|
3.8 In what time the attackers first set foot on MINAF's O365 infrastructure?
(Level 3: We're not happy)
|
#33,
4 years, 3 months after release (2026-03-04 16:38:21)
|
100 |
|
3.7 From which REAL domain was this last attack launched?
(Level 3: We're not happy)
|
#36,
4 years, 3 months after release (2026-03-04 16:32:22)
|
75 |
|
3.5 The attackers are nice tricksters because they also fooled this user. Which URL did they make him/her click?
(Level 3: We're not happy)
|
#27,
4 years, 3 months after release (2026-03-04 16:28:34)
|
100 |
|
3.4 The compromised initial user has been connecting from another countries ... Which one is the most frequent?
(Level 3: We're not happy)
|
#40,
4 years, 3 months after release (2026-03-04 16:07:10)
|
50 |
|
3.3 This kind of attack is EXACTLY called ...
(Level 3: We're not happy)
|
#38,
4 years, 3 months after release (2026-03-04 16:00:27)
|
100 |
|
2.9 Which in the "innocent" password of the compromised account ?
(Level 2: Alert! Emergency!)
|
#44,
4 years, 3 months after release (2026-03-04 15:48:13)
|
100 |
|
2.8 When the attackers did first successfully use the stolen account ?
(Level 2: Alert! Emergency!)
|
#47,
4 years, 3 months after release (2026-03-04 15:37:58)
|
75 |
|
2.7 Attackers have left a privileged backdoor to MINAF's O365. Which form does it take?
(Level 2: Alert! Emergency!)
|
#41,
4 years, 3 months after release (2026-03-04 15:34:49)
|
125 |
|
2.5 Attackers also created an email rule that filtered out some keywords. Which ones?
(Level 2: Alert! Emergency!)
|
#40,
4 years, 3 months after release (2026-03-04 15:13:53)
|
75 |
|
2.4 The attackes have given themselves permissions over two Sharepoint sites. Who are their owners?
(Level 2: Alert! Emergency!)
|
#45,
4 years, 3 months after release (2026-03-04 15:11:53)
|
75 |
|
2.1 María José Feliz shared this file with an user ... who reshared it with a third user. Who?
(Level 2: Alert! Emergency!)
|
#51,
4 years, 3 months after release (2026-03-04 14:59:22)
|
75 |
|
2.3 ... and from which IP address?
(Level 2: Alert! Emergency!)
|
#42,
4 years, 3 months after release (2026-03-04 14:57:14)
|
50 |
|
2.2. When did the attackers got the World_Happiness_Plan.docx?
(Level 2: Alert! Emergency!)
|
#42,
4 years, 3 months after release (2026-03-04 14:55:59)
|
100 |
|
1.9 María José Feliz shared this document with other user. Which one?
(Level 1: MINAF-PC7)
|
#57,
4 years, 3 months after release (2026-03-04 14:30:03)
|
75 |
|
1.7 Which user advises Maria Jose Files to "install" everything?
(Level 1: MINAF-PC7)
|
#68,
4 years, 3 months after release (2026-03-04 12:46:27)
|
125 |
|
1.6 Where did all these malware was downloaded from?
(Level 1: MINAF-PC7)
|
#66,
4 years, 3 months after release (2026-03-04 11:57:24)
|
75 |
|
1.5 In that folder there is DEFINITELY another file that Windows Defender strongly dislikes. Which one?
(Level 1: MINAF-PC7)
|
#66,
4 years, 3 months after release (2026-03-04 11:44:22)
|
50 |
|
1.4 Which payload do these files have?
(Level 1: MINAF-PC7)
|
#61,
4 years, 3 months after release (2026-03-04 11:36:12)
|
75 |
|
1.3 If you look carefully in the user folder, you'll see some suspicious compressed files. What final (real) extension is the most used?
(Level 1: MINAF-PC7)
|
#74,
4 years, 3 months after release (2026-03-04 11:16:39)
|
50 |
|
1.2 Which file generated the most recent AV alert?
(Level 1: MINAF-PC7)
|
#73,
4 years, 3 months after release (2026-03-04 11:11:12)
|
50 |
|
3.1 Attackers have tricked someone to consent the installation of something. What is its name?
(Level 3: We're not happy)
|
1 year, 3 months after release (2023-03-08 17:03:02)
|
125 |
|
1.1 At which time did María José Feliz create the document "World_Happiness_Plan.docx" on her computer?
(Level 1: MINAF-PC7)
|
#6,
1 year, 3 months after release (2023-03-08 14:59:19)
|
50 |
