Overview
overview
3Static
static
1ccproj/app...t.html
windows7-x64
1ccproj/app...t.html
windows10-2004-x64
1ccproj/cac...yml.js
windows7-x64
3ccproj/cac...yml.js
windows10-2004-x64
3ccproj/cac...ml.ps1
windows7-x64
3ccproj/cac...ml.ps1
windows10-2004-x64
3ccproj/symfony
ubuntu-18.04-amd64
1ccproj/symfony
debian-9-armhf
1ccproj/symfony
debian-9-mips
1ccproj/symfony
debian-9-mipsel
1js/agent.js
windows7-x64
3js/agent.js
windows10-2004-x64
3js/demo_array.js
windows7-x64
3js/demo_array.js
windows10-2004-x64
3js/demo_as...ray.js
windows7-x64
3js/demo_as...ray.js
windows10-2004-x64
3js/demo_hello.js
windows7-x64
3js/demo_hello.js
windows10-2004-x64
3js/rss/rss.ps1
windows7-x64
3js/rss/rss.ps1
windows10-2004-x64
3js/rss/rss_cache.js
windows7-x64
3js/rss/rss_cache.js
windows10-2004-x64
3js/rss/rss_parse.js
windows7-x64
3js/rss/rss_parse.js
windows10-2004-x64
3userclass/...yns.js
windows7-x64
3userclass/...yns.js
windows10-2004-x64
3userclass/...ore.js
windows7-x64
3userclass/...ore.js
windows10-2004-x64
3userclass/...sql.js
windows7-x64
3userclass/...sql.js
windows10-2004-x64
3userclass/1/add/ls.js
windows7-x64
3userclass/1/add/ls.js
windows10-2004-x64
3Static task
static1
Behavioral task
behavioral1
Sample
ccproj/apps/ccapp/templates/layout.html
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
ccproj/apps/ccapp/templates/layout.html
Resource
win10v2004-20240709-en
Behavioral task
behavioral3
Sample
ccproj/cache/ccapp/prod/config/config_bootstrap_compile.yml.js
Resource
win7-20240705-en
Behavioral task
behavioral4
Sample
ccproj/cache/ccapp/prod/config/config_bootstrap_compile.yml.js
Resource
win10v2004-20240709-en
Behavioral task
behavioral5
Sample
ccproj/cache/ccapp/prod/config/config_core_compile.yml.ps1
Resource
win7-20240704-en
Behavioral task
behavioral6
Sample
ccproj/cache/ccapp/prod/config/config_core_compile.yml.ps1
Resource
win10v2004-20240709-en
Behavioral task
behavioral7
Sample
ccproj/symfony
Resource
ubuntu1804-amd64-20240508-en
Behavioral task
behavioral8
Sample
ccproj/symfony
Resource
debian9-armhf-20240418-en
Behavioral task
behavioral9
Sample
ccproj/symfony
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral10
Sample
ccproj/symfony
Resource
debian9-mipsel-20240226-en
Behavioral task
behavioral11
Sample
js/agent.js
Resource
win7-20240705-en
Behavioral task
behavioral12
Sample
js/agent.js
Resource
win10v2004-20240709-en
Behavioral task
behavioral13
Sample
js/demo_array.js
Resource
win7-20240704-en
Behavioral task
behavioral14
Sample
js/demo_array.js
Resource
win10v2004-20240704-en
Behavioral task
behavioral15
Sample
js/demo_assoc_array.js
Resource
win7-20240708-en
Behavioral task
behavioral16
Sample
js/demo_assoc_array.js
Resource
win10v2004-20240709-en
Behavioral task
behavioral17
Sample
js/demo_hello.js
Resource
win7-20240708-en
Behavioral task
behavioral18
Sample
js/demo_hello.js
Resource
win10v2004-20240709-en
Behavioral task
behavioral19
Sample
js/rss/rss.ps1
Resource
win7-20240705-en
Behavioral task
behavioral20
Sample
js/rss/rss.ps1
Resource
win10v2004-20240709-en
Behavioral task
behavioral21
Sample
js/rss/rss_cache.js
Resource
win7-20240705-en
Behavioral task
behavioral22
Sample
js/rss/rss_cache.js
Resource
win10v2004-20240709-en
Behavioral task
behavioral23
Sample
js/rss/rss_parse.js
Resource
win7-20240708-en
Behavioral task
behavioral24
Sample
js/rss/rss_parse.js
Resource
