Challenge 10 of the 2018 Flare-On competition involved an image file and a deeply obfuscated sequence. Below is the general methodology for tackling such a challenge:
Extracting a hidden payload from the metadata of an image or within the RAR's comment field. IAN18.rar
: PEStudio to find suspicious strings or imports. Challenge 10 of the 2018 Flare-On competition involved
For a detailed step-by-step walkthrough, you can find full community solutions on platforms like Medium or specialized security blogs. For a detailed step-by-step walkthrough, you can find
: Challenges of this level typically include a binary (like an .exe or .dll ) inside the archive. You would use a disassembler like IDA Pro or Ghidra to reverse the code.
: Perform a file command or use tools like Binwalk to inspect the .rar structure. Often, these archives are password-protected, requiring you to find a "breadcrumb" in earlier stages of the competition or via string analysis.