ctf-writeup/2023/NahamCon CTF 2023/IR #2/README.md

# IR #2
> Can you figure out how the malware got onto the system?

## About the Challenge
We have to find out how the malware can be downloaded

## How to Solve?
As you can see on the VM, the malware was located in `Downloads` folder

![downloads](images/downloads.png)

So I tried to check the browser download history and I got nothing, and then I tried to open the mail server on the VM, and I got 4 weird emails. 2 of them contain the flag

![flag](images/flag.png)

```
flag{75f086f265fff161f81874c6e97dee0c}
```
feat: added NahamCon CTF 2023 2023-06-17 19:01:37 +00:00			`# IR #2`
			`> Can you figure out how the malware got onto the system?`

			`## About the Challenge`
			`We have to find out how the malware can be downloaded`

			`## How to Solve?`
			As you can see on the VM, the malware was located in `Downloads` folder

			`![downloads](images/downloads.png)`

			`So I tried to check the browser download history and I got nothing, and then I tried to open the mail server on the VM, and I got 4 weird emails. 2 of them contain the flag`

			`![flag](images/flag.png)`

			```
feat: added pingCTF 2023-12-10 22:15:40 +00:00			`flag{75f086f265fff161f81874c6e97dee0c}`
feat: added NahamCon CTF 2023 2023-06-17 19:01:37 +00:00			```