Answered step by step
Verified Expert Solution
Question
1 Approved Answer
someone please help me solve this problem please, thank you This practical will focus on chapter 8 (malware analysis), you will need copy of the
someone please help me solve this problem please, thank you
This practical will focus on chapter 8 (malware analysis), you will need copy of the malware we used in class (Webcam Shot.scr: posted on canvas). The goal of this practical is to understand how the malware execute the hacker commands which is delivered through IRC server As mentioned in class hackarmy malware support several commands such as delete, execute, disconnect, dontuseme and more (complete list in the table below) Command ?dontuseme sock4 threads info !?quit ?disconnect lexecute delete self destruct starts SOCK4 server on specified port list of threads list OS, network information stops backdoor disconnect from IRC server execute local binary deletes a specific file download file from remote server not working not working webfind64 !killprocess listprocesses In this practical our focus is going to be on two commands dontuseme and webfind64. Based on the description in the book, dontuseme will destroy the malware and webfind64 is used to download a file from the internet (or remote server) into the infected machine This practical will focus on chapter 8 (malware analysis), you will need copy of the malware we used in class (Webcam Shot.scr: posted on canvas). The goal of this practical is to understand how the malware execute the hacker commands which is delivered through IRC server As mentioned in class hackarmy malware support several commands such as delete, execute, disconnect, dontuseme and more (complete list in the table below) Command ?dontuseme sock4 threads info !?quit ?disconnect lexecute delete self destruct starts SOCK4 server on specified port list of threads list OS, network information stops backdoor disconnect from IRC server execute local binary deletes a specific file download file from remote server not working not working webfind64 !killprocess listprocesses In this practical our focus is going to be on two commands dontuseme and webfind64. Based on the description in the book, dontuseme will destroy the malware and webfind64 is used to download a file from the internet (or remote server) into the infected machineStep by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started