Advent of Cyber 2024 Day 6: If I can’t find a nice malware to use, I’m not going.
Lab link. Questions 1. What is the flag displayed in the popup window after the EDR detects the malware? We open powershell and go to the directory to run the YARA rule in the example. cd C:\Tools .\JingleBells.ps1 We go to the location of the MerryChristmas.exe file, execute it (by clicking on it twice) and …