## 7zip-embed-zip

## 7zip-embed-zip

This example showcases idea behind Polyglot LNKs causing specific software to improperly recognise file's format, thus leading to processal of inner appended stream of data representing another format.

In this example, we have generated a regular LNK that runs `%ProgramFiles%\7-Zip\7zFM.exe` which is a 7zip GUI application.

Then, we compressed `Autoruns64.exe` into ZIP and appended that ZIP into LNK.

Now, whenever victim (that has 7zip installed) double clicks on such LNK, inner Autoruns64.exe will pop up, paving our way towards a nice execution vector.

## Copyrights

> 
> Copyright (C) Binary-Offensive.com Mariusz Banach - All Rights Reserved
> Unauthorized copying of this file, via any medium is strictly prohibited.
>
> This file/directory was part of Modern Initial Access and Evasion Tactics training
> delivered by binary-offensive.com and was provided as supplemental material.
> 
> Authored by Mariusz Banach <mb@binary-offensive.com>, @mariuszbit / mgeeky
>