I have a virus that need to be analyzed, which an ec-council homework (Cyber Journeyman I (Windows Threat Hunting)):
The questions are:
Question 1
What PE packer was used to pack the downloader (C:UsersLabUserDownloadss2023.exe)? (Answer format: xxx)
Question 1
For the malicious file to trigger a download, a file with a specific MD5 hash must exist on the system. What is the MD5 hash value? (Answer format: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx)
Question 2
What is the MD5 hash of the downloaded executable? (Answer format: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx)
Question 3
s2023.exe downloads a file when executed. What is the URL to this file? (Answer format: xxxx://xx.xx.x.x:xxxx/xxxxx.xxx)
Question 4
The downloaded executable file calls RegCreateKeyEx when executed. What is the string passed as the second parameter of the API when it is called? (Answer format: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx)
Can you help me in that, if so, I will upload the exe file
Important - Read this before proceeding
These instructions reflect a task our writers previously completed for another student. Should you require assistance with the same assignment, please submit your homework details to our writers’ platform. This will ensure you receive an original paper, you can submit as your own. For further guidance, visit our ‘How It Works’ page.