By Nevens

We have extracted a pcap file from a network where attackers were present. We know they were using some kind of file transfer protocol on TCP port 7179. We're not sure what file or files were transferred and we need you to investigate. We do not believe any strong cryptography was employed.

Topics Covered

Additional Information

The file you are looking for is a png, the key is not in the bytes, its in the png itself.