TASK 3

• Task Description
• Files Given

Task Description

The network administrators confirm that the IP address you provided in your description is an edge router. DAFIN-SOC is asking you to dive deeper and reverse engineer this device. Fortunately, their team managed to pull a memory dump of the device.

Scour the device’s memory dump and identify anomalous or malicious activity to find out what’s going on.

Your submission will be a list of IPs and domains, one per line. For example:

127.0.0.1 localhost
192.168.54.131 corp.internal
…

Prompt:

• Submit a complete list of affected IPs and FQDNs, one per line.

Files Given

• Memory Dump (memory.dump.gz)
• Metadata (System.map.br)
• Kernel Image (vmlinux.xz)