Cybersecurity Fundamentals - Prove

Career Paths IT and Cybersecurity Foundations
1

I tried everything and still not getting right. Any help would be appreciated-

image
image975×637 81.4 KB

After running the .sh file, it says that the First rule is right. Is there something wrong in 2nd rule?

image
image975×748 57.2 KB

This is what Windows Defender shows after I extract Sample2 file and place the malware in Windows Folder. The placeholder given under the question was different from what is shown above in the image.

Thanks in advance

1 Like
2

On the second rule, try “<>” instead of “->”. For the defender question, I think Microsoft has changed how they classify Sample2. Try Win32/Andromeda!ic

1 Like
3

Thanks a lot. This worked :smile:

4

yes new version is Ransom:Win32/StopCrypt.CRIS!MTB