Today we tackle the BlackEnergy exercise on the CyberDefenders platform, as we complete the 8 questions using the supplied memory files and Volatility.
[ Ссылка ]
Scenario:
A multinational corporation has been hit by a cyber attack that has led to the theft of sensitive data. The attack was carried out using a variant of the BlackEnergy v2 malware that has never been seen before. The company's security team has acquired a memory dump of the infected machine, and they want you to analyze the dump to understand the attack scope and impact.
NOTES:
[ Ссылка ]
![](https://i.ytimg.com/vi/vkBIMSp52eU/mqdefault.jpg)