LGDroid Blue Team Challenge

Category : Endpoint Forensics

Mobile

Android

LG

By: DFIRScience

4.2

Medium

What is the email address of Zoe Washburne?

Weight : 50 | Solved : 400

What was the device time in UTC at the time of acquisition? (hh:mm:ss)

Weight : 50 | Solved : 401

What time was Tor Browser downloaded in UTC? (hh:mm:ss)

Weight : 50 | Solved : 372

What time did the phone charge to 100% after the last reset? (hh:mm:ss)

Weight : 100 | Solved : 345

What is the password for the most recently connected WIFI access point?

Weight : 100 | Solved : 332

What app was the user focused on at 2021-05-20 14:13:27?

Weight : 100 | Solved : 361

How much time did the suspect watch Youtube on 2021-05-20? (hh:mm:ss)

Weight : 150 | Solved : 333

"suspicious.jpg: What is the structural similarity metric for this image compared to a visually similar image taken with the mobile phone? (#.##).

Weight : 200 | Solved : 308

Instructions:

Unzip the challenge (pass: cyberdefenders.org)

Our IR team took a disk dump of the android phone. As a soc analyst, analyze the dump and answer the provided questions.

Tools

Walkthroughs

Submit Walkthrough

Stuck? Don't worry

We've got you covered! 🛠️ Head over to the community lab channel for guidance #lgdroid channel

SHA1SUM:

a371b440d029267e95dbff243d0283b87deb4fd1
Password:

cyberdefenders.org
Size:

1.1 GB
Published:

July 7, 2021, midnight

First blood

Andro6

808 days ago

Last solve

vgq5qqyi4j9…

5 days ago

Blog

Media Kit

Store

Careers