TYS 0x00 - santas little RAT

This post is part of the Test Your Skills series. You can find an introduction here. And an overview of all TYS’s currently available is over here.

Santa brought you a little something for Xmas!

I know, it’s not Xmas anymore! But, when I wrote this challenge I was down deep in the Christmas spirit ;)


I hope you have been a good girl/boy the past year. Santa left something for you out there on the wide wide web. You can get it from here. The challenge is to figure out what this present is all about.
I’ll give you a hint: dynamic is easy, pure static is where the real power resides! ;)

This challenge has been build on and to be run on Kali Linux - but it should most definitely work on any amd64 Linux which is Debian based. I don’t think I need to tell you, but, I’d advise to take a snapshot of the VM you run this in before you run it.

Have fun hunting, feel free to post your approach / write-up and let me know if you have any questions, feedback or general comments in the respective twitter thread over here:

Verify the files you download with:

md5sum     6af765f4593ac71c243885efa025d3f4                                  cdn/tys/tys_0x00_santa
sha1sum    98a78e1c19ac01b3c50ab5ed9fa2149acfe83c47                          cdn/tys/tys_0x00_santa
sha256sum  ee40935810dcb71a31cd2496fe09e7c1128825994fd248624b76727ce00b0af1  cdn/tys/tys_0x00_santa