Overview

overview

3

Static

static

3

admin/404/...min.js

windows7-x64

1

admin/404/...min.js

windows10-2004-x64

1

admin/inc.html

windows7-x64

1

admin/inc.html

windows10-2004-x64

1

admin/js/j...min.js

windows7-x64

1

admin/js/j...min.js

windows10-2004-x64

1

admin/js/j...min.js

windows7-x64

1

admin/js/j...min.js

windows10-2004-x64

1

apm/QRcode.js

windows7-x64

1

apm/QRcode.js

windows10-2004-x64

1

app/app.html

windows7-x64

1

app/app.html

windows10-2004-x64

1

ck/static/...min.js

windows7-x64

1

ck/static/...min.js

windows10-2004-x64

1

ck/static/...min.js

windows7-x64

1

ck/static/...min.js

windows10-2004-x64

1

ck/static/...min.js

windows7-x64

1

ck/static/...min.js

windows10-2004-x64

1

ck/static/...ips.js

windows7-x64

1

ck/static/...ips.js

windows10-2004-x64

1

ck/static/...min.js

windows7-x64

1

ck/static/...min.js

windows10-2004-x64

1

ck/static/...min.js

windows7-x64

1

ck/static/...min.js

windows10-2004-x64

1

ck/static/...min.js

windows7-x64

1

ck/static/...min.js

windows10-2004-x64

1

ck/static/...ing.js

windows7-x64

1

ck/static/...ing.js

windows10-2004-x64

1

inc/cache/...1.html

windows7-x64

1

inc/cache/...1.html

windows10-2004-x64

1

inc/cache/...9.html

windows7-x64

1

inc/cache/...9.html

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    035ffb48828cff5df01c506d7768ea3f071b18e5217239617b1d405dcce7199a

  • Size

    3.0MB

  • MD5

    a7626039d9069fda414b58e6d33c459d

  • SHA1

    e7bb44c33df051de8579ed78cf87805cc74730c0

  • SHA256

    035ffb48828cff5df01c506d7768ea3f071b18e5217239617b1d405dcce7199a

  • SHA512

    3328174ec7e3d2cdab447078a7513270c5c69da086123abdadbc6808d2e64843d567da3ee1762fe191fc33e0031457c449354d8eecdc2a3eb87cfa6c8f128d0f

  • SSDEEP

    49152:TEW7GVOGjUcwyoJztlVNJV3zh9vifPRsS3Yys9ShBZK+4roIM5bBP/9/ysjy6hkd:wVNjUcDoZvJVz+i4rZK1Y1BHgsoMy

Score
3/10
qrlink

Malware Config

Signatures

  • One or more HTTP URLs in qr code identified

    Detects presence of HTTP links in QR codes.

    qrlink

Files

  • 035ffb48828cff5df01c506d7768ea3f071b18e5217239617b1d405dcce7199a
    .zip
  • 404.php
  • README.txt
  • admin/404/404.css
  • admin/404/bird.png
    .png
  • admin/404/index.css
  • admin/404/jquery-1.7.2.min.js
    .js
  • admin/404/public.css
  • admin/404/san.png
    .png
  • admin/404/yun0.png
    .png
  • admin/404/yun1.png
    .png
  • admin/404/yun2.png
    .png
  • admin/admincore.php
  • admin/cache-del.php
  • admin/config.php
  • admin/foot.php
  • admin/head.php
  • admin/images/adminlogo.png
    .png
  • admin/images/woaik.css
  • admin/inc.php
    .html
  • admin/index.php
  • admin/js/jquery-1.9.1.min.js
    .js
  • admin/js/jquery.dragsort-0.4.min.js
    .js
  • admin/login.php
  • admin/setting.php
  • admin/seturl.php
  • apm/QRcode.php
    .js
  • apm/index.php
  • app.php
  • app/app.html
    .html
  • app/static/css/down.css
  • app/static/picture/android.png
    .png
  • app/static/picture/apple.png
    .png
  • app/static/picture/zzs6g4.png
    .png
  • app/static/picture/zzscrj.png
    .png
  • bb.php
  • ck/index.php
    .html .js polyglot
  • ck/static/css/index.css
  • ck/static/css/mui-player.min.css
  • ck/static/css/muiplayer.css
  • ck/static/images/084b6a9b461e4ae19435e1af0b243fd3.gif
    .jpg
  • ck/static/js/flv.min.js
    .js
  • ck/static/js/hls.light.min.js
    .js
  • ck/static/js/jquery.min.js
    .js
  • ck/static/js/jquery.xctips.js
    .js
  • ck/static/js/mui-player-desktop-plugin.min.js
    .js
  • ck/static/js/mui-player-mobile-plugin.min.js
    .js
  • ck/static/js/mui-player.min.js
    .js
  • ck/static/js/setting.js
    .js
  • css/bfq.css
  • css/bootstrap.css
  • css/cili.css
  • css/dongman.css
  • css/down.css
  • css/gaoxiao.css
  • css/img/lazy.gif
    .gif
  • css/index.css
  • css/movie.css
  • css/play.css
  • css/seacher.css
  • css/style.css
  • css/tv.css
  • css/yhq.css
  • css/yy.css
  • cxdy.php
  • data/aik.seturl.php
  • data/cxdy.php
  • data/init.php
  • dh.php
  • dym.php
  • dymjx.php
  • favicon.ico
  • fonts/icomoon.eot
  • fonts/icomoon.svg
    .xml
  • fonts/icomoon.ttf
  • fonts/icomoon.woff
  • footer.php
  • gm.php
  • header.php
  • images/1.png
    .png
  • images/1280jiazai.png
    .png
  • images/12jiazai.png
    .jpg
  • images/2.png
    .png
  • images/3.png
    .png
  • images/572804.png
    .png

