Hey! Minions have stolen my flag, encoded it few times in one cipher, and then hidden it somewhere there: https://mega.nz/file/1UBViYgD#kjKISs9pUB4E-1d79166FeX3TiY5VQcHJ_GrcMbaLhg Can you help me? TIP: Decode the flag until you got a sentence.
-
Running
binwalkon the provided image file revealed that it had a secret embedded RAR file. I ran the following command to extract the hidden embedded RAR file.
binwalk --dd='.*' Hey_You.png -
I then renamed
D3EDBtotemp.rarso that it'd be recognised byunrar. Usingunrar e temp.rarto extract the contents of the rar file revealed a secret file titled..txt.
-
The file contained a link to another hosted file (Taken for a spin, sigh)
-
The new file
Only_Few_Steps.jpgturned out to have another rar file embedded in it.
-
Repeated steps above with the new file, only to find yet ANOTHER image titled
YouWon(ALmost).jpg
-
Thankfully, this image had no more embedded files in it (whew). Running
stringson it revealed a large base64 encoded string though (padded with=). -
Trying to decode this using a base64 decoder (https://base64decode.org) only gave me another base64 encoded string (?!).
-
I then recalled the prompt, and decided to keep decoding the result strings, and I finally came upon the flag.
VmtaU1IxUXhUbFZSYXpsV1RWUnNRMVpYZEZkYWJFWTJVVmhrVlZGVU1Eaz0= | v VkZSR1QxTlVRazlWTVRsQ1ZXdFdabEY2UVhkVVFUMDk= | v VFRGT1NUQk9VMTlCVWtWZlF6QXdUQT09 | V TTFOSTBOU19BUkVfQzAwTA== | V M1NI0NS_ARE_C00L -
Whew, this challenge was way too long!
-
Flag obtained :
M1NI0NS_ARE_C00L
