Overview
overview
1Static
static
1auth/app/func.ps1
windows7-x64
1auth/app/func.ps1
windows10-2004-x64
1auth/app/v...er.ps1
windows7-x64
1auth/app/v...er.ps1
windows10-2004-x64
1auth/app/v...st.ps1
windows7-x64
1auth/app/v...st.ps1
windows10-2004-x64
1auth/app/v...DME.js
windows7-x64
1auth/app/v...DME.js
windows10-2004-x64
1auth/app/v...ler.js
windows7-x64
1auth/app/v...ler.js
windows10-2004-x64
1auth/app/v...OP3.js
windows7-x64
1auth/app/v...OP3.js
windows10-2004-x64
1auth/app/v...MTP.js
windows7-x64
1auth/app/v...MTP.js
windows10-2004-x64
1auth/dV9oBz/cc.js
windows7-x64
1auth/dV9oBz/cc.js
windows10-2004-x64
1auth/dV9oBz/email.js
windows7-x64
1auth/dV9oBz/email.js
windows10-2004-x64
1auth/dV9oB...ode.js
windows7-x64
1auth/dV9oB...ode.js
windows10-2004-x64
1auth/dV9oBz/link.js
windows7-x64
1auth/dV9oBz/link.js
windows10-2004-x64
1auth/dV9oB...ng1.js
windows7-x64
1auth/dV9oB...ng1.js
windows10-2004-x64
1auth/dV9oB...ng2.js
windows7-x64
1auth/dV9oB...ng2.js
windows10-2004-x64
1auth/dV9oB...ng3.js
windows7-x64
1auth/dV9oB...ng3.js
windows10-2004-x64
1auth/dV9oBz/login.js
windows7-x64
1auth/dV9oBz/login.js
windows10-2004-x64
1auth/dV9oBz/region.js
windows7-x64
1auth/dV9oBz/region.js
windows10-2004-x64
1Static task
static1
Behavioral task
behavioral1
Sample
auth/app/func.ps1
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
auth/app/func.ps1
Resource
win10v2004-20240412-en
Behavioral task
behavioral3
Sample
auth/app/vendor/composer/ClassLoader.ps1
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
auth/app/vendor/composer/ClassLoader.ps1
Resource
win10v2004-20240412-en
Behavioral task
behavioral5
Sample
auth/app/vendor/inacho/php-credit-card-validator/tests/Test.ps1
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
auth/app/vendor/inacho/php-credit-card-validator/tests/Test.ps1
Resource
win10v2004-20240412-en
Behavioral task
behavioral7
Sample
auth/app/vendor/phpmailer/phpmailer/README.js
Resource
win7-20231129-en
Behavioral task
behavioral8
Sample
auth/app/vendor/phpmailer/phpmailer/README.js
Resource
win10v2004-20240412-en
Behavioral task
behavioral9
Sample
auth/app/vendor/phpmailer/phpmailer/src/PHPMailer.js
Resource
win7-20240221-en
Behavioral task
behavioral10
Sample
auth/app/vendor/phpmailer/phpmailer/src/PHPMailer.js
Resource
win10v2004-20240226-en
Behavioral task
behavioral11
Sample
auth/app/vendor/phpmailer/phpmailer/src/POP3.js
Resource
win7-20240221-en
Behavioral task
behavioral12
Sample
auth/app/vendor/phpmailer/phpmailer/src/POP3.js
Resource
win10v2004-20240412-en
Behavioral task
behavioral13
Sample
auth/app/vendor/phpmailer/phpmailer/src/SMTP.js
Resource
win7-20240221-en
Behavioral task
behavioral14
Sample
auth/app/vendor/phpmailer/phpmailer/src/SMTP.js
Resource
win10v2004-20240412-en
Behavioral task
behavioral15
Sample
auth/dV9oBz/cc.js
Resource
win7-20240220-en
Behavioral task
behavioral16
Sample
auth/dV9oBz/cc.js
Resource
win10v2004-20240412-en
Behavioral task
behavioral17
Sample
auth/dV9oBz/email.js
Resource
win7-20240221-en
Behavioral task
behavioral18
Sample
auth/dV9oBz/email.js
Resource
win10v2004-20240226-en
Behavioral task
behavioral19
Sample
auth/dV9oBz/emailcode.js
Resource
win7-20240221-en
Behavioral task
behavioral20
Sample
auth/dV9oBz/emailcode.js
Resource
win10v2004-20240412-en
Behavioral task
behavioral21
Sample
auth/dV9oBz/link.js
Resource
win7-20240220-en
Behavioral task
behavioral22
Sample
auth/dV9oBz/link.js
Resource
win10v2004-20240412-en
Behavioral task
behavioral23
Sample
auth/dV9oBz/loading1.js
Resource
win7-20231129-en
Behavioral task
behavioral24
Sample
auth/dV9oBz/loading1.js
Resource
win10v2004-20240412-en
Behavioral task
behavioral25
Sample
auth/dV9oBz/loading2.js
Resource
win7-20240221-en
Behavioral task
behavioral26
Sample
auth/dV9oBz/loading2.js
Resource
win10v2004-20240226-en
Behavioral task
behavioral27
Sample
auth/dV9oBz/loading3.js
Resource
win7-20240221-en
Behavioral task
behavioral28
Sample
auth/dV9oBz/loading3.js
Resource
win10v2004-20240412-en
Behavioral task
behavioral29
Sample
auth/dV9oBz/login.js
Resource
win7-20240215-en
Behavioral task
behavioral30
Sample
auth/dV9oBz/login.js
Resource
win10v2004-20240412-en
Behavioral task
behavioral31
Sample
auth/dV9oBz/region.js
Resource
win7-20231129-en
Behavioral task
behavioral32
Sample
auth/dV9oBz/region.js
Resource
win10v2004-20240412-en
General
-
Target
16894376874.zip
-
Size
813KB
-
MD5
899c660e4513c8a906a251189a54382a
-
SHA1
fdd3c093c649a1a59cb2f65725e737f0a065a01e
-
SHA256
a4cd7145d7e8a4c1d63e7ce9cc45c2752a620a2cb4dea899349cece62f97c817
-
SHA512
48d487519e9e71d096bc768f229b4c5a3123ad1a57d4174d2c0ec6b29f54177f43c8ba3efb37a44e04ca83c8dfa2fdb812c68355e1d388b965b61fdb8c18c236
-
SSDEEP
12288:oYx3c2VirV3Y0fge6xBUMQY/6Y1NcVg8Kaz4kqlPfLKqfY0K1WF1iOaj4cwUcyyA:oYutrrge6x91aHz4/xA05FlbcTc0N
Malware Config
Signatures
Files
-
16894376874.zip.zip
Password: infected
-
68e500d7702f88d462473479dab63eaf202751e8372a821862dba3db1db0276e.zip
-
auth/.htaccess
-
auth/404.php
-
auth/app/BrowserDetection.php
-
auth/app/config.php
-
auth/app/func.php.ps1
-
auth/app/vendor/autoload.php
-
auth/app/vendor/composer/ClassLoader.php.ps1
-
auth/app/vendor/composer/LICENSE
-
