Overview

overview

3

Static

static

1

Download.vbs

windows7-x64

1

Download.vbs

windows10-2004-x64

1

admin/logout.js

windows7-x64

3

admin/logout.js

windows10-2004-x64

3

admin/ppwwdd.asp

windows7-x64

3

admin/ppwwdd.asp

windows10-2004-x64

3

admin/新�...��.url

windows7-x64

1

admin/新�...��.url

windows10-2004-x64

1

config/chkAdmin.asp

windows7-x64

3

config/chkAdmin.asp

windows10-2004-x64

3

config/chklogin.vbs

windows7-x64

1

config/chklogin.vbs

windows10-2004-x64

1

config/config.asp

windows7-x64

3

config/config.asp

windows10-2004-x64

3

config/conn.vbs

windows7-x64

1

config/conn.vbs

windows10-2004-x64

1

config/include.vbs

windows7-x64

1

config/include.vbs

windows10-2004-x64

1

config/md5.vbs

windows7-x64

1

config/md5.vbs

windows10-2004-x64

1

css/`~0OO0...O`.asp

windows7-x64

3

css/`~0OO0...O`.asp

windows10-2004-x64

3

hconly_fil...er.vbs

windows7-x64

1

hconly_fil...er.vbs

windows10-2004-x64

1

hconly_include.vbs

windows7-x64

1

hconly_include.vbs

windows10-2004-x64

1

hconly_main.asp

windows7-x64

3

hconly_main.asp

windows10-2004-x64

3

hconly_upL...ss.vbs

windows7-x64

1

hconly_upL...ss.vbs

windows10-2004-x64

1

hconly_upload.vbs

windows7-x64

1

hconly_upload.vbs

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    35b62ff870603df605a4809871a03e91_JaffaCakes118

  • Size

    295KB

  • MD5

    35b62ff870603df605a4809871a03e91

  • SHA1

    c5a4d31677fee4369c5151c4de2c763b23200662

  • SHA256

    96cef49855da823e069afc8ab79fa7647cbe0d32abf66b8f5695ae6b233841c4

  • SHA512

    ff709fb81de3cd65db1400c4f6320c2b38733ab967d0323e1d9d5605edab10112e57488828501fd6fff2f12ff92a765de26e17a30de39bb67fbd7dd821276cd8

  • SSDEEP

    6144:xJ//YszXKc0C+fLHJcCQZ1OHCj5dEWM3i7Zf7RfkbH99VpzkYst:x1Tz6ct+fVLo1OUGji7ZRfk733kHt

