Forum Discussion

Bronze II

10 months ago

Solved

Reverse Engineering

RE: Immersive Care: Ep.5 – Reverse Engineering Feel like I'm missing something obvious here. I have decompiled the ransomware and can see the xorIT command, but not sure how to find the secret ke...

defensive cyber

LN1
10 months ago
Read the python-exe-extractor tool output carefully as it will give you a hint on further steps you need to undertake to decompile

KieranRowley

Community Manager

10 months ago

Hi LN1

Welcome to The Human Connection!

Please can you provide some more details of the steps you have already taken so that your fellow community members are able to assist you

LN1

Bronze II

10 months ago

decompiled the ransomware and found the commands used to generate the ransom note and to encrypt .txt files. Tried looking into initialisation of variables but couldn't find anything. Noticed a secret_key string within the decompiled file, but unsure where this is located.

Forum Discussion

Reverse Engineering

Featured Places

Help & Support Forum

Related Content

Reverse Engineering (Offensive) JavaScript Analysis: JSDetox

Radare2 Reverse Engineering: Ep.1 – Windows Binary Part 1

Reverse Engineering SmokeLoader: An In-Depth Analysis (Stage 1)

Radare2 Reverse Engineering: Ep.2 – Windows Binary Part 2

Which labs should I start with if I want to learn about Reverse Engineering?

Recent Discussions

Help with Introduction to Python Scripting: Ep.7 – Demonstrate Your Skills

Privilege Escalation: Windows – Finding Passwords

Microsoft Defender for Cloud: Inventory, Resource Health and Recommendations.

Malware Analysis: Shlayer

CSP Hash Incorrect Despite Correct Script and Hash (CSP Lab Issue?)