The Offenders

reverse windows x86/x64 FCSC 2021 solved on

star star star

Description

Our Threat Intel team came across this binary during a VirusTotal RetroHunt looking for the term FCSC. They took a look and realized that the binary expects to be executed by Windows Defender. A quick reverse-by-notepad allowed us to find a place starting with INPUTINPUT..., which seems to be the way to give the program an argument (by patching it).

Files

  • the_offenders.exe
    135.00 KiB – 64ba8a933143e90886204c5c23ea7efaaa4beae506c2441405244336d009a9d4

Author

commial

Flag

Share my success on Fediverse, Twitter, Linkedin, Facebook, or via email.

Submit your solution

You can submit your writeup for this challenge. Read the FAQ to learn how to proceed.

You need to be logged in to submit a writeup.

Writeups

There are no public solutions for this challenge yet, but you can submit yours after getting the flag.