Introduction to Malware Analysis - Skills Assessment

i am stuck on the skills assessment. I have all answers so far except the “domain”.

Examine the communication patterns of the malware and provide the domain it interacts with as your answer. Answer format: …_

could anybody give me a hint please? Thx a lot

If you copy the INetSim + Wireshark Setup from the Debugging section this should be relatively straightforward. You will likely see the Windows machine contacting multiple domains, but only one is clearly anomalous.

Alternatively, debug the application to the point where a domain is resolved and check the arguments.

1 Like

use virus total and upload file at tap relations You will see answer xxx.xxxxxx.xx

2 Likes