Writeup: MAL: Strings
For this box I used Remmina whilst on Kali.
Link: MAL: Strings Room on TryHackMe
What is the name of the account that had the passcode of "12345678" in the intellian example discussed above?
See NVD
Answer: intellian
What is the CVE entry disclosed by the company "Teradata" in their "Viewpoint" Application that has a password within a string?
From NVD
Answer: CVE-2019-6499
According to OWASP's list of "Top Ten IoT" vulnerabilities, name the ranking this vulnerability would fall within, represented as text.
From OWASP
Answer: one
What is the correct username required by the "LoginForm"?
Answer: cmnatic
What is the required password to authenticate with?
Answer: TryHackMeMerchWhen
What is the "hidden" THM{} flag?
Answer: THM{Not_So_Hidden_Flag
What is the key term to describe a server that Botnets receive instructions from?
Answer: Command and Control
Name the discussed example malware that uses "strings" to store the bitcoin wallet addresses for payment
Answer: WannaCry
List the number of total transactions that the Bitcoin wallet used by the "Wannacry" author(s)
Answer: 143
What is the Bitcoin Address stored within "ComplexCalculator.exe"
Answer: 1LVB65imeojrgC3JPZGBwWhK1BdVZ2vYNC
What is the name of the toolset provided by Microsoft that allows you to extract the "strings" of an application?
Answer: Sysinternals
What operator would you use to "pipe" or store the output of the strings command?
Answer: >
What is the name of the currency that ransomware often uses for payment?
Answers: bitcoin