Digital Forensics:CAPTURE THE FLAG: KIDNAPPER CASE

Digital Forensics:CAPTURE THE FLAG: KIDNAPPER CASE

วันนี้มาแนะนำการแข่งขัน Belkasoft CTF  ซึ่งจัดโดยบริษัท  Belkasoft  เป็นโซลูชันด้านนิติวิทยาศาสตร์และ incident response ที่ใช้งานง่ายและมีประสิทธิภาพซึ่งช่วยลดความซับซ้อนและเร่งขั้นตอนการสืบสวนทางดิจิทัล และมีหัวข้อสืบสวนด้าน  cryptocurrency  โดยกิจกรรมจะเปิดและปิดเป็นช่วง   March 2022  #BelkaCTF 

THE IMAGE

You can download the CTF image (6.39 GB) using one of these links:

Google Drive: Click here to download from Google Drive

Mega: Click here to download from Mega

Yandex: Click here to download from Yandex

Mirror: Click here to download from Mirror

Archive password: MJSWY23BONXWM5DDORTEAMRQGIZA====

Passware Kit Forensic

Passware was very kind to provide a license for all attendees: 

• CHALLENGES
• 
  

1. List all users of the laptop.

Flag;

2.What web application was used by the boy to earn his pocket money?

—What the hell is with these young people... chickens do not peck at their dad's money, but e is still doing it! 

I raised my eyebrows in surprise. 

—Chief, have you never been a teenager before? 

—Okay, you're right, —Chief grimaced. He obviously did not like to remember his youth. 

I pushed away the spontaneous smirk from my face, and the Chief continued: 

—So, was he doing that from his secondary account?

Flag:

3.Which BTC wallet did the boy use to sell drugs?

—So, the boy uses one account for studying, and the other for selling drugs? 

—Yes, Sir.

—Any evidence?

—Of course, Chief. Look, here is his bitcoin wallet…

Flag:

4. On which date does the kid’s database show the most sales for “Acapulco Gold”?

Flag:

5. What was the other BTC wallet of the victim, which he used to hide his “under the counter” sales from his superior?

— They called me again. Twice, — It looked like the Chief was angry at me because of that.

— Are you saying I work too slow? Or should I take these calls on your behalf?

The Chief missed my words, he seemed to be looking for his cigarettes.

— Look, Chief, I found something interesting. The boy was selling their goods under the counter.

The Chief stopped the search.

— You said what? And did his supervisor…

The Chief did not complete the sentence. We looked at each other knowingly.

This is where malice rises in the case, our victim decided to start selling the common “goods” between him and Tux, his friend, under the counter to profit from it.

Flag:

CAPTURE THE FLAG: KIDNAPPER CASE  a certificate of participation.

Refer:  belkasoft 

             CTF

             The official write-up on #BelkaCTF #4 is ready! Please read how the tasks were supposed to be solved at https://bit.ly/3tYp2DQ

หมายเหตุ:เนื้อหาในเว็บไซต์นี้มีขึ้นเพื่อวัตถุประสงค์ในการให้ข้อมูลและเพื่อการศึกษาเท่านั้น

* หากมีข้อมูลข้อผิดพลาดประการใด ขออภัยมา ณ ที่นี้ด้วย  รบกวนแจ้ง Admin เพื่อแก้ไขต่อไป
ขอบคุณครับ

#WindowsForensic #ComputerForensics #dfir #forensics #digitalforensics #computerforensic #investigation #cybercrime #fraud #CTF #DFIR