Overview

overview

6

Static

static

3

boxsky.cn/Go.asp

windows7-x64

3

boxsky.cn/Go.asp

windows10-2004-x64

3

boxsky.cn/ad.js

windows7-x64

1

boxsky.cn/ad.js

windows10-2004-x64

1

boxsky.cn/...��.exe

windows7-x64

6

boxsky.cn/...��.exe

windows10-2004-x64

6

boxsky.cn/...on.vbs

windows7-x64

1

boxsky.cn/...on.vbs

windows10-2004-x64

1

boxsky.cn/...xy.vbs

windows7-x64

1

boxsky.cn/...xy.vbs

windows10-2004-x64

1

boxsky.cn/...ig.asp

windows7-x64

3

boxsky.cn/...ig.asp

windows10-2004-x64

3

boxsky.cn/index.html

windows7-x64

1

boxsky.cn/index.html

windows10-2004-x64

1

boxsky.cn/index1.html

windows7-x64

1

boxsky.cn/index1.html

windows10-2004-x64

1

boxsky.cn/index2.html

windows7-x64

1

boxsky.cn/index2.html

windows10-2004-x64

1

boxsky.cn/...bar.js

windows7-x64

1

boxsky.cn/...bar.js

windows10-2004-x64

1

boxsky.cn/search.asp

windows7-x64

3

boxsky.cn/search.asp

windows10-2004-x64

3

boxsky.cn/...��.url

windows7-x64

1

boxsky.cn/...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    760e08cce0df0f4bbe59cfa81bbe2648

  • Size

    871KB

  • MD5

    760e08cce0df0f4bbe59cfa81bbe2648

  • SHA1

    f2fb21b65558ab2426e8b9b8a9f0b6276e7a3334

  • SHA256

    f622810a758204d1e691f95c139138dcf7d4e677c5e14bcc23b8478293dc7b39

  • SHA512

    267253d553ce7cc92372b3d4d6e018f79f71834569368cbfa0023ab1a48331d01248fb8efade14c6aba1c5ea41b4ccaf96b72fc9384e4559937f1dacc9047ade

  • SSDEEP

    24576:HsPGiHXqDA9VnQdvxA4dwThyaOjlTDNola43gF9wpdm8Nr:MPGiHXqenGJwlyaMlPNi3gvudmQr

