winsploit-api[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

winsploit-api.zip
Size

17.2MB
MD5

93072dd4064e730c0dbc680ab6f59b41
SHA1

5b1b8bdfbe86f5552c8f821ac7b7f1e0ffdc92c5
SHA256

cd4f39fdb1f5f9ce4e746bee361cae6890d31bd5e6dd45994275645ee273759a
SHA512

b41dbe97f6d20aaaa5b5b377b0ed232b23bc217d81d6de13dcacdf12bcea296a6486b70632544a16cab55f971b17f7984167e6002b2f0b30ad028e21b5c63acd
SSDEEP

393216:xrRSPtguE+CfsXreT9TFNE+CfsXreTOkAscdu1q7HUEo:9RSPt42XreT9TFW2XreTKjOjEo

Score

3^/10

Malware Config

Signatures

Unsigned PE 7 IoCs

Checks for missing Authenticode signature.

resource
unpack001/winsploit-api/Abyss/bin/Debug/Abyss.exe
unpack001/winsploit-api/Abyss/bin/Debug/ICSharpCode.AvalonEdit.dll
unpack001/winsploit-api/Abyss/bin/Debug/SynapseZAPI.dll
unpack001/winsploit-api/Abyss/obj/Debug/Abyss.exe
unpack001/winsploit-api/packages/AvalonEdit.6.3.0.90/lib/net462/ICSharpCode.AvalonEdit.dll
unpack001/winsploit-api/packages/AvalonEdit.6.3.0.90/lib/net6.0-windows7.0/ICSharpCode.AvalonEdit.dll
unpack001/winsploit-api/packages/AvalonEdit.6.3.0.90/lib/net7.0-windows7.0/ICSharpCode.AvalonEdit.dll

Files

winsploit-api.zip
.zip

Password: 43553534
winsploit-api/Abyss.sln
winsploit-api/Abyss/808255e6-002c-4a6a-8536-c26731551b0b.jpg
winsploit-api/Abyss/Abyss.csproj
winsploit-api/Abyss/App.config
winsploit-api/Abyss/App.xaml
winsploit-api/Abyss/App.xaml.cs
winsploit-api/Abyss/Fonts/Font Awesome 5 Brands-Regular-400.otf
winsploit-api/Abyss/Fonts/Font Awesome 5 Free-Regular-400.otf
winsploit-api/Abyss/Fonts/Font Awesome 5 Free-Solid-900.otf
winsploit-api/Abyss/Fonts/Montserrat SemiBold 600.ttf
winsploit-api/Abyss/Fonts/Poppins-Black.ttf
winsploit-api/Abyss/Fonts/Poppins-BlackItalic.ttf
winsploit-api/Abyss/Fonts/Poppins-Bold.ttf
winsploit-api/Abyss/Fonts/Poppins-BoldItalic.ttf
winsploit-api/Abyss/Fonts/Poppins-ExtraBold.ttf
winsploit-api/Abyss/Fonts/Poppins-ExtraBoldItalic.ttf
winsploit-api/Abyss/Fonts/Poppins-ExtraLight.ttf
winsploit-api/Abyss/Fonts/Poppins-ExtraLightItalic.ttf
winsploit-api/Abyss/Fonts/Poppins-Italic.ttf
winsploit-api/Abyss/Fonts/Poppins-Light.ttf
winsploit-api/Abyss/Fonts/Poppins-LightItalic.ttf
winsploit-api/Abyss/Fonts/Poppins-Medium.ttf
winsploit-api/Abyss/Fonts/Poppins-MediumItalic.ttf
winsploit-api/Abyss/Fonts/Poppins-Regular.ttf
winsploit-api/Abyss/Fonts/Poppins-SemiBold.ttf
winsploit-api/Abyss/Fonts/Poppins-SemiBoldItalic.ttf
winsploit-api/Abyss/Fonts/Poppins-Thin.ttf
winsploit-api/Abyss/Fonts/Poppins-ThinItalic.ttf
winsploit-api/Abyss/Fonts/Segoe Fluent Icons.ttf
winsploit-api/Abyss/Fonts/boxicons.ttf
winsploit-api/Abyss/Fonts/fontisto-brands.ttf
winsploit-api/Abyss/Fonts/ionicons.ttf
winsploit-api/Abyss/Fonts/materialdesignicons-webfont.ttf
winsploit-api/Abyss/Image1.png
.png

