Overview

overview

3

Static

static

1

HB_BlogB2/...ar.vbs

windows7-x64

1

HB_BlogB2/...ar.vbs

windows10-2004-x64

1

HB_BlogB2/...er.vbs

windows7-x64

1

HB_BlogB2/...er.vbs

windows10-2004-x64

1

HB_BlogB2/...in.asp

windows7-x64

3

HB_BlogB2/...in.asp

windows10-2004-x64

3

HB_BlogB2/...dd.vbs

windows7-x64

1

HB_BlogB2/...dd.vbs

windows10-2004-x64

1

HB_BlogB2/...er.vbs

windows7-x64

1

HB_BlogB2/...er.vbs

windows10-2004-x64

1

HB_BlogB2/...ys.vbs

windows7-x64

1

HB_BlogB2/...ys.vbs

windows10-2004-x64

1

HB_BlogB2/...op.asp

windows7-x64

3

HB_BlogB2/...op.asp

windows10-2004-x64

3

HB_BlogB2/HB_ajax.vbs

windows7-x64

1

HB_BlogB2/HB_ajax.vbs

windows10-2004-x64

1

HB_BlogB2/HB_cach.vbs

windows7-x64

1

HB_BlogB2/HB_cach.vbs

windows10-2004-x64

1

HB_BlogB2/HB_conn.vbs

windows7-x64

1

HB_BlogB2/HB_conn.vbs

windows10-2004-x64

1

HB_BlogB2/...er.asp

windows7-x64

3

HB_BlogB2/...er.asp

windows10-2004-x64

3

HB_BlogB2/HB_inc.vbs

windows7-x64

1

HB_BlogB2/HB_inc.vbs

windows10-2004-x64

1

HB_BlogB2/...ar.vbs

windows7-x64

1

HB_BlogB2/...ar.vbs

windows10-2004-x64

1

HB_BlogB2/...on.vbs

windows7-x64

1

HB_BlogB2/...on.vbs

windows10-2004-x64

1

HB_BlogB2/...de.vbs

windows7-x64

1

HB_BlogB2/...de.vbs

windows10-2004-x64

1

HB_BlogB2/...de.vbs

windows7-x64

1

HB_BlogB2/...de.vbs

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2500853834a756ece906bf4dbee8f311_JaffaCakes118

  • Size

    638KB

  • MD5

    2500853834a756ece906bf4dbee8f311

  • SHA1

    2b4b769aa0e8429b85ce9fb04b98499fec461d08

  • SHA256

    4a0700c6aa1afb3380d6b2fd0823d40480e19ff23f539226129b4562e71ee4f5

  • SHA512

    eef2f46d91fe3554cb724ef2a8a778dadba4bde74a22f2345098a966647d1c95016f72bbe1873b045088931d9c6e9eb21ec7e84f3c56b70f54c0594bf42c3782

  • SSDEEP

    12288:oi5f/CpU9HazGKLvnO4oibKq3aGlPMQXJ9W3Jew6ikBVIvdBB:oqCOHafO43XqGpMQXeJewJMVI/B

