Overview

overview

3

Static

static

1

tzsc/ad_bottom.js

windows7-x64

1

tzsc/ad_bottom.js

windows10-2004-x64

1

tzsc/addfree.vbs

windows7-x64

1

tzsc/addfree.vbs

windows10-2004-x64

1

tzsc/addfree01.js

windows7-x64

1

tzsc/addfree01.js

windows10-2004-x64

1

tzsc/addfree02.js

windows7-x64

1

tzsc/addfree02.js

windows10-2004-x64

1

tzsc/addfree03.js

windows7-x64

1

tzsc/addfree03.js

windows10-2004-x64

1

tzsc/addfree04.js

windows7-x64

1

tzsc/addfree04.js

windows10-2004-x64

1

tzsc/addfree05.js

windows7-x64

1

tzsc/addfree05.js

windows10-2004-x64

1

tzsc/addfree06.js

windows7-x64

1

tzsc/addfree06.js

windows10-2004-x64

1

tzsc/addfree07.js

windows7-x64

1

tzsc/addfree07.js

windows10-2004-x64

1

tzsc/addfree08.js

windows7-x64

1

tzsc/addfree08.js

windows10-2004-x64

1

tzsc/addfree09.js

windows7-x64

1

tzsc/addfree09.js

windows10-2004-x64

1

tzsc/addfreechk.vbs

windows7-x64

1

tzsc/addfreechk.vbs

windows10-2004-x64

1

tzsc/addlink.asp

windows7-x64

3

tzsc/addlink.asp

windows10-2004-x64

3

tzsc/addlinkchk.vbs

windows7-x64

1

tzsc/addlinkchk.vbs

windows10-2004-x64

1

tzsc/addxinxi.vbs

windows7-x64

1

tzsc/addxinxi.vbs

windows10-2004-x64

1

tzsc/addxinxi01.js

windows7-x64

1

tzsc/addxinxi01.js

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    52b862fcaeb7b1dc3e0a1db2168b1211

  • Size

    1.7MB

  • MD5

    52b862fcaeb7b1dc3e0a1db2168b1211

  • SHA1

    91561da9d1e8c2435034fb2c913ef4786fc45d2f

  • SHA256

    a4335cb1af2f99dfac455a908376f089e7b0c39462b93b4afaf9ba82334954a4

  • SHA512

    826fd274bb5466216a822fb80c3122d32135876f5fe28ba4d5ad59fd9441ac576d35bdcb3bde0ebcd1a0c2c7e2f68263df05a36449465ba195aec4e8a85d28d5

