zapret-win-bundle-master.zip?ex=670cb4f6&is=670b6376&hm=4b9184c1af755184b6c4328cbc56fb96b4ebb360f7949208b05d4ce0b7f81c58&
First submission 2024-10-13 18:34:02
File details
| File type: | Zip archive data, at least v2.0 to extract |
| Mime type: | application/zip |
| File size: | 1934.56 KB (1980991 bytes) |
| MD5: | e1d1ba1d7c3b2023558fb6fcc12710c9 |
| SHA1: | cbf6912447ef391df54a36d9f7a1938a50a45812 |
| SHA256: | 203f7d94c1d1bf2b68e299cfc954b805f7afd3569a14d931150ae132175d66fb |
File features detected
Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR
OSINT Enrichments
| Virus Total: | 5/77 VT report date: 2024-10-13 18:34:55 |
| Malware Type 1 | trojan |
| Threat Type 1 | windivert |
URLs, FQDN and IP indicators 1
| URL | Host (FQDN/IP) | Date Added |
|---|---|---|
hXXps://cdn.discordapp.com/attachments/1286410522656247930/1294904146813517836/zapret-win-bundle-master.zip?ex=670cb4f6&is=670b6376&hm=4b9184c1af755184b6c4328cbc56fb96b4ebb360f7949208b05d4ce0b7f81c58&  |
cdn.discordapp.com |
2024-10-13 18:34:02 |
Strings analysis - File found
| Binary |
| zapret-win-bundle-master/zapret-winws/tls_clienthello_www_google_com.bin |
| zapret-win-bundle-master/zapret-winws/quic_initial_www_google_com.bin |
| Text |
| zapret-win-bundle-master/readme.txt |
| Library |
| zapret-win-bundle-master/zapret-winws/WinDivert.dll |
| zapret-win-bundle-master/zapret-winws/cygwin1.dll |