Score
1/10

Malware Config

Signatures

Files

  • 2500853834a756ece906bf4dbee8f311_JaffaCakes118
    .rar
  • HB_BlogB2/HB_Calendar.asp
    .vbs
  • HB_BlogB2/HB_Member.asp
    .vbs
  • HB_BlogB2/HB_admin.asp
  • HB_BlogB2/HB_admin_add.asp
    .vbs
  • HB_BlogB2/HB_admin_other.asp
    .vbs
  • HB_BlogB2/HB_admin_sys.asp
    .vbs
  • HB_BlogB2/HB_admin_top.asp
  • HB_BlogB2/HB_ajax.asp
    .vbs
  • HB_BlogB2/HB_cach.asp
    .vbs
  • HB_BlogB2/HB_conn.asp
    .vbs
  • HB_BlogB2/HB_data/data.mdb
  • HB_BlogB2/HB_footer.asp
  • HB_BlogB2/HB_images/OK.gif
    .gif
  • HB_BlogB2/HB_images/admin.css
  • HB_BlogB2/HB_images/admin/tableftI.gif
    .gif
  • HB_BlogB2/HB_images/admin/tabrightI.gif
    .gif
  • HB_BlogB2/HB_images/admin/titlebar_bg.png
    .png
  • HB_BlogB2/HB_images/emot/em1.gif
    .gif
  • HB_BlogB2/HB_images/emot/em10.gif
    .gif
  • HB_BlogB2/HB_images/emot/em11.gif
    .gif
  • HB_BlogB2/HB_images/emot/em12.gif
    .gif
  • HB_BlogB2/HB_images/emot/em2.gif
    .gif
  • HB_BlogB2/HB_images/emot/em3.gif
    .gif
  • HB_BlogB2/HB_images/emot/em4.gif
    .gif
  • HB_BlogB2/HB_images/emot/em5.gif
    .gif
  • HB_BlogB2/HB_images/emot/em6.gif
    .gif
  • HB_BlogB2/HB_images/emot/em7.gif
    .gif
  • HB_BlogB2/HB_images/emot/em8.gif
    .gif
  • HB_BlogB2/HB_images/emot/em9.gif
    .gif
  • HB_BlogB2/HB_images/emot/face1.gif
    .gif
  • HB_BlogB2/HB_images/emot/face2.gif
    .gif
  • HB_BlogB2/HB_images/emot/face3.gif
    .gif
  • HB_BlogB2/HB_images/emot/face4.gif
    .gif
  • HB_BlogB2/HB_images/emot/face5.gif
    .gif
  • HB_BlogB2/HB_images/emot/face6.gif
    .gif
  • HB_BlogB2/HB_images/emot/face7.gif
    .gif
  • HB_BlogB2/HB_images/err.gif
    .gif
  • HB_BlogB2/HB_images/ico/1.gif
    .gif
  • HB_BlogB2/HB_images/ico/10.gif
    .gif
  • HB_BlogB2/HB_images/ico/11.gif
    .gif
  • HB_BlogB2/HB_images/ico/12.gif
    .gif
  • HB_BlogB2/HB_images/ico/13.gif
    .gif
  • HB_BlogB2/HB_images/ico/14.gif
    .gif
  • HB_BlogB2/HB_images/ico/15.gif
    .gif
  • HB_BlogB2/HB_images/ico/16.gif
    .gif
  • HB_BlogB2/HB_images/ico/17.gif
    .gif
  • HB_BlogB2/HB_images/ico/18.gif
    .gif
  • HB_BlogB2/HB_images/ico/19.gif
    .gif
  • HB_BlogB2/HB_images/ico/2.gif
    .gif
  • HB_BlogB2/HB_images/ico/20.gif
    .gif
  • HB_BlogB2/HB_images/ico/21.gif
    .gif
  • HB_BlogB2/HB_images/ico/22.gif
    .gif
  • HB_BlogB2/HB_images/ico/23.gif
    .gif
  • HB_BlogB2/HB_images/ico/24.gif
    .gif
  • HB_BlogB2/HB_images/ico/3.gif
    .gif
  • HB_BlogB2/HB_images/ico/4.gif
    .gif
  • HB_BlogB2/HB_images/ico/5.gif
    .gif
  • HB_BlogB2/HB_images/ico/6.gif
    .gif
  • HB_BlogB2/HB_images/ico/7.gif
    .gif
  • HB_BlogB2/HB_images/ico/8.gif
    .gif
  • HB_BlogB2/HB_images/ico/9.gif
    .gif
  • HB_BlogB2/HB_images/loading.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/1.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/10.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/11.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/12.gif
  • HB_BlogB2/HB_images/magicface/gif/13.gif
  • HB_BlogB2/HB_images/magicface/gif/14.gif
  • HB_BlogB2/HB_images/magicface/gif/15.gif
  • HB_BlogB2/HB_images/magicface/gif/16.gif