  • SSDEEP

    49152:W8NEE1QzWNayMLi1vjganoJ6S/5H6q3VqycVc:W2EE1YWNX7Eaod5H6q35ac

Score
1/10

Malware Config

Signatures

Files

  • 52b862fcaeb7b1dc3e0a1db2168b1211
    .rar
  • tzsc/ad/111111ad44.gif
    .gif
  • tzsc/ad/ad.gif
    .gif
  • tzsc/ad/ad11.gif
    .gif
  • tzsc/ad/ad21.gif
    .gif
  • tzsc/ad/ad44.gif
    .gif
  • tzsc/ad/ad5.gif
    .gif
  • tzsc/ad/banner.gif
    .gif
  • tzsc/ad/banner2.gif
    .gif
  • tzsc/ad/banner22.gif
    .gif
  • tzsc/ad/banner5.gif
    .gif
  • tzsc/ad/cctengad.gif
    .gif
  • tzsc/ad/ershou.gif
    .gif
  • tzsc/ad/foxnet.gif
    .gif
  • tzsc/ad/help.gif
    .gif
  • tzsc/ad/help.psd
  • tzsc/ad/liuyun.gif
    .gif
  • tzsc/ad/new.gif
    .gif
  • tzsc/ad/shop.gif
    .gif
  • tzsc/ad/xinxi.gif
    .gif
  • tzsc/ad_bottom.js
  • tzsc/addfree.asp
    .vbs
  • tzsc/addfree01.asp
    .js
  • tzsc/addfree02.asp
    .js
  • tzsc/addfree03.asp
    .js
  • tzsc/addfree04.asp
    .js
  • tzsc/addfree05.asp
    .js
  • tzsc/addfree06.asp
    .js
  • tzsc/addfree07.asp
    .js
  • tzsc/addfree08.asp
    .js
  • tzsc/addfree09.asp
    .js
  • tzsc/addfreechk.asp
    .vbs
  • tzsc/addlink.asp
  • tzsc/addlinkchk.asp
    .vbs
  • tzsc/addxinxi.asp
    .vbs
  • tzsc/addxinxi01.asp
    .js
  • tzsc/addxinxi02.asp
    .js
  • tzsc/addxinxi03.asp
    .js
  • tzsc/addxinxi04.asp
    .js
  • tzsc/addxinxi05.asp
    .js
  • tzsc/addxinxi06.asp
    .js
  • tzsc/addxinxi07.asp
    .js
  • tzsc/addxinxi08.asp
    .js
  • tzsc/addxinxi09.asp
    .js
  • tzsc/addxinxichk.asp
    .vbs
  • tzsc/admin/DEL_BUK.ASP
    .vbs
  • tzsc/admin/add_user.asp
  • tzsc/admin/add_userchk.asp
    .vbs
  • tzsc/admin/admin_add.asp
    .vbs
  • tzsc/admin/admin_addchk.asp
    .vbs
  • tzsc/admin/admin_chk.asp
    .vbs
  • tzsc/admin/admin_chklogin.asp
    .asp .vbs polyglot
  • tzsc/admin/admin_dd.asp
    .vbs
  • tzsc/admin/admin_login.asp
    .asp
  • tzsc/admin/admin_logout.asp
    .asp
  • tzsc/admin/adminmail.asp
  • tzsc/admin/adminmailchk.asp
    .vbs
  • tzsc/admin/admintitle.asp
    .vbs
  • tzsc/admin/admintitlechk.asp
    .vbs
  • tzsc/admin/beifendata.asp
    .vbs
  • tzsc/admin/checkcode.asp
    .vbs
  • tzsc/admin/conn.asp
    .vbs
  • tzsc/admin/cookies.asp
    .vbs
  • tzsc/admin/dd_del.asp
    .vbs
  • tzsc/admin/dd_yz.asp
    .vbs
  • tzsc/admin/del_all.asp
    .vbs
  • tzsc/admin/delhf.asp
    .vbs
  • tzsc/admin/deluser.asp
    .vbs
  • tzsc/admin/delxinxi.asp
    .vbs
  • tzsc/admin/fenlei.asp
    .vbs
  • tzsc/admin/fenleiedit.asp
    .vbs
  • tzsc/admin/gbook.asp
    .js
  • tzsc/admin/gbookdel.asp
    .vbs
  • tzsc/admin/gbookedit.asp
    .vbs
  • tzsc/admin/gbookhf.asp
    .vbs
  • tzsc/admin/img/20062919103381035.jpg
    .jpg
  • tzsc/admin/img/ba_home.gif
    .gif
  • tzsc/admin/img/bg.gif
    .gif
  • tzsc/admin/img/ershou_1.gif
    .gif
  • tzsc/admin/img/ershou_2.gif
    .gif
  • tzsc/admin/img/ershou_3.gif
    .gif
  • tzsc/admin/img/left_form_r1_c1.gif
    .gif
  • tzsc/admin/img/left_form_r2_c1.gif
    .gif
  • tzsc/admin/img/left_form_r4_c1.gif
    .gif