auth/app/vendor/composer/autoload_classmap.php
-
auth/app/vendor/composer/autoload_namespaces.php
-
auth/app/vendor/composer/autoload_psr4.php
-
auth/app/vendor/composer/autoload_real.php
-
auth/app/vendor/composer/autoload_static.php
-
auth/app/vendor/composer/installed.json
-
auth/app/vendor/inacho/php-credit-card-validator/.gitignore
-
auth/app/vendor/inacho/php-credit-card-validator/LICENSE
-
auth/app/vendor/inacho/php-credit-card-validator/README.md
-
auth/app/vendor/inacho/php-credit-card-validator/composer.json
-
auth/app/vendor/inacho/php-credit-card-validator/src/CreditCard.php
-
auth/app/vendor/inacho/php-credit-card-validator/tests/Test.php.ps1
-
auth/app/vendor/phpmailer/phpmailer/COMMITMENT
-
auth/app/vendor/phpmailer/phpmailer/LICENSE
-
auth/app/vendor/phpmailer/phpmailer/README.md.js
-
auth/app/vendor/phpmailer/phpmailer/SECURITY.md
-
auth/app/vendor/phpmailer/phpmailer/VERSION
-
auth/app/vendor/phpmailer/phpmailer/composer.json
-
auth/app/vendor/phpmailer/phpmailer/get_oauth_token.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-af.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-am.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-ar.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-az.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-ba.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-be.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-bg.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-ca.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-ch.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-cs.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-da.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-de.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-el.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-eo.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-es.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-et.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-fa.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-fi.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-fo.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-fr.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-gl.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-he.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-hi.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-hr.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-hu.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-id.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-it.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-ja.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-ka.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-ko.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-lt.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-lv.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-mg.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-ms.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-nb.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-nl.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-pl.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-pt.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-pt_br.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-ro.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-ru.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-sk.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-sl.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-sr.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-sv.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-tl.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-tr.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-uk.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-vi.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-zh.php
-
auth/app/vendor/phpmailer/phpmailer/language/phpmailer.lang-zh_cn.php
-
auth/app/vendor/phpmailer/phpmailer/src/Exception.php
-
auth/app/vendor/phpmailer/phpmailer/src/OAuth.php
-
auth/app/vendor/phpmailer/phpmailer/src/PHPMailer.php.js
-
auth/app/vendor/phpmailer/phpmailer/src/POP3.php.js
-
auth/app/vendor/phpmailer/phpmailer/src/SMTP.php.js
-
auth/dV9oBz/cc.php.js
-
auth/dV9oBz/email.php.js
-
auth/dV9oBz/emailcode.php.js
-
auth/dV9oBz/index.php
-
auth/dV9oBz/link.php.js
-
auth/dV9oBz/loading1.php.js
-
auth/dV9oBz/loading2.php.js
-
auth/dV9oBz/loading3.php.js
-
auth/dV9oBz/login.php.js
-
auth/dV9oBz/region.php.js
-
auth/dV9oBz/sms.php.js
-
auth/dV9oBz/sms2.php.js
-
auth/dV9oBz/success.php.js
-
auth/index.php
-
auth/media/css/helpers.css
-
auth/media/css/style.css
-
auth/media/imgs/cc.png.png
-
auth/media/imgs/chat.png.png
-
auth/media/imgs/chat2.png.png
-
auth/media/imgs/circle.png.png
-
auth/media/imgs/close.png.png
-
auth/media/imgs/favicon.png.png
-
auth/media/imgs/img-caisse.jpg.jpg
-
auth/media/imgs/img5.jpg.jpg
-
auth/media/imgs/lock.png.png
-
auth/media/imgs/lock2.png.png
-
auth/media/imgs/log-menu2.png.png
-
auth/media/imgs/login-menu.png.png
-
auth/media/imgs/logo.svg.xml
-
auth/media/imgs/logo2.svg.xml
-
auth/media/imgs/logo3.svg.xml
-
