The Ransomware that helped its victim restore her files | TryHackMe Retracted

preview_player
Показать описание
The video is a walkthrough of the Retracted room from TryHackMe, which focuses on a ransomware case study. The ransomware addressed in this challenge quickly allowed the victim to restore access to her files. It was an interesting case study laid down by TryHackMe Retracted room. Additionally, the video demonstrates how to use Windows Event Viewer to analyze logs, track events, and piece together a timeline in a ransomware attack scenario. The focus is on using event IDs to trace actions such as process creation, network activity, and remote logins. By organizing events in a chronological order, the investigator is able to understand how the attack unfolded.
****
Receive Cyber Security Field, Certifications Notes and Special Training Videos
******
Writeup
****
Patreon
Instagram
Google Profile
LinkedIn
Instagram
Twitter
Facebook
***
0:00 - Introduction to TryHackMe Ransomware Case Study
0:04 - Overview of the Challenge
0:29 - Finding the Program Used to Create the Ransomware Note
1:16 - Determining the Time of Execution for the Ransomware Note
1:49 - Identifying the Installer File
2:11 - Locating the Download Location of the Installer
2:20 - Finding the File Extension Used by the Ransomware
2:43 - Discovering the IP Address the Installer Reached Out To
3:07 - Finding the Source IP of the RDP Attack
3:33 - Identifying the Decryption File and Time of Execution
4:00 - Sorting Events in Chronological Order
4:47 - Conclusion and Building a Timeline for the Attack
  1. Motasem Hamdan | Cyber Security & Tech
  2. cybersecurity
  3. information technology
  4. tech
  5. education
  6. books
Рекомендации по теме
The Ransomware that 0:05:03

The Ransomware that helped its victim restore her files | TryHackMe Retracted

The Hunt For 0:24:02

The Hunt For The Ransomware King of The Dark Web

The Truth about 1:26:09

The Truth about Ransomware: Its not Complicated!

Breaking the Ransomware 0:27:22

Breaking the Ransomware Tool Set: When a Threat Actor Opsec

'We Wait, Because 0:23:10

'We Wait, Because We Know You' - Inside the Ransomware Negotiation Economics

WannaCry: The Ransomware 0:01:01

WannaCry: The Ransomware That Crippled the World!

How Ransomware Gangs 0:09:28

How Ransomware Gangs Steal Money And Get Away With It

How the Ransomware 0:04:00

How the Ransomware as a Service Economy Works: Non-Technical

They Say This 0:51:48

They Say This Malware is INSANE

How one ransomware 0:04:57

How one ransomware attack cost £45m to fix - BBC News

Living with Ransomware 0:31:42

Living with Ransomware - The New Normal in Cyber Security

The Top 5 0:42:19

The Top 5 Misconceptions About Ransomware

Ransomware Investigation with 0:36:38

Ransomware Investigation with Splunk | TryHackMe PS Eclipse

Wagner Created Its 0:01:42

Wagner Created Its Own Ransomware *for recruitment | cybernews.com

The Ransomware Crisis 0:00:59

The Ransomware Crisis Hitting Healthcare

The ransomware gang 0:10:49

The ransomware gang that's a global threat | About That

Behind the booming 0:16:10

Behind the booming ransomware industry: How hackers hold businesses hostage | Business Beyond

What is Ransomware? 0:04:12

What is Ransomware?

Detecting & Hunting 1:21:16

Detecting & Hunting Ransomware Operator Tools: It Is Easier Than You Think!

Dealing with a 0:10:01

Dealing with a Ransomware Attack: A full guide

Ransomware In Cybersecurity 0:06:00

Ransomware In Cybersecurity | What Is Ransomware? | Ransomware Attack | Simplilearn

Tracking Ransomware End 0:22:14

Tracking Ransomware End to End

One in Three 0:00:18

One in Three Ransomware Attacks Use Lockbit #shorts

Security Education & 0:04:38

Security Education & Awareness: Preventing Ransomware