  • tzsc/admin/img/obj_waku3_03.gif
    .gif
  • tzsc/admin/img/r3.gif
    .gif
  • tzsc/admin/img/xx.gif
    .gif
  • tzsc/admin/inc_style.css
  • tzsc/admin/index.asp
  • tzsc/admin/left.asp
    .html
  • tzsc/admin/leixing.asp
    .vbs
  • tzsc/admin/leixingedit.asp
    .vbs
  • tzsc/admin/link.asp
    .vbs
  • tzsc/admin/link_del.asp
    .vbs
  • tzsc/admin/link_e.asp
    .vbs
  • tzsc/admin/link_e_chk.asp
    .vbs
  • tzsc/admin/link_yz.asp
    .vbs
  • tzsc/admin/list_buk.asp
    .vbs
  • tzsc/admin/main.asp
    .vbs
  • tzsc/admin/out.asp
  • tzsc/admin/regchk.asp
    .vbs
  • tzsc/admin/upload_wj.inc
    .vbs
  • tzsc/admin/userlist.asp
    .vbs
  • tzsc/admin/xinxi.asp
    .vbs
  • tzsc/admin/xinxi_del.asp
    .vbs
  • tzsc/admin/xinxi_edit.asp
    .vbs
  • tzsc/admin/xinxi_editchk.asp
    .vbs
  • tzsc/admin/xinxi_hf.asp
    .vbs
  • tzsc/admin/xinxi_hfdel.asp
    .vbs
  • tzsc/admin/xinxi_mailchk.asp
    .vbs
  • tzsc/admin/xinxi_yz.asp
    .vbs
  • tzsc/admin/xinxi_yzdel.asp
    .vbs
  • tzsc/admin/xinxi_zd.asp
    .vbs
  • tzsc/admin/xinxi_zddel.asp
    .vbs
  • tzsc/admin/xinximail.asp
    .vbs
  • tzsc/admin/xinximailchk.asp
    .vbs
  • tzsc/b_2.gif
    .gif
  • tzsc/bar.asp
    .vbs
  • tzsc/bar2.asp
    .vbs
  • tzsc/chksql.Asp
    .vbs
  • tzsc/class1info.asp
    .vbs
  • tzsc/class1info2.asp
    .vbs
  • tzsc/class1info3.asp
    .vbs
  • tzsc/config.asp
  • tzsc/conn.asp
    .asp .vbs polyglot
  • tzsc/conn1.asp
    .vbs
  • tzsc/data/buk/cnmai.mdb
  • tzsc/data/cnmaisqlin.mdb
  • tzsc/data/gbdddsjka#[email protected]
  • tzsc/default.asp
    .vbs
  • tzsc/edit_xinxi.asp
    .vbs
  • tzsc/edit_xinxichk.asp
    .vbs
  • tzsc/end.htm
  • tzsc/err.asp
    .vbs
  • tzsc/function.js
    .js
  • tzsc/gbook.asp
    .vbs
  • tzsc/gbookchk.asp
    .vbs
  • tzsc/images/1a.gif
    .gif
  • tzsc/images/1b.gif
    .gif
  • tzsc/images/2.gif
    .gif
  • tzsc/images/240_1.gif
    .gif
  • tzsc/images/3.gif
    .gif
  • tzsc/images/4.gif
    .gif
  • tzsc/images/File_29.gif
    .gif
  • tzsc/images/Login_but.gif
    .gif
  • tzsc/images/Nav_Icon.gif
    .gif
  • tzsc/images/Search.gif
    .gif
  • tzsc/images/_back.gif
    .gif
  • tzsc/images/_doc_4.gif
    .gif
  • tzsc/images/_form_r01_c6.gif
    .gif
  • tzsc/images/_form_r02_c1.gif
    .gif
  • tzsc/images/_form_r02_c7.gif
    .gif
  • tzsc/images/_form_r07_c1.gif
    .gif
  • tzsc/images/_form_r07_c3.gif
    .gif
  • tzsc/images/_form_r07_c7.gif
    .gif
  • tzsc/images/_form_r09_c1.gif
    .gif
  • tzsc/images/_login_ERR_r5_c3.gif
    .gif
  • tzsc/images/_more.gif
    .gif
  • tzsc/images/a.gif
    .gif
  • tzsc/images/a1.gif
    .gif
  • tzsc/images/a2.gif
    .gif
  • tzsc/images/a3.gif
    .gif
  • tzsc/images/a4.gif
    .gif
  • tzsc/images/a5.gif
    .gif
  • tzsc/images/a6.gif
    .gif
  • tzsc/images/a_2.gif
    .gif
  • tzsc/images/b.gif
    .gif
  • tzsc/images/b1.gif
    .gif
  • tzsc/images/b2.gif
    .gif
  • tzsc/images/b_2.gif
    .gif
  • tzsc/images/ba_home.gif
    .gif
  • tzsc/images/back_bottom.gif
    .gif
  • tzsc/images/back_midle.gif