Score
1/10

Malware Config

Signatures

Files

  • 35b62ff870603df605a4809871a03e91_JaffaCakes118
    .rar
  • Download.asp
    .vbs
  • admin/logout.asp
    .js
  • admin/ppwwdd.asp
    .asp .vbs polyglot
  • admin/新云软件.url
    .url
  • config/chkAdmin.asp
  • config/chklogin.asp
    .vbs
  • config/config.asp
  • config/conn.asp
    .vbs
  • config/include.asp
    .vbs
  • config/md5.asp
    .vbs
  • css/`~0OO00O0OO0O!0OOO00O`.asp
  • css/hconly_main.css
  • hconly_filemanager.asp
    .vbs
  • hconly_include.asp
    .vbs
  • hconly_main.asp
    .asp .js polyglot
  • hconly_upLoadclass.asp
    .vbs
  • hconly_upload.asp
    .vbs
  • images/all_toolbar_tiny.gif
    .gif
  • images/arrows_down.gif
  • images/arrows_up.gif
  • images/baidu.jpg
    .jpg
  • images/baocun.jpg
    .jpg
  • images/bg_progress.png
    .png
  • images/bg_topbar.png
    .png
  • images/center.gif
    .gif
  • images/chongmingming.jpg
    .jpg
  • images/chuangjian.gif
  • images/close.gif
    .gif
  • images/css.gif
    .gif
  • images/del.gif
    .gif
  • images/doc.gif
  • images/down.gif
    .gif
  • images/ecpl_home.gif
    .gif
  • images/exe.gif
    .gif
  • images/expl_back.gif
  • images/expl_newfile.gif
    .gif
  • images/expl_reload.gif
  • images/expl_up.gif
    .gif
  • images/fanhui.jpg
    .jpg
  • images/file.gif
    .gif
  • images/file.png
    .png
  • images/folder.gif
    .gif
  • images/gif.gif
    .gif
  • images/hconly_logo.gif
    .gif
  • images/head.gif
  • images/header_bg.gif
  • images/htm.gif
    .gif
  • images/html.gif
    .gif
  • images/inc.gif
    .gif
  • images/jpg.gif
    .gif
  • images/js.gif
    .gif
  • images/lnk.gif
    .gif
  • images/log.gif
    .gif
  • images/login.gif
  • images/logo.jpg
    .jpg
  • images/mdb.gif
    .gif
  • images/more.gif
    .gif
  • images/pdf.gif
    .gif
  • images/pwd.gif
    .gif
  • images/qianjin.gif
  • images/queding.jpg
    .jpg
  • images/quxiao.jpg
    .jpg
  • images/qxfh.jpg
    .jpg
  • images/rar.gif
    .gif
  • images/rename.gif
    .gif
  • images/rename1.gif
    .gif
  • images/rename2.gif
    .gif
  • images/replace.gif
    .gif
  • images/rx_2.gif
    .gif
  • images/shtml.gif
    .gif
  • images/sr.gif
    .gif
  • images/swf.gif
    .gif
  • images/tihuan.jpg
    .jpg
  • images/txt.gif
    .gif
  • images/unknown.gif
    .gif
  • images/upload.gif
    .gif
  • images/wenjianjia.gif
    .gif
  • images/word.gif
    .gif
  • images/xls.gif
    .gif
  • images/zip.gif
    .gif
  • index.asp
    .asp
  • login.asp
    .asp
  • tools/addurl.htm
    .html
  • tools/color/color1.htm
    .html
  • tools/color/color2.htm
    .html
  • tools/color/color3.htm
    .html
  • tools/color/color4.htm
    .html
  • tools/color/color5.htm
    .html
  • tools/color/color6.htm
    .js
  • tools/color/images/QQ.jpg
    .jpg
  • tools/color/images/colorwheel.jpg
    .jpg
  • tools/color/index.htm
    .js
  • tools/hconly_helper_sr.zip
    .zip
  • web(¼Ϊhconly).asp
    .asp
  • ѹmdb.vbs
    .vbs
  • ѹʹ˵.txt
  • tools/htmlrun/htmlrun.htm
    .html .js polyglot
  • tools/seo/0O00OOOO00O0O0.asp
  • tools/seo/Conn.asp
    .asp .vbs polyglot
  • tools/seo/bg.png
    .png
  • tools/seo/bg2.gif
    .gif
  • tools/seo/bg2.png
    .png
  • tools/seo/body_bg.gif
    .gif
  • tools/seo/c.css
  • tools/seo/cnrank.asp
    .vbs
  • tools/seo/css.css
  • tools/seo/index.asp
    .html
  • tools/seo/js/scroll.js
  • tools/seo/pop_bg.png
    .png
  • tools/seo/seo.asp
    .vbs
  • tools/seo/seo.css
  • tools/seo/seo.html
    .html
  • tools/shua_pv/1.asp
    .vbs
  • tools/shua_pv/2.asp
    .vbs
  • tools/shua_pv/fadmy.asa
  • tools/shua_pv/images/bj.gif
    .gif
  • tools/shua_pv/images/bj1.GIF
    .gif
  • tools/shua_pv/images/head.jpg
    .jpg
  • tools/shua_pv/images/webmail.css
  • tools/shua_pv/index.asp
    .vbs
  • tools/shua_pv/shua.asp
    .vbs
  • tools/tanzhen_hconly.asp
    .asp .vbs polyglot
  • tools/wordreplace.asp
    .vbs
  • 使用说明.txt