    • http://wpa.qq.com/msgrd?v=3&uin=1455112844&site=qq&menu=yes

  • images/aly.jpg
    .jpg
  • images/bf01.png
    .png
  • images/cili.png
    .png
  • images/dc5c7986daef50c.gif
    .jpg
  • images/dianshi.png
    .png
  • images/dianshiju.png
    .png
  • images/gg.png
    .png
  • images/gg01.png
    .jpg
  • images/gouwu.png
    .png
  • images/index.png
    .png
  • images/jiazai.png
    .png
  • images/llq.png
    .jpg
  • images/loading.gif
    .gif
  • images/loading0.gif
    .gif
  • images/loading3.gif
    .gif
  • images/loading388.gif
    .gif
  • images/logo.png
    .png
  • images/magnet.png
    .png
  • images/mai.png
    .png
  • images/mv.png
    .png
  • images/qrcode.png
    .png

    • https://zhiyun.wodemo.net/entry/455642

  • images/sologo.png
    .jpg
  • images/t0196710ae8cc48f986.png
    .png
  • images/t01b14bbb1573d84f43.png
    .png

    • http://www.zy40.cn

  • images/t01ed2d8781d4a1a469.jpg
    .jpg
  • images/t01ed2d8781d4a1a469_00.jpg
    .jpg
  • images/thunder.png
    .png
  • images/tubiao.png
    .png
  • images/video.png
    .png
  • images/wp.png
    .png
  • images/wx.png
    .png

    • http://h.zy40.cn

  • images/yhq.png
    .png
  • images/zfb.png
    .png

    • http://zhiyunzz.simplesite.com

  • inc/aik.config.php
  • inc/cache.php
  • inc/cache/2e/2ef2120fc09279f4a0e72eec45359c11.html
    .html .js polyglot
  • inc/cache/66/6666cd76f96956469e7be39d750cc7d9.html
    .html .js polyglot
  • inc/cache/7e/7e70f40db58267d9b499ada2f7c97ed6.html
    .html
  • inc/cache/7f/7f27748280381a6452c212aad9503dab.html
    .html .js polyglot
  • inc/cache/b4/b4723b2f1c73203a338eea8c78476d0f.html
    .html .js polyglot
  • inc/cache/ba/bac96acf2155d1e255d448e9777b322e.html
    .html .js polyglot
  • inc/cache/f5/f5bd4c18cfdfeff8059cd22a6ff912f2.html
    .html .js polyglot
  • inc/init.php
  • inc/page.php
  • inc/zwca.php
  • inc/zwcb.php
  • index.php
    .js
  • jiazai.php
  • js/add-history.js
    .js
  • js/bfq.js
    .js
  • js/bootstrap.min.js
    .js
  • js/down.js
    .js
  • js/home.js
    .js
  • js/html5.js
    .js
  • js/jq.js
    .js
  • js/jquery.js
    .js
  • js/jquery.min.js
    .js
  • js/main.js
    .js
  • js/play.php
    .js
  • js/play1.php
    .js
  • js/touchslider.js
    .js
  • js/view-history.js
    .js
  • movie.php
  • moviea.php
  • movieb.php
  • mplay.php
  • mplay1.php
  • mplay2.php
  • mplay3.php
  • mplaya.php
  • mplayb.php
  • playb.php
    .js
  • playc.php
    .js
  • player.php
    .js
  • player/bf/index.html
    .html .js polyglot
  • player/bf/static/css/tcplayer.min.css
  • player/bf/static/font/VideoJS.eot
  • player/bf/static/image/audioTrack.png
    .png
  • player/bf/static/js/TXLivePlayer-1.2.3.min.js
    .js
  • player/bf/static/js/flv.min.1.6.3.js
    .js
  • player/cq/index.html
    .html .js polyglot
  • player/cq/jquery-1.8.3.min.js
    .js
  • player/cq/md5.min.js
    .js
  • player/hls.html
    .html
  • player/hls.min.js
    .js
  • player/index.html
    .html .js polyglot
  • player/player.js
    .js
  • playm.php
    .js
  • playm/index.php
    .html
  • playm/js/hlsjs-p2p-engine.min.js
    .js
  • playm/js/index.browser.min.js
    .js
  • playm/js/p2p-chimee-kernel-hls@latest
    .js
  • playz.php
    .html .js polyglot
  • robots.txt
  • seacher.php
  • seachera.php
  • seacherb.php
  • sidebar.php
  • top.php
  • wx_api.php
  • ym.php
  • yt.php
  • yy.php
  • zbhy.php
  • zbtv.php
  • zbtvhu.php
  • zbtvsx.php
  • zbyk.php
  • zbykjx.php
    .js
  • zbyya.php
  • zbyyb.php
  • zbyybjx.php
  • 免责声明.txt
  • 刀客源码网.html
    .html .js polyglot
  • 说明文档.txt