The Transmission: From Creation to Solution Walkthrough

Inspiration

Problem

“Our analysts imaged a hard drive from an employee that was suspected to be an insider threat. However, the person of interest seems to have a great knowledge of anti-forensics techniques and has successfully exfiltrated a certain file. Luckily, our hardworking analysts found a strange .zip file containing a suspicious transmission. Identify what was exfiltrated and save the day!”

SSTVGen.exe
STAN ITZY
amazing how an audio file of bleeps and bloops resulted to this picture. damn.

Solution

“Our analysts imaged a hard drive from an employee that was suspected to be an insider threat. However, the person of interest seems to have a great knowledge of anti-forensics techniques and has successfully exfiltrated a certain file. Luckily, our hardworking analysts found a strange .zip file containing a suspicious transmission. Identify what was exfiltrated and save the day!

Our analysts’ background check on the perpetrator revealed that he was once an amateur radio operator. He was a huge fan of the Apollo mission, especially its TV cameras. Whether this background check is relevant is another case on its own…”

did you really think it would be that easy? of course it’s password protected haha
Waveform View
Spectogram View
the_flag_is(YVdZZ2FYUW5jeUJxZFhOMElIUm9ZWFFnWldGemVTd2dkR2hwY3lCamFHRnNiR1Z1WjJVZ2QyOXVKM1FnWW1VZ2QyOXlkR2dnZVc5MWNpQjBhVzFsTGlCeVpXMXZkbVVnYldVc0lIUm9aVzRnZEhKNUlHaGhjbVJsY2lFZ2VXOTFJR05oYmlCa2J5QnBkQ0U9)
if it's just that easy, this challenge won't be worth your time. remove me, then try harder! you can do it!
SSdtIGEgZmFrZSBmbGFnIHJlbW92ZSBtZQ==
I'm a fake flag remove me
looking clean!
Wkc1TloyUnRZMjVhYVVJellVZGFia2xIWkRGaWJXTm5ZMjAxYldKRGQyZGtiV05uWVcxS2FFb3lZMmRpTTBsbllXMUtiRm96Vldka2JXTjFTVUZ2UzFveVZuTkpTRloxV2xoR2VWcFRSV2REWjNBMlltNUdlVWxIY0RKYU0xVm5aVmRLY0dOcFFuWmlRMEpoV1cxRloyTXlWbWxsYVVKdVpGaEpaMlJYTlhkbFIxcHVXbGhLZVZveU9XbGlSMWxuVDJsclBRPT0=
vs vg'f whfg gung rnfl, vg jba'g or jbegu vg.gel uneqre!znqr jvgu ybir ol Zba sebz gur unpxfgerrgoblf :)
if it's just that easy, it won't be worth it.try harder!made with love by Mon from the hackstreetboys :)

Our analysts’ background check on the perpetrator revealed that he was once an amateur radio operator. He was a huge fan of the Apollo mission, especially its TV cameras. Whether this background check is relevant is another case on its own…”

Conclusion

PS

Hi I’m Mon, and I’m one of the founders of hackstreetboys, a CTF team from the Philippines!

While you’re at it, please like our Facebook page (hackstreetboys)
Follow our Twitter account (https://twitter.com/_hackstreetboys)
Read our writeups on Medium (https://medium.com/hackstreetboys)
Look at our new GitHub page (https://github.com/hackstreetboysph)

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store