Password: 43553534
winsploit-api/Abyss/Image2.png
.png

Password: 43553534
winsploit-api/Abyss/MainWindow.xaml
winsploit-api/Abyss/MainWindow.xaml.cs
winsploit-api/Abyss/Properties/AssemblyInfo.cs
winsploit-api/Abyss/Properties/Resources.Designer.cs
.vbs
winsploit-api/Abyss/Properties/Resources.resx
.vbs
winsploit-api/Abyss/Properties/Settings.Designer.cs
winsploit-api/Abyss/Properties/Settings.settings
winsploit-api/Abyss/Script_Hub.xaml
winsploit-api/Abyss/Script_Hub.xaml.cs
winsploit-api/Abyss/bin/Debug/Abyss.exe
.exe windows:4 windows x86 arch:x86

Password: 43553534

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\gaps510dev\Downloads\Abvyss\Abvyss\Abyss\obj\Debug\Abyss.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 7.2MB - Virtual size: 7.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
winsploit-api/Abyss/bin/Debug/Abyss.exe.config
winsploit-api/Abyss/bin/Debug/Abyss.pdb
winsploit-api/Abyss/bin/Debug/ICSharpCode.AvalonEdit.dll
.dll windows:4 windows x86 arch:x86

Password: 43553534

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

/_/ICSharpCode.AvalonEdit/obj/Release/net462/ICSharpCode.AvalonEdit.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 603KB - Virtual size: 602KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
winsploit-api/Abyss/bin/Debug/ICSharpCode.AvalonEdit.xml
.xml
winsploit-api/Abyss/bin/Debug/SynapseZAPI.dll
.dll windows:4 windows x86 arch:x86

Password: 43553534

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\tahae\source\repos\SynapseZAPI\SynapseZAPI\obj\Debug\SynapseZAPI.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
winsploit-api/Abyss/bin/Debug/abyssScripts/custom-file.txt
winsploit-api/Abyss/c83761712c58384892d63501cad3a1ee.jpg
.jpg

Password: 43553534
winsploit-api/Abyss/image-removebg-preview (8).png
.png

Password: 43553534
winsploit-api/Abyss/obj/Debug/Abyss.Properties.Resources.resources
winsploit-api/Abyss/obj/Debug/Abyss.csproj.AssemblyReference.cache
winsploit-api/Abyss/obj/Debug/Abyss.csproj.CoreCompileInputs.cache
winsploit-api/Abyss/obj/Debug/Abyss.csproj.FileListAbsolute.txt
winsploit-api/Abyss/obj/Debug/Abyss.csproj.GenerateResource.cache
winsploit-api/Abyss/obj/Debug/Abyss.exe
.exe windows:4 windows x86 arch:x86

