# History of Malware {% embed url="" %} {% endembed %} | Room Attributes | Value | | --------------------- | ---------------------------------------------------------------------- | | Subscription Required | False \[Free] | | Type | Walkthrough | | Difficulty | Info | | Tags | Security, Walkthrough, Malware, History | ## Video Walkthrough {% embed url="" %} TryHackMe History of Malware Official Walkthrough {% endembed %} ## Task 1 - Introduction ### Read the above. {% hint style="success" %} No answer needed {% endhint %} ## Task 2 - The Creeper Program ### Read the above. {% hint style="success" %} No answer needed {% endhint %} ### Who re-designed the Creeper Virus?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Ray Tomlinson`
### How is data transferred through a network? {% hint style="warning" %} **HINT:** It is a form of switching. {% endhint %}
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Packet Switching`
### Who created the first concept of a virus? {% hint style="warning" %} **HINT:** He also created a computer architecture. {% endhint %}
Reveal Flag 🚩 :triangular\_flag\_on\_post:`John von Neuma`nn
### What text did the Creeper program print to the screen? {% hint style="warning" %} **HINT:** This includes correct grammar. {% endhint %}
Reveal Flag 🚩 :triangular\_flag\_on\_post:`I'm the Creeper, catch me if you can!`
### What does ARPANET stand for?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Advanced Research Projects Agency Network`
### Which team created the network control program?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Network Working Group`
### What is the first virus commonly known as?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Creeper`
## Task 3 - Reaper ### Read the above. {% hint style="success" %} No answer needed {% endhint %} ### Who created Reaper?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Ray Tomlinson`
### What type of malware may Reaper be known as? {% hint style="warning" %} **HINT:** This is covered towards the end of the page. {% endhint %}
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Nematode`
### What was the first ever anti-virus program known as?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Reaper`
### What was Bob Thomas' main project to develop?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`A resource-sharing capability`
### Research: What does API stand for? {% hint style="warning" %} **HINT:** Google (The resource was given) {% endhint %}
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Application Programming Interface`

## Task 4 - Wabbit ### Read the information. {% hint style="success" %} No answer needed {% endhint %} ### What is a modern day fork bomb also known as?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Denial of service attack`
### Was Rabbit one of the first malicious programs? (Y/N)
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Y`
### What did the name "Wabbit" derive from? {% hint style="warning" %} **HINT:** Name of the cartoon. {% endhint %}
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Looney Tunes Cartoons`
## Task 5 - ANIMAL ### Read the above {% hint style="success" %} No answer needed {% endhint %} ### When was PERVADE added to ANIMAL?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`1975`
### Did John think this was a good idea? (Y/N)
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Y`
### What computers did the program spread across?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`UNIVACs`
### What type of malware is ANIMAL also known as?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`A Trojan`
### Who built the wooden horse? {% hint style="warning" %} **HINT:** Start answer with "The" {% endhint %}
Reveal Flag 🚩 :triangular\_flag\_on\_post:`The Greeks`
## Task 6 - Elk Cloner ### Read the above. {% hint style="success" %} No answer needed {% endhint %} ### Which US Military regiment caught the virus?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`US Navy`
### How many lines long is the Elk Cloner poem?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`7`
### When was Elk Cloner written?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`1982`
### Is a boot sector virus *more or less* common in modern technology?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`less`
### How long did it take Richard to write the program?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`2 Weeks`
### Which Operating System was affected?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Apple II`
## Task 7 - The Morris Internet Worm ### Read the above. {% hint style="success" %} No answer needed {% endhint %} ### What commands were a very big way that allowed Morris to access the computers? {% hint style="warning" %} **HINT:** Full Name. {% endhint %}
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Berkeley r-commands`
### Who was one the first person prosecuted for the computer misuse act? {% hint style="warning" %} **HINT:** Full name... {% endhint %}
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Robert Tappan Morris`
### What type of attack is a "Fork Bomb"?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Denial of Service`
### When was this worm released?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`1988`
### How many computers did it infect within 15 hours?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`2000`
### What does **rsh** mean?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`remote shell`
### Under which act was Morris arrested for?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`1986 Computer Fraud and Abuse act`
## Task 8 - Cascade ### Read the above. {% hint style="success" %} No answer needed {% endhint %} ### What was the name of this virus?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`Cascade`
### What file extensions would this virus infect?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`.COM`
### How many variants of there virus were possibly found?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`40`
### What operating system would the virus run on?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`DOS`
### Which Operating System/Frame Work would Cascade try to avoid?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`IBM`
### How many bytes would be added onto your file if it got infected?
Reveal Flag 🚩 :triangular\_flag\_on\_post:`1704`
## Task 9 - Thanks for reading! ### Thanks! {% hint style="success" %} No answer needed {% endhint %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://thmflags.gitbook.io/thm-walkthroughs/difficulty-info/history-of-malware.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.