DigitalSide Threat Intel

JINw8Z6.zip?ex=670c2f0e&is=670add8e&hm=5bd78ccda022a9f6778c5cc9de63d16204f59518d913c2a549dd402470fff679&

First submission 2024-10-13 20:19:02

File details

File type: Zip archive data, at least v1.0 to extract
Mime type: application/zip
File size: 296.55 KB (303672 bytes)
MD5: e3ab21ef32ac63987a3c1e90478a9281
SHA1: aec52c8b31aabc5bc0fd4c6c49fc37a43b64e2f1
SHA256: 9d5d0dbf2b964fd9aa80964a73f6ba7013e6c3c2c56d1ec08961e3fb1e3a6326

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 2/77 VT report date: 2024-10-13 19:19:41

URLs, FQDN and IP indicators 1

URL Host (FQDN/IP) Date Added
hXXps://cdn.discordapp.com/attachments/1220119148823056455/1294760365036408913/JINw8Z6.zip?ex=670c2f0e&is=670add8e&hm=5bd78ccda022a9f6778c5cc9de63d16204f59518d913c2a549dd402470fff679& VirusTotal Report cdn.discordapp.com VirusTotal Report 2024-10-13 20:19:02

Strings analysis - File found

Text
goodbyedpi/licenses/LICENSE-windivert.txt
goodbyedpi/licenses/LICENSE-getline.txt
goodbyedpi/licenses/LICENSE-goodbyedpi.txt
goodbyedpi/licenses/LICENSE-uthash.txt
Library
goodbyedpi/x86/WinDivert.dll
goodbyedpi/x86_64/WinDivert.dll