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 760e08cce0df0f4bbe59cfa81bbe2648
    .rar
  • boxsky.cn/Go.asp
    .asp .js polyglot
  • boxsky.cn/ad.js
  • boxsky.cn/asp微型调试工具.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • boxsky.cn/css.css
  • boxsky.cn/extra/ReadMe.txt
  • boxsky.cn/extra/animated_favicon1.gif
    .gif
  • boxsky.cn/extra/preview_16x16.png
    .png
  • boxsky.cn/extra/transparent.ico
  • boxsky.cn/favicon.ico
  • boxsky.cn/ico/arrow.gif
    .gif
  • boxsky.cn/ico/arrow1.gif
    .gif
  • boxsky.cn/ico/barbg.gif
    .gif
  • boxsky.cn/ico/ddbg.gif
    .gif
  • boxsky.cn/ico/ddl.gif
    .gif
  • boxsky.cn/ico/ddr.gif
    .gif
  • boxsky.cn/ico/down.gif
    .gif
  • boxsky.cn/ico/help.gif
    .gif
  • boxsky.cn/ico/icon_frame_logo_01.gif
    .gif
  • boxsky.cn/ico/ie.gif
    .gif
  • boxsky.cn/ico/tabbg.gif
    .gif
  • boxsky.cn/ico/tbg.gif
    .gif
  • boxsky.cn/ico/tl.gif
    .gif
  • boxsky.cn/ico/tr.gif
    .gif
  • boxsky.cn/images/+.gif
    .gif
  • boxsky.cn/images/-.gif
    .gif
  • boxsky.cn/images/001.gif
    .gif
  • boxsky.cn/images/002.gif
    .gif
  • boxsky.cn/images/17.gif
    .gif
  • boxsky.cn/images/22.gif
    .gif
  • boxsky.cn/images/bar_bg2.gif
    .gif
  • boxsky.cn/images/bg_frame_01.gif
    .gif
  • boxsky.cn/images/bg_frame_02.gif
    .gif
  • boxsky.cn/images/bg_top_01.gif
    .gif
  • boxsky.cn/images/blank.gif
    .gif
  • boxsky.cn/images/close.gif
    .gif
  • boxsky.cn/images/dot.gif
    .gif
  • boxsky.cn/images/dot.jpg
    .jpg
  • boxsky.cn/images/dotgreen.jpg
    .jpg
  • boxsky.cn/images/fuzhijianqieban.gif
    .gif
  • boxsky.cn/images/h2bg.gif
    .gif
  • boxsky.cn/images/ie.gif
    .gif
  • boxsky.cn/images/logo.gif
    .png
  • boxsky.cn/images/logo.png
    .png
  • boxsky.cn/images/open.gif
    .gif
  • boxsky.cn/images/rollbar/skin1/bg.png
    .png
  • boxsky.cn/images/rollbar/skin1/tab-current-left.png
    .png
  • boxsky.cn/images/rollbar/skin1/tab-current-right.png
    .png
  • boxsky.cn/images/rollbar/skin1/tab-hover-left.png
    .png
  • boxsky.cn/images/rollbar/skin1/tab-hover-right.png
    .png
  • boxsky.cn/images/rollbar/skin1/tab-left.png
    .png
  • boxsky.cn/images/rollbar/skin1/tab-right.png
    .png
  • boxsky.cn/images/rollbar/skin1/tabb-left.png
    .png
  • boxsky.cn/images/rollbar/skin1/tabb-right.png
    .png
  • boxsky.cn/images/rollbar/skin2/tab-current-left.png
    .png
  • boxsky.cn/images/rollbar/skin2/tab-current-right.png
    .png
  • boxsky.cn/images/rollbar/skin2/tab-hover-left.png
    .png
  • boxsky.cn/images/rollbar/skin2/tab-hover-right.png
    .png
  • boxsky.cn/images/rollbar/skin2/tab-left.png
    .png
  • boxsky.cn/images/rollbar/skin2/tab-right.png
    .png
  • boxsky.cn/images/rollbar/skin2/tabb-left.png
    .png
  • boxsky.cn/images/rollbar/skin2/tabb-right.png
    .png
  • boxsky.cn/images/rollbar/skin3/tab-current-left.png
    .png
  • boxsky.cn/images/rollbar/skin3/tab-current-right.png
    .png
  • boxsky.cn/images/rollbar/skin3/tab-hover-left.png
    .png
  • boxsky.cn/images/rollbar/skin3/tab-hover-right.png
    .png
  • boxsky.cn/images/rollbar/skin3/tab-left.png
    .png
  • boxsky.cn/images/rollbar/skin3/tab-right.png
    .png
  • boxsky.cn/images/rollbar/skin3/tabb-left.png
    .png
  • boxsky.cn/images/rollbar/skin3/tabb-right.png
    .png
  • boxsky.cn/images/xiaoguoyulan.gif
    .gif
  • boxsky.cn/inc/Function.asp
    .vbs
  • boxsky.cn/inc/_Proxy.asp
    .vbs
  • boxsky.cn/inc/config.asp
  • boxsky.cn/index.html
    .html .js polyglot
  • boxsky.cn/index1.html
    .html .js polyglot
  • boxsky.cn/index2.html
    .html .js polyglot
  • boxsky.cn/js/rollbar.js
    .js
  • boxsky.cn/search.asp
    .asp
  • boxsky.cn/style2.css
  • boxsky.cn/styles/css.css
  • boxsky.cn/styles/inc.css
  • boxsky.cn/styles/index.css
  • boxsky.cn/styles/rollbar.css
  • boxsky.cn/styles/skin.css
  • boxsky.cn/styles/skin2.css
  • boxsky.cn/styles/skin3.css
  • boxsky.cn/下载说明.htm
    .html .js polyglot
  • boxsky.cn/新云软件.url
    .url
  • boxsky.cn/说明.txt