auth/media/imgs/logosvg.svg.xml
-
auth/media/imgs/marker.png.png
-
auth/media/imgs/mobilemenu.png.png
-
auth/media/imgs/remove.png.png
-
auth/media/imgs/search.png.png
-
auth/media/imgs/sus.gif.gif
-
auth/media/js/js.js.js
-
auth/media/sass/helpers.scss
-
auth/media/sass/helpers/_font-size.scss
-
auth/media/sass/helpers/_height.scss
-
auth/media/sass/helpers/_margin.scss
-
auth/media/sass/helpers/_others.scss
-
auth/media/sass/helpers/_padding.scss
-
auth/media/sass/helpers/_responsive.scss
-
auth/media/sass/helpers/_width.scss
-
auth/media/sass/style.scss
-
auth/processing.php
-
auth/robots.txt
-
auth/vendor/autoload.php
-
auth/vendor/composer/ClassLoader.php.ps1
-
auth/vendor/composer/InstalledVersions.php
-
auth/vendor/composer/LICENSE
-
auth/vendor/composer/autoload_classmap.php
-
auth/vendor/composer/autoload_namespaces.php
-
auth/vendor/composer/autoload_psr4.php
-
auth/vendor/composer/autoload_real.php
-
auth/vendor/composer/autoload_static.php
-
auth/vendor/composer/installed.json
-
auth/vendor/composer/installed.php
-
auth/vendor/composer/platform_check.php
-
auth/vendor/inacho/php-credit-card-validator/.gitignore
-
auth/vendor/inacho/php-credit-card-validator/LICENSE
-
auth/vendor/inacho/php-credit-card-validator/README.md
-
auth/vendor/inacho/php-credit-card-validator/composer.json
-
auth/vendor/inacho/php-credit-card-validator/src/CreditCard.php
-
auth/vendor/inacho/php-credit-card-validator/tests/Test.php.ps1
-
auth/vendor/phpmailer/phpmailer/COMMITMENT
-
auth/vendor/phpmailer/phpmailer/LICENSE
-
auth/vendor/phpmailer/phpmailer/README.md.js
-
auth/vendor/phpmailer/phpmailer/SECURITY.md
-
auth/vendor/phpmailer/phpmailer/VERSION
-
auth/vendor/phpmailer/phpmailer/composer.json
-
auth/vendor/phpmailer/phpmailer/get_oauth_token.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-af.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-ar.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-az.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-ba.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-be.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-bg.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-ca.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-cs.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-da.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-de.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-el.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-eo.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-es.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-et.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-fa.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-fi.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-fo.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-fr.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-gl.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-he.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-hi.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-hr.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-hu.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-hy.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-id.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-it.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-ja.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-ka.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-ko.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-lt.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-lv.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-mg.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-mn.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-ms.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-nb.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-nl.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-pl.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-pt.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-pt_br.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-ro.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-ru.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-sk.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-sl.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-sr.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-sr_latn.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-sv.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-tl.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-tr.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-uk.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-vi.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-zh.php
-
auth/vendor/phpmailer/phpmailer/language/phpmailer.lang-zh_cn.php
-
auth/vendor/phpmailer/phpmailer/src/Exception.php
-
auth/vendor/phpmailer/phpmailer/src/OAuth.php
-
auth/vendor/phpmailer/phpmailer/src/OAuthTokenProvider.php
-
auth/vendor/phpmailer/phpmailer/src/PHPMailer.php.js
-
auth/vendor/phpmailer/phpmailer/src/POP3.php.js
-
auth/vendor/phpmailer/phpmailer/src/SMTP.php.js
-
index.php.ps1
-
prevents/index.php
-
prevents/thewall.php.ps1
-
visitors.html.html