https://www.virustotal.com/cs/file/735d2f25819f9fac7d227df01dc76fc851f5719befdf05cec6cb3d4f3dedea16/analysis/   2016-09-20 10:18:21.400542 IP 192.168.1.102.59888 > 192.168.1.100.80: Flags [P.], seq 1:339, ack 1, win 256, length 338: HTTP: GET /captured/sunnyday.exe HTTP/1.1 E..z…….T…f…d…P.N…..yP…….GET /captured/sunnyday.exe HTTP/1.1 Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, */* Referer: http://192.168.1.100/captured/ Accept-Language: en-us User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) Accept-Encoding: gzip, deflate Host: 192.168.1.100 Connection: Keep-Alive 2016-09-20 10:18:21.400562 IP 192.168.1.100.80 > 192.168.1.102.59888: Flags [.], ack 339, win 237, length 0 — /GROUP=”folder name” Overrides the default folder name. /NOICONS Instructs Setup to initially check the Don’t create a Start Menu folder check box. /TYPE=type name Overrides the default setup type. /COMPONENTS=”comma separated list of component […]