    .gif
  • tzsc/images/banner.gif
    .gif
  • tzsc/images/bar1.gif
    .gif
  • tzsc/images/bg1.gif
    .gif
  • tzsc/images/bg_top_01.gif
    .gif
  • tzsc/images/bhjd.jpg
    .jpg
  • tzsc/images/bj1.gif
    .gif
  • tzsc/images/bookmark.gif
    .gif
  • tzsc/images/button10.jpg
    .jpg
  • tzsc/images/buttonE.jpg
    .jpg
  • tzsc/images/buttonF.jpg
    .jpg
  • tzsc/images/buydj.gif
    .gif
  • tzsc/images/c.gif
    .gif
  • tzsc/images/c11.gif
    .gif
  • tzsc/images/c12.gif
    .gif
  • tzsc/images/c2.gif
    .gif
  • tzsc/images/c3.gif
    .gif
  • tzsc/images/c4.gif
    .gif
  • tzsc/images/c_2.gif
    .gif
  • tzsc/images/ccccc3.gif
    .gif
  • tzsc/images/cnmai_down.gif
    .gif
  • tzsc/images/cnmai_middle.gif
    .gif
  • tzsc/images/djzh.gif
    .gif
  • tzsc/images/dl003.gif
    .gif
  • tzsc/images/dl004.gif
    .gif
  • tzsc/images/dotline.gif
    .gif
  • tzsc/images/editzl.gif
    .gif
  • tzsc/images/fa.gif
    .gif
  • tzsc/images/find.gif
    .gif
  • tzsc/images/folder.gif
    .gif
  • tzsc/images/form1_r2_c1.gif
    .gif
  • tzsc/images/form1_r2_c3.gif
    .gif
  • tzsc/images/form1_r5_c1.gif
    .gif
  • tzsc/images/form2_r1_c1.gif
    .gif
  • tzsc/images/fx.gif
    .gif
  • tzsc/images/gb.gif
    .gif
  • tzsc/images/gbook.gif
    .gif
  • tzsc/images/gbooktj.gif
    .gif
  • tzsc/images/hkzf.gif
    .gif
  • tzsc/images/inded_left-bg.gif
    .gif
  • tzsc/images/jfzh.gif
    .gif
  • tzsc/images/jsq.gif
    .gif
  • tzsc/images/left_form_r1_c1.gif
    .gif
  • tzsc/images/left_form_r2_c1.gif
    .gif
  • tzsc/images/left_form_r4_c1.gif
    .gif
  • tzsc/images/line_01.gif
    .gif
  • tzsc/images/line_top_01.gif
    .gif
  • tzsc/images/list3.gif
    .gif
  • tzsc/images/logo.gif
    .gif
  • tzsc/images/lsjl.gif
    .gif
  • tzsc/images/mail_login_r1_c1.gif
    .gif
  • tzsc/images/mail_login_r3_c1.gif
    .gif
  • tzsc/images/mail_login_r5_c2.gif
    .gif
  • tzsc/images/mail_login_r7_c1.gif
    .gif
  • tzsc/images/mysc.gif
    .gif
  • tzsc/images/new.gif
    .gif
  • tzsc/images/obj_ta3_01.gif
    .gif
  • tzsc/images/obj_ta3_03.gif
    .gif
  • tzsc/images/obj_ta3_04.gif
    .gif
  • tzsc/images/obj_ta3_05.gif
    .gif
  • tzsc/images/obj_ta3_06.gif
    .gif
  • tzsc/images/obj_ta3_07.gif
    .gif
  • tzsc/images/obj_ta3_08.gif
    .gif
  • tzsc/images/obj_ta3_09.gif
    .gif
  • tzsc/images/obj_ta3_10.gif
    .gif
  • tzsc/images/obj_ta3_11.gif
    .gif
  • tzsc/images/obj_ta3_12.gif
    .gif
  • tzsc/images/obj_ta_1.gif
    .gif
  • tzsc/images/obj_ta_2.gif
    .gif
  • tzsc/images/obj_ta_3.gif
    .gif
  • tzsc/images/obj_ta_5.gif
    .gif
  • tzsc/images/obj_ta_6.gif
    .gif
  • tzsc/images/obj_ta_8.gif
    .gif
  • tzsc/images/obj_waku3_01.gif
    .gif
  • tzsc/images/obj_waku3_02.gif
    .gif
  • tzsc/images/obj_waku3_03.gif
    .gif
  • tzsc/images/obj_waku3_04.gif
    .gif
  • tzsc/images/obj_waku3_05.gif
    .gif
  • tzsc/images/obj_waku3_06.gif
    .gif
  • tzsc/images/obj_waku3_07.gif
    .gif
  • tzsc/images/point05.gif
    .gif
  • tzsc/images/post.gif