Password: 43553534

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\gaps510dev\Downloads\Abvyss\Abvyss\Abyss\obj\Debug\Abyss.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 7.2MB - Virtual size: 7.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
winsploit-api/Abyss/obj/Debug/Abyss.g.resources
winsploit-api/Abyss/obj/Debug/Abyss.pdb
winsploit-api/Abyss/obj/Debug/Abyss_Content.g.i.cs
winsploit-api/Abyss/obj/Debug/Abyss_MarkupCompile.cache
winsploit-api/Abyss/obj/Debug/Abyss_MarkupCompile.i.cache
winsploit-api/Abyss/obj/Debug/Abyss_MarkupCompile.i.lref
winsploit-api/Abyss/obj/Debug/Abyss_MarkupCompile.lref
winsploit-api/Abyss/obj/Debug/App.baml
winsploit-api/Abyss/obj/Debug/App.g.cs
winsploit-api/Abyss/obj/Debug/App.g.i.cs
winsploit-api/Abyss/obj/Debug/DesignTimeResolveAssemblyReferences.cache
winsploit-api/Abyss/obj/Debug/DesignTimeResolveAssemblyReferencesInput.cache
winsploit-api/Abyss/obj/Debug/GeneratedInternalTypeHelper.g.cs
winsploit-api/Abyss/obj/Debug/GeneratedInternalTypeHelper.g.i.cs
winsploit-api/Abyss/obj/Debug/MainWindow.baml
winsploit-api/Abyss/obj/Debug/MainWindow.g.cs
winsploit-api/Abyss/obj/Debug/MainWindow.g.i.cs
winsploit-api/Abyss/obj/Debug/Script_Hub.baml
winsploit-api/Abyss/obj/Debug/Script_Hub.g.cs
winsploit-api/Abyss/obj/Debug/Script_Hub.g.i.cs
winsploit-api/Abyss/obj/Debug/_IsIncrementalBuild
winsploit-api/Abyss/obj/Release/Abyss.csproj.AssemblyReference.cache
winsploit-api/Abyss/obj/Release/Abyss_MarkupCompile.cache
winsploit-api/Abyss/obj/Release/Abyss_MarkupCompile.lref
winsploit-api/Abyss/obj/Release/App.g.cs
winsploit-api/Abyss/obj/Release/GeneratedInternalTypeHelper.g.cs
winsploit-api/Abyss/obj/Release/MainWindow.g.cs
winsploit-api/Abyss/obj/Release/Script_Hub.g.cs
winsploit-api/Abyss/packages.config
winsploit-api/README.md
winsploit-api/packages/AvalonEdit.6.3.0.90/AvalonEdit.6.3.0.90.nupkg
.nupkg
winsploit-api/packages/AvalonEdit.6.3.0.90/images/AvalonEditNuGetPackageIcon.png
.png
winsploit-api/packages/AvalonEdit.6.3.0.90/lib/net462/ICSharpCode.AvalonEdit.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

/_/ICSharpCode.AvalonEdit/obj/Release/net462/ICSharpCode.AvalonEdit.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 603KB - Virtual size: 602KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
winsploit-api/packages/AvalonEdit.6.3.0.90/lib/net462/ICSharpCode.AvalonEdit.xml
.xml
winsploit-api/packages/AvalonEdit.6.3.0.90/lib/net6.0-windows7.0/ICSharpCode.AvalonEdit.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

/_/ICSharpCode.AvalonEdit/obj/Release/net6.0-windows/ICSharpCode.AvalonEdit.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 604KB - Virtual size: 604KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
winsploit-api/packages/AvalonEdit.6.3.0.90/lib/net6.0-windows7.0/ICSharpCode.AvalonEdit.xml
.xml
winsploit-api/packages/AvalonEdit.6.3.0.90/lib/net7.0-windows7.0/ICSharpCode.AvalonEdit.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

/_/ICSharpCode.AvalonEdit/obj/Release/net7.0-windows/ICSharpCode.AvalonEdit.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 605KB - Virtual size: 604KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
winsploit-api/packages/AvalonEdit.6.3.0.90/lib/net7.0-windows7.0/ICSharpCode.AvalonEdit.xml
.xml

Sharing

General

Malware Config

Signatures

Files

Password: 43553534

Password: 43553534

Password: 43553534

Password: 43553534

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 7.2MB - Virtual size: 7.2MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

Password: 43553534

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 603KB - Virtual size: 602KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

Password: 43553534

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 4KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 904B

.reloc Size: 512B - Virtual size: 12B

Password: 43553534

Password: 43553534

Password: 43553534

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 7.2MB - Virtual size: 7.2MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 603KB - Virtual size: 602KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 604KB - Virtual size: 604KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: 7.2MB - Virtual size: 7.2MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 603KB - Virtual size: 602KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 904B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 7.2MB - Virtual size: 7.2MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 603KB - Virtual size: 602KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 604KB - Virtual size: 604KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 605KB - Virtual size: 604KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B