  • HB_BlogB2/HB_images/magicface/gif/17.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/18.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/19.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/2.gif
  • HB_BlogB2/HB_images/magicface/gif/20.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/21.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/22.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/23.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/24.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/25.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/26.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/27.gif
  • HB_BlogB2/HB_images/magicface/gif/28.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/29.gif
  • HB_BlogB2/HB_images/magicface/gif/3.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/30.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/31.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/32.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/33.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/34.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/35.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/4.gif
  • HB_BlogB2/HB_images/magicface/gif/5.gif
  • HB_BlogB2/HB_images/magicface/gif/6.gif
  • HB_BlogB2/HB_images/magicface/gif/7.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/8.gif
    .gif
  • HB_BlogB2/HB_images/magicface/gif/9.gif
    .gif
  • HB_BlogB2/HB_images/magicface/swf/1.swf
  • HB_BlogB2/HB_images/magicface/swf/10.swf
  • HB_BlogB2/HB_images/magicface/swf/11.swf
  • HB_BlogB2/HB_images/magicface/swf/12.swf
  • HB_BlogB2/HB_images/magicface/swf/13.swf
  • HB_BlogB2/HB_images/magicface/swf/14.swf
  • HB_BlogB2/HB_images/magicface/swf/15.swf
  • HB_BlogB2/HB_images/magicface/swf/16.swf
  • HB_BlogB2/HB_images/magicface/swf/17.swf
  • HB_BlogB2/HB_images/magicface/swf/18.swf
  • HB_BlogB2/HB_images/magicface/swf/19.swf
  • HB_BlogB2/HB_images/magicface/swf/2.swf
  • HB_BlogB2/HB_images/magicface/swf/20.swf
  • HB_BlogB2/HB_images/magicface/swf/21.swf
  • HB_BlogB2/HB_images/magicface/swf/22.swf
  • HB_BlogB2/HB_images/magicface/swf/23.swf
  • HB_BlogB2/HB_images/magicface/swf/24.swf
  • HB_BlogB2/HB_images/magicface/swf/25.swf
  • HB_BlogB2/HB_images/magicface/swf/26.swf
  • HB_BlogB2/HB_images/magicface/swf/27.swf
  • HB_BlogB2/HB_images/magicface/swf/28.swf
  • HB_BlogB2/HB_images/magicface/swf/29.swf
  • HB_BlogB2/HB_images/magicface/swf/3.swf
  • HB_BlogB2/HB_images/magicface/swf/30.swf
  • HB_BlogB2/HB_images/magicface/swf/31.swf
  • HB_BlogB2/HB_images/magicface/swf/32.swf
  • HB_BlogB2/HB_images/magicface/swf/33.swf
  • HB_BlogB2/HB_images/magicface/swf/34.swf
  • HB_BlogB2/HB_images/magicface/swf/35.swf
  • HB_BlogB2/HB_images/magicface/swf/4.swf
  • HB_BlogB2/HB_images/magicface/swf/5.swf
  • HB_BlogB2/HB_images/magicface/swf/6.swf
  • HB_BlogB2/HB_images/magicface/swf/7.swf
  • HB_BlogB2/HB_images/magicface/swf/8.swf
  • HB_BlogB2/HB_images/magicface/swf/9.swf