    .gif
  • tzsc/images/pro_r03_c5.gif
    .gif
  • tzsc/images/pub.gif
    .gif
  • tzsc/images/search.jpg
    .jpg
  • tzsc/images/sjzf.gif
    .gif
  • tzsc/images/sm.gif
    .gif
  • tzsc/images/t_01.gif
    .gif
  • tzsc/images/t_02.gif
    .gif
  • tzsc/images/t_03.gif
    .gif
  • tzsc/images/t_05.jpg
    .jpg
  • tzsc/images/t_06.jpg
    .jpg
  • tzsc/images/url.gif
  • tzsc/images/user_pass.gif
    .gif
  • tzsc/images/userbj.gif
    .gif
  • tzsc/images/usersm.gif
    .gif
  • tzsc/images/usertj.gif
    .gif
  • tzsc/images/userzf.gif
    .gif
  • tzsc/images/wssc.jpg
    .jpg
  • tzsc/images/xx.gif
    .gif
  • tzsc/images/xxgl.gif
    .gif
  • tzsc/images/yhzf.gif
    .gif
  • tzsc/images/zffs.gif
    .gif
  • tzsc/images/zfqr.gif
    .gif
  • tzsc/images/zh2.gif
    .gif
  • tzsc/inc_style.css
  • tzsc/ipt.asp
    .vbs
  • tzsc/link.asp
    .vbs
  • tzsc/link/01.gif
  • tzsc/link/02.gif
    .gif
  • tzsc/link/03.gif
    .gif
  • tzsc/link/04.gif
    .gif
  • tzsc/link/05.jpg
    .jpg
  • tzsc/link/06.gif
    .gif
  • tzsc/link/07.gif
    .gif
  • tzsc/login.asp
  • tzsc/loginchk.asp
    .vbs
  • tzsc/logo.gif
    .gif
  • tzsc/mail.asp
  • tzsc/md5.asp
    .vbs
  • tzsc/mylink.asp
    .vbs
  • tzsc/reg.asp
  • tzsc/reg1.asp
  • tzsc/reg2.asp
  • tzsc/regchk.asp
    .vbs
  • tzsc/regchk_2.asp
    .vbs
  • tzsc/search.asp
    .vbs
  • tzsc/shoucang.asp
    .vbs
  • tzsc/top.asp
    .js
  • tzsc/user.asp
    .vbs
  • tzsc/user_gbook.asp
    .vbs
  • tzsc/user_gbookchk.asp
    .vbs
  • tzsc/user_gbookchkweb.asp
    .vbs
  • tzsc/user_pass.asp
  • tzsc/user_passchk.asp
    .vbs
  • tzsc/user_qr.asp
    .vbs
  • tzsc/user_qrchk.asp
    .vbs
  • tzsc/user_sc.asp
    .vbs
  • tzsc/user_scchk.asp
    .vbs
  • tzsc/user_xxgl.asp
    .vbs
  • tzsc/user_zffs.asp
  • tzsc/usercookies.asp
    .vbs
  • tzsc/userdjzh.asp
    .vbs
  • tzsc/userdjzhchk.asp
    .vbs
  • tzsc/userdjzhchk1.asp
    .vbs
  • tzsc/usereditzl.asp
    .vbs
  • tzsc/usereditzlchk.asp
    .vbs
  • tzsc/userleft.asp
  • tzsc/userout.asp
  • tzsc/usertop.asp
    .js
  • tzsc/vip.asp
    .vbs
  • tzsc/xinxi_del.asp
    .vbs
  • tzsc/xinxi_editzj.asp
    .vbs
  • tzsc/xinxi_hf.asp
    .vbs
  • tzsc/xinxi_mail.asp
    .vbs
  • tzsc/xinxi_mailchk.asp
    .vbs
  • tzsc/xinxiedit.asp
    .vbs
  • tzsc/xinxiedit01.asp
    .js
  • tzsc/xinxiedit02.asp
    .vbs
  • tzsc/xinxiedit03.asp
    .js
  • tzsc/xinxiedit04.asp
    .js
  • tzsc/xinxiedit05.asp
    .js
  • tzsc/xinxiedit06.asp
    .js
  • tzsc/xinxiedit07.asp
    .vbs
  • tzsc/xinxiedit08.asp
    .vbs
  • tzsc/xinxiedit09.asp
    .vbs
  • tzsc/xinxieditchk.asp
    .vbs
  • tzsc/xinximemo.asp
    .vbs
  • tzsc/xinximemo01.asp
    .vbs
  • tzsc/xinximemo02.asp
    .vbs
  • tzsc/xinximemo03.asp
    .vbs
  • tzsc/xinximemo04.asp
    .vbs
  • tzsc/xinximemo05.asp
    .vbs
  • tzsc/xinximemo06.asp
    .vbs
  • tzsc/xinximemo07.asp
    .vbs
  • tzsc/xinximemo08.asp
    .vbs
  • tzsc/xinximemo09.asp
    .vbs
  • tzsc/下载说明.htm
    .html .js polyglot
  • tzsc/程序说明.txt
  • tzsc/非常世纪资源网.url
    .url