Uncovering Cicada Wiki
Advertisement
Uncovering Cicada Wiki

Before you start reading, Nox Populi has a multi-part series on what happened in 2012(parts one, two, and three) that you may find helpful and we recommend you watch.


The Email

Those who applied early enough or followed the 'Numbers dot TK' hint were greeted with this email:

PGP-Signed Message
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
 
This message will only be displayed once.
 
Here is a message that has been encrypted with RSA (the Crypt::RSA Perl module available in CPAN) :
 
- -----BEGIN COMPRESSED RSA ENCRYPTED MESSAGE-----
Version: 1.99
Scheme: Crypt::RSA::ES::OAEP
 
eJwBzQAy/zEwADE4OABDeXBoZXJ0ZXh0Ca4y//uzl/HvFoP9Klf53nEFH0T4c+ui5de8+vqGOnZc
9DlrsWQe+xxVaPaYgKAD9Wn9VWQ6A5o254r5pa4hkDIY5RRmVfqOm88HJpGdbGGTckyEwJapCLDT
tHzZWAZ0FIVj6fH2whErHoVmZ82zQJ64OLtzr1gYk+2kIZuqtLclV9RDhs6j7meTaod2BDrF26tY
d33awv0txxrgXRhd/FDFVtKb0K84cQs2xtO/9A0yLs5GEK2xpG2yM4AeWWft
=I1r6Wtzf/29vTggAK+ELEA==
- -----END COMPRESSED RSA ENCRYPTED MESSAGE-----
 
 
Here is the public key used to encrypt it. Note that it has a low bit modulus and is therefore breakable:
 
$VAR1 = bless( {
                 'e' => 65537,
                 'n' => '7880891639791153779530258464649693928733411681581577103690292822333198036864739065916344030512697162068582555837',
                 'Version' => '1.99',
                 'Identity' => '<quaetrix0@gmail.com>'
               }, 'Crypt::RSA::Key::Public' );
 
 
The encrypted message is a number.  Break the decryption key, then come back to this same URL and enter the 
decrypted message to continue.  Each person who has come this far has received a unique message encrypted 
with a unique key.  You are not to collaborate.  Sharing your message or key will result in not receiving 
the next step.
 
There is a second chance to get your own RSA message and key.  Follow the "Numbers dot TK" hint to find it.
 
There are many fake messages out there.  Only messages signed with public key ID 7A35090F are valid.  
 
Good luck.
 
3301 
 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
 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=LMdX
-----END PGP SIGNATURE-----

After the RSA puzzle, people who submitted the correct answer to their individual RSA puzzle (each person had different "n") to the onion page received another email with a MIDI puzzle. The MIDI puzzle and solution can be found there: http://pastebin.com/4nrDxVXk.

If you don't understand how the cipher was solved ask in #cicadasolvers. Basicly it was substitution cipher where one tone in midi was one letter. Midi consist two songs. Second one is encrypted text from Chorus of Blakes Poem A Song of Liberty (Let the Chorus be your guide to the depths : was hint). First midi song was encrypted text players had to decrpy, with unique set of words on the end:

verygood you have proven to be most dedicated to come this

far to attain enlightenment create a gpg key for your email address

and upload it to the mit key servers then encrypt the the following

word list using the cicada three three ero one public key sign it

with your key send the ascii armoured ciphertet to the gmail address

from which you received your numbers your words are

[unique list of words here]
garden ball house cat shore back head galon

Lurkers midi puzzle from 2012 example:

[18:40] <NiceLurk> https://infotomb.com/oq17i here is midi from 2012
[18:40] <NiceLurk> http://pastebin.com/4nrDxVXk here is how it was solved

Note: as infotomb is down, that link no longer works. a copy of it can be found here.

The Invitation

Those who sent an encrypted PGP signed email with their words were later invited with the infamous "leaked email".

From here, nobody knows what really happened, as the original puzzle was not very well documented in its end stages like the second puzzle was. Hopefully one day this will come to light, but after recieving this email every person that did so went completely dark, as if they had disappeared from the internet.

Nobody knew how deep the rabbit hole went, but all the solvers could agree: it was the deepest they'd ever seen.

What happened after this is mostly still not known, apart for few slips when some people told a bit more about what was going on later. Logs of those testemonies can be found on Unfiction. Legitimacy of those is not confirmed, it might be just trolling. After all, 3301 might not exist at all.

The Final Message

After a whole month without any word from 3301, the following message was posted on the subreddit from the start (a2e7j6ic78h0j), in a post entitled Valēte! (meaning goodbye, farewell). It reads as follows:

Hello.

We have now found the individuals we sought. Thus our month-long journey ends.

For now.

Thank you for your dedication and effort. If you were unable to complete the test, or did not recieve an email, do not despair.

There will be more opportunities like this one.

Thank you all.

3301

P.S. 1041279065891998535982789873959431895640\
442510695567564373922695237268242385295908173\
9834390370374475764863415203423499357108713631

This was the final message recieved from cicada in 2012 that was confirmed to be them. Mentions of 3301 popped up throughout the rest of the year, and by december everyone had forgotten about it.

VjuNp.jpg







Until 2013.

Note: For any of the fake messages/speculations, please visit the appropriate pages from the main page.

Advertisement