  • HB_BlogB2/HB_images/text_bg/1.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/10.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/11.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/12.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/13.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/2.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/3.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/4.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/5.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/6.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/7.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/8.gif
    .gif
  • HB_BlogB2/HB_images/text_bg/9.gif
    .gif
  • HB_BlogB2/HB_images/trash_can.gif
    .gif
  • HB_BlogB2/HB_images/ubb/ad.gif
    .gif
  • HB_BlogB2/HB_images/ubb/bb_mem.gif
    .gif
  • HB_BlogB2/HB_images/ubb/bold.gif
    .gif
  • HB_BlogB2/HB_images/ubb/buy.gif
    .gif
  • HB_BlogB2/HB_images/ubb/center.gif
    .gif
  • HB_BlogB2/HB_images/ubb/code.gif
    .gif
  • HB_BlogB2/HB_images/ubb/color.gif
    .gif
  • HB_BlogB2/HB_images/ubb/email.gif
    .gif
  • HB_BlogB2/HB_images/ubb/face.gif
    .gif
  • HB_BlogB2/HB_images/ubb/html.gif
    .gif
  • HB_BlogB2/HB_images/ubb/image.gif
    .gif
  • HB_BlogB2/HB_images/ubb/italicize.gif
    .gif
  • HB_BlogB2/HB_images/ubb/p.gif
    .gif
  • HB_BlogB2/HB_images/ubb/quote.gif
    .gif
  • HB_BlogB2/HB_images/ubb/song.gif
    .gif
  • HB_BlogB2/HB_images/ubb/strike.gif
    .gif
  • HB_BlogB2/HB_images/ubb/underline.gif
    .gif
  • HB_BlogB2/HB_images/ubb/url.gif
    .gif
  • HB_BlogB2/HB_images/weather/clouds.gif
    .gif
  • HB_BlogB2/HB_images/weather/cloudy.gif
    .gif
  • HB_BlogB2/HB_images/weather/happiness.gif
    .gif
  • HB_BlogB2/HB_images/weather/lightning.gif
    .gif
  • HB_BlogB2/HB_images/weather/rain.gif
    .gif
  • HB_BlogB2/HB_images/weather/snow.gif
    .gif
  • HB_BlogB2/HB_images/weather/sunny.gif
    .gif
  • HB_BlogB2/HB_inc.asp
    .vbs
  • HB_BlogB2/HB_include/Calendar.asp
    .vbs
  • HB_BlogB2/HB_include/Function.asp
    .vbs
  • HB_BlogB2/HB_include/Subcode.asp
    .vbs
  • HB_BlogB2/HB_include/Ubbcode.asp
    .vbs
  • HB_BlogB2/HB_include/check_U.asp
    .vbs
  • HB_BlogB2/HB_include/getcode.asp
  • HB_BlogB2/HB_include/md5code.asp
    .vbs
  • HB_BlogB2/HB_include/ubbcode.js
    .js
  • HB_BlogB2/HB_login.asp
    .vbs
  • HB_BlogB2/HB_show.asp
    .vbs
  • HB_BlogB2/HB_skin/default/Adv.css
  • HB_BlogB2/HB_skin/default/Skin_shot.jpg
    .jpg
  • HB_BlogB2/HB_skin/default/blog_file.gif
    .gif
  • HB_BlogB2/HB_skin/default/header.gif
    .gif
  • HB_BlogB2/HB_skin/default/install.xml
  • HB_BlogB2/HB_skin/default/list.gif
    .gif
  • HB_BlogB2/HB_skin/default/style.css
  • HB_BlogB2/HB_skin/默认简单/Adv.css
  • HB_BlogB2/HB_skin/默认简单/Skin_shot.jpg
    .jpg
  • HB_BlogB2/HB_skin/默认简单/blog_file.gif
    .gif
  • HB_BlogB2/HB_skin/默认简单/core.gif
    .gif
  • HB_BlogB2/HB_skin/默认简单/install.xml
  • HB_BlogB2/HB_skin/默认简单/list.gif
    .gif
  • HB_BlogB2/HB_skin/默认简单/logo.gif
    .gif
  • HB_BlogB2/HB_skin/默认简单/style.css
  • HB_BlogB2/HB_top.asp
  • HB_BlogB2/HB_upload.asp
    .vbs
  • HB_BlogB2/global.asa
    .html .vbs polyglot
  • HB_BlogB2/install.asp
    .vbs
  • HB_BlogB2/kuhanzhu.asp
    .vbs
  • HB_BlogB2/发布说明.txt
  • HB_BlogB2/新云软件.url
    .url