Scribd
Upload
115 views

LAB Digital Assignment I: Faculty: Prof. Jayakumar Sadhasivam

1. The document provides instructions for a digital forensics lab assignment analyzing two disk image files, Mantooth.E01 and Washer.E01, using the Autopsy tool. 2. Students are asked to analyze both disk images within a single case file and answer various questions about each image related to file type, operating system, user accounts, evidence of deleted files, communications, documents, and more. 3. Students must submit a written analysis summary detailing their findings for each disk image file by February 1st, 2022 through Moodle and VTOP, avoiding plagiarism.

Uploaded by

Jeet Bangoria
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
115 views

LAB Digital Assignment I: Faculty: Prof. Jayakumar Sadhasivam

1. The document provides instructions for a digital forensics lab assignment analyzing two disk image files, Mantooth.E01 and Washer.E01, using the Autopsy tool. 2. Students are asked to analyze both disk images within a single case file and answer various questions about each image related to file type, operating system, user accounts, evidence of deleted files, communications, documents, and more. 3. Students must submit a written analysis summary detailing their findings for each disk image file by February 1st, 2022 through Moodle and VTOP, avoiding plagiarism.

Uploaded by

Jeet Bangoria
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

Winter Semester 2021 – 2022

CSE4004 - Digital Forensics


Faculty: Prof. Jayakumar Sadhasivam

LAB Digital Assignment I


Note:
Mantooth.E01 and Washer.E01 files uploaded in the MS Teams (Lab) -> Files -
> Digital Assignment – 1 folder.

Use the “Mantooth.E01 and Washer.E01” disk image file for the forensics
analysis using the “Autopsy” tool.
- Use both disk image files under a single case file.

After the analysis, write down the output including an overall screenshot for the
below-mentioned questions.

Mantooth.E01
1. What type of file is Mantooth.E01
2. What is the Operating System?
3. What is the File System?
4. Provide the account name and last login information for each account
present in Mantooth
5. If there is any evidence of .exe file being deleted, describe the artifact name
and document your findings
6. Find proof of communication with Gladiator
7. What is a "Pranic Vampire"? In which document is it mentioned? When
was the document created?
8. What is present in happy.mpeg?
9. Check if there is any picture that shows drugs? If so list out the names of
the drugs.
10. Find the list of criminal activities Mantooth was involved in and the
associated artifacts.
11. Summarize the finding against Mantooth
12. Mantooth received one Text Internet Email that had no subject about a
stolen ATM. Who sent it to him (name and email) and when was it sent?
13. Find when and who deleted the file ValidCreditCard.jar

Washer.E01
1. What is the starting sector of Partition 2 and what is the size of it?
2. What is the file system of the disk image?
3. List the user name.
4. Does Washer know Mantooth?
5. How many .doc files are there? Extract all, document what is their content
and their md5 values
6. Who are all involved in the discussion about "Special K"
7. Find the URL that is given for making drugs quickly
8. What is the AOL IM name in the Washer disk image file?

Write down the analysis summary in detail for both Mantooth and Washer disk
image files.

Plagiarism:
No plagiarism. If in my judgment your report deliverables are not entirely your work and
submitted or copied from somewhere else, you will automatically receive, as a minimum, a
grade of zero for the assignment.

Submission Date:
Digital Assignment – 1: February 1st, 2022
Assignment Submission: Moodle and VTOP (Mandatory)

Contact Information:
Email: [email protected]
Mobile: 09488881826

You might also like