Forum Discussion

Bronze II

9 months ago

Solved

Practical Malware Analysis: Static Analysis question 18

for finding the exact name of the executable file. After dynamically overriding the function as shown in the briefing I cant seem to find any meaningful creation of the filename matching the p...

defensive cyber

help & support

immersive labs

CyberSharpe
9 months ago
You're seeing Microsoft Security Centre in your string. You want a file name that is trying to mimic Security Centre... famously in WannaCry.

Its also right in your C code you posted. Use the first 4 letters of that in strings and I bet you have the file name.

netcat

Advocate

9 months ago

The question is "What is the exact name of the executable file this malware adopts", and I can't see how this could be related to sprintf. The solution is right under your nose.

Forum Discussion

Practical Malware Analysis: Static Analysis question 18

Featured Places

Help

Related Content

Practical Malware Analysis: Static Analysis

Practical Malware Analysis: Demonstrate Your Skills Malware (Offensive)

Practical Malware Analysis: Static Analysis question 19

Practical Malware Analysis: .NET Encryption and Encoding

Malicious Document Analysis: Dropper Analysis

Recent Discussions

Network Hardening Lab Recommendations

Elastic Data Ingest: Demonstrate Your Skills Q9

Infrastructure Hacking: Demonstrate Your Skills – Attacking Web Servers

insufficient permissions for the lab "IAM and EC2: Instance Profiles"

python-scripting-for-malware-analysis-ep-5-code-obfuscation