win10v2004-20240709-en
Behavioral task
behavioral25
Sample
userclass/1/add/dyns.js
Resource
win7-20240705-en
Behavioral task
behavioral26
Sample
userclass/1/add/dyns.js
Resource
win10v2004-20240709-en
Behavioral task
behavioral27
Sample
userclass/1/add/ez_sql_core.js
Resource
win7-20240705-en
Behavioral task
behavioral28
Sample
userclass/1/add/ez_sql_core.js
Resource
win10v2004-20240709-en
Behavioral task
behavioral29
Sample
userclass/1/add/ez_sql_mysql.js
Resource
win7-20240704-en
Behavioral task
behavioral30
Sample
userclass/1/add/ez_sql_mysql.js
Resource
win10v2004-20240709-en
Behavioral task
behavioral31
Sample
userclass/1/add/ls.js
Resource
win7-20240705-en
Behavioral task
behavioral32
Sample
userclass/1/add/ls.js
Resource
win10v2004-20240709-en
General
-
Target
372a1c00c86fa47726592b8d4248f1b4_JaffaCakes118
-
Size
959KB
-
MD5
372a1c00c86fa47726592b8d4248f1b4
-
SHA1
346a088bbf30ba81ab549f2e88f27c9c808daf1a
-
SHA256
4632aad7783506843b8db1a37784baa49b91f192afcc1874b21f99a103f57026
-
SHA512
385056c243eb362c0c090b573bd90ea72cd92ce60c1b11ad9e4c51f66419895b2c2aaa65696b57ba904bfcef44105dec885c6ca0cd5e5c55ab4c959d82cbe445
-
SSDEEP
24576:oIv/UyVmAxz+TtVCsOE8TbbK2RY03ecNzECBBIG5:JvUrCsOFKm3pzESIc
Malware Config
Signatures
Files
-
372a1c00c86fa47726592b8d4248f1b4_JaffaCakes118.gz
-
fr.23248.0.work-www(050508).tar.tar .js polyglot
-
ccproj/apps/ccapp/config/app.yml
-
ccproj/apps/ccapp/config/cache.yml
-
ccproj/apps/ccapp/config/config.php
-
ccproj/apps/ccapp/config/factories.yml
-
ccproj/apps/ccapp/config/filters.yml
-
ccproj/apps/ccapp/config/i18n.yml
-
ccproj/apps/ccapp/config/logging.yml
-
ccproj/apps/ccapp/config/routing.yml
-
ccproj/apps/ccapp/config/security.yml
-
ccproj/apps/ccapp/config/settings.yml
-
ccproj/apps/ccapp/config/view.yml
-
ccproj/apps/ccapp/lib/myUser.class.php
-
ccproj/apps/ccapp/templates/layout.php.html
-
ccproj/cache/ccapp/prod/config/VERSION
-
ccproj/cache/ccapp/prod/config/config_autoload.yml.php
-
ccproj/cache/ccapp/prod/config/config_bootstrap_compile.yml.php.js
-
ccproj/cache/ccapp/prod/config/config_config_handlers.yml.php
-
ccproj/cache/ccapp/prod/config/config_core_compile.yml.php.ps1
-
ccproj/cache/ccapp/prod/config/config_databases.yml.php
-
ccproj/cache/ccapp/prod/config/config_factories.yml.php
-
ccproj/cache/ccapp/prod/config/config_i18n.yml.php
-
ccproj/cache/ccapp/prod/config/config_logging.yml.php
-
ccproj/cache/ccapp/prod/config/config_php.yml.php
-
ccproj/cache/ccapp/prod/config/config_routing.yml.php
-
ccproj/cache/ccapp/prod/config/config_settings.yml.php
-
ccproj/cache/ccapp/prod/config/modules_default_config_filters.yml.php
-
ccproj/cache/ccapp/prod/config/modules_default_config_module.yml.php
-
ccproj/cache/ccapp/prod/config/modules_default_config_security.yml.php
-
ccproj/cache/ccapp/prod/config/modules_default_config_view.yml.php
-
ccproj/config/config.php
-
ccproj/config/databases.yml
-
ccproj/config/propel.ini
-
ccproj/config/properties.ini
-
ccproj/config/rsync_exclude.txt
-
ccproj/symfony.sh linux
-
ccproj/test/bootstrap/functional.php
-
ccproj/test/bootstrap/unit.php
-
ccproj/web/.htaccess
-
ccproj/web/ccapp_dev.php
-
ccproj/web/css/main.css
-
ccproj/web/index.php
-
ccproj/web/robots.txt
-
js/Readme.txt
-
js/agent.php.js
-
js/demo_array.php.js
-
js/demo_assoc_array.php.js
-
js/demo_calc.php
-
js/demo_external.php
-
js/demo_hello.php.js
-
js/demo_index.php
