Results 1 to 3 of 3

Thread: Honeynet Forensic Challenge 8 - "Malware Reverse Engineering"

  1. #1

    Honeynet Forensic Challenge 8 - "Malware Reverse Engineering"

    If you haven't seen it already, you might want to check out The Honeynet Project's Challenge 8 on Reverse Engineering Malware. I'd be interested in seeing how you guys solve this.

    https://honeynet.org/node/668

  2. #2

    Lightbulb

    Hello,

    Sure it's going to be interesting, but noone shall spoil before the end of the official deadline (June 15th 2011).

    Thanks =)
    Please consider donating to help Woodmann.com staying online (here is why).
    Any amount greatly appreciated. Thank you.

  3. #3
    4. Describe the API hooking mechanism used by the sample (3 points)
    5. What is the purpose of the HttpSendRequest hook? Detail how it works (6 points)
    6. What is the purpose of the NtQueryDirectoryFile hook? Detail how it works (3 points)
    7. What is the purpose of the NtVdmControl hook? Detail how it works (4 points)
    8. What is the purpose of the InternetReadFile hook? Detail how it works (4 points)
    9. What is the purpose of the InternetWriteFile hook? Detail how it works (4 points)
    You do not have to look, obviously this is a primitive patch code

Similar Threads

  1. Malware for analysis - "Michael Jackson Gay" virus (Yahoo messenger spammer)
    By Th3_uN1Qu3 in forum Malware Analysis and Unpacking Forum
    Replies: 3
    Last Post: September 16th, 2009, 21:57
  2. F-Secure Reverse Engineering Challenge (September 7th)
    By Kayaker in forum Mini Project Area
    Replies: 3
    Last Post: September 13th, 2007, 08:32
  3. F-Secure Reverse Engineering Challenge
    By Kayaker in forum Mini Project Area
    Replies: 33
    Last Post: August 17th, 2007, 07:44
  4. Malware Analysis: "Skype" Trojan
    By Kayaker in forum Malware Analysis and Unpacking Forum
    Replies: 6
    Last Post: February 26th, 2007, 15:09
  5. Reverse Engineering Challenge
    By HeX in forum Linux RCE
    Replies: 2
    Last Post: November 2nd, 2006, 16:18

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •