

Incident Response: Suspicious Email – Part 2

Incident Response: Suspicious Email – Part 2 -Help Needed.

Incident Response: P2 - stuck on Q11

Recent Discussions

Elastic Data Ingest: Ep.2 – Filebeat

Web server brute force authentication: Ep. 1 - Compromising an account

Google Cloud Basics: Ep.7 – Demonstrate Your Skills - Task 10

Credential Access: Using Hydra

Active Directory Basics: Demonstrate Your Skills