Logo

TNI Cybersec

CTF writeups collection by TNI-Cybersec

Made with ❤️ by TNI Cybersec — Theme by BDHU modified by TNI Cybersec

PowerBad

Type Difficulty Score
File Medium 30

Instruction

SantaBoyz, a member of the Junkyard Boyz, discovered strange communications like a reverse shell. As an investigator, you must help him in identifying IP address and port of C2 server.

Format: forensic{1.1.1.1,7777}

Password for unzip: secplayground

Information

Download the file below and complete per instruction.

Online

Hint

show 1. PowerShell Log 2. Dynamic Analysis/ Shellcode Analysis