win-bin-analysis

Apr 10, 2022

fabd3b9 · Apr 10, 2022

Name	Name	Last commit message	Last commit date
parent directory ..
challenge	challenge	Add files via upload	Jan 23, 2022
README.md	README.md	Update README.md	Apr 10, 2022
src.cs	src.cs	Add files via upload	Jan 23, 2022

README.md

win-bin-analysis

Challenge Text

Find the key hidden in the Windows executable files.

Hint

.exe's arent the only type of executable file.
https://www.aesencryptiononline.com/2022/03/aes-encryption-function-ontools.html

Solution

Analyze the .dll (not the .exe) in Ghidra, search for strings, find a bunch of strings that get outputed when the file is executed, get one of the strings, and decrypt using one of the strings as a key and one string saying the encryption algorithm.

password: HKEY_CURRENT_USER
encryption: AES(CBC)
fakeFlag: njsctf{look-harder}
encrypt: flag-U2FsdGVkX1+/+Gg+TT1OswZb7zJBF954sV9CPYr9yjuECuBh60j/qG3Kw4Hk9/l6fu5ibkYarZWNBByLBuGrYQ==

Flag: jctf{00g@_B000G@@_B1LL_G8S_wAs-H3Re}

Credit

Developed by Christian

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Files

win-bin-analysis

win-bin-analysis

README.md

win-bin-analysis

Challenge Text

Hint

Solution

Credit

Files

win-bin-analysis

Directory actions

More options

Directory actions

More options

Latest commit

History

win-bin-analysis

Folders and files

parent directory

README.md

win-bin-analysis

Challenge Text

Hint

Solution

Credit