-
js/demo_portal.php
-
js/index.php
-
js/rss/rss.php.ps1
-
js/rss/rss_cache.inc.js
-
js/rss/rss_fetch.inc
-
js/rss/rss_parse.inc.js
-
js/rss/rss_utils.inc
-
userclass/1/add/del.gif.gif
-
userclass/1/add/dyns.js.js
-
userclass/1/add/exit.gif.gif
-
userclass/1/add/ez_sql_core.php.js
-
userclass/1/add/ez_sql_mysql.php.js
-
userclass/1/add/ls.js.js
-
userclass/1/add/ls1.gif.gif
-
userclass/1/add/ls2.gif.gif
-
userclass/1/add/repstyle.css
-
userclass/1/add/save.gif.gif
-
userclass/1/edit.php
-
userclass/1/exit.png.png
-
userclass/1/index.php.html
-
userclass/1/login.php.js
-
userclass/1/repzd.php.sh .ps1 linux polyglot
-
userclass/1/simpleLogin.php
-
userclass/1/simpleLoginDoc.txt
-
userclass/1/ubd.php
-
userclass/1/um.php
-
userclass/access.class.php.js
-
userclass/cc.php
-
userclass/example1.php
-
userclass/example2.php
-
userclass/example3.php
-
xc/1.php.js
-
xc/ajax/1
-
xc/ajax/1.html
-
xc/ajax/100108/1.html.html .js polyglot
-
xc/ajax/100108/555
-
xc/ajax/100108/aj.js.js
-
xc/ajax/100108/aj.js~.js
-
xc/ajax/100108/atest.php
-
xc/ajax/100108/cc.html.html .js polyglot
-
xc/ajax/100108/cc.html~.html
-
xc/ajax/100108/cc1.html.html
-
xc/ajax/100108/cc1.html~.html
-
xc/ajax/100108/index.html.html
-
xc/ajax/100108/index.html~.html .js polyglot
-
xc/ajax/100108/mt.js.js
-
xc/ajax/100108/style.css
-
xc/ajax/100108/temp/Ajax_files/demos.js.js
-
xc/ajax/100108/temp/Ajax_files/header.css
-
xc/ajax/100108/temp/Ajax_files/mootools.js.js
-
xc/ajax/100108/temp/Ajax_files/reset.css
-
xc/ajax/100108/temp/Ajax_files/style.css
-
xc/ajax/100108/temp/Ajax_files/style_002.css
-
xc/ajax/100108/temp/index.html.html .js polyglot
-
xc/ajax/110108/gsearch1.html
-
xc/ajax/110108/inc/1.txt
-
xc/ajax/110108/inc/2.txt
-
xc/ajax/110108/inc/3.txt
-
xc/ajax/110108/index.html.html .js polyglot
-
xc/ajax/110108/mootools.js.js
-
xc/ajax/110108/mt.js.js
-
xc/ajax/2
-
xc/ajax/atest.php
-
xc/ajax/capt.js.js
-
xc/ajax/capt.js~.js
-
xc/ajax/ctest.php
-
xc/ajax/index.html.html
-
xc/ajax/index.html~.html
-
xc/ajax/mt.js.js
-
xc/ajax/pwd/??????????.doc.doc windows office2003
-
xc/ajax/pwd/FAQ_Cwork.doc.doc windows office2003
-
xc/ajax/pwd/auth.php.js
-
xc/ajax/pwd/config.php
-
xc/ajax/pwd/functions.php
-
xc/ajax/pwd/log-db.php
-
xc/ajax/pwd/users-db.php
-
xc/contacts.inc
-
xc/cooledit/1/cc_head_left.gif
-
xc/cooledit/1/cc_head_right.gif.gif
-
xc/cooledit/1/ccbg.gif.gif
-
xc/cooledit/1/header_bg.png.png
-
xc/cooledit/1/header_bg_left.png.png
-
xc/cooledit/1/header_bg_right.png.png
-
xc/cooledit/1/index.html.html
-
xc/cooledit/1/l.gif
-
xc/cooledit/1/style.css
-
xc/cooledit/8th.gif.gif
-
xc/cooledit/archOK.tar.tar
-
1/cc_head_left.gif
-
1/cc_head_right.gif.gif
-
1/ccbg.gif.gif
-
1/header_bg.png.png
-
1/header_bg_left.png.png
-
1/header_bg_right.png.png
-
1/index.html.html
-
1/l.gif
-
1/style.css
-
einstein.gif.gif
-
footer.inc
-
gsearch.html
-
index.php.html
-
pic/aldr.gif.gif
-
pic/badg.jpg.jpg
-
pic/bg_search_box.gif.gif
-
pic/btn_search_box.gif.gif
-
pic/cc_head_left.gif
-
pic/cc_head_right.gif.gif
-
pic/ccbang.gif.gif
-
pic/ccbg.gif.gif
-
pic/ccl.gif.gif
-
pic/cclogo.gif.gif
-
pic/ccstyle.css
-
pic/cctext.gif.gif
-
pic/gbuy.gif.gif
-
xc/cooledit/einstein.gif.gif
-
xc/cooledit/footer.inc
-
xc/cooledit/gsearch.html
-
xc/cooledit/index.php.html .js polyglot
-
xc/cooledit/mootools.js.js
-
xc/cooledit/mozart.gif.gif
-
xc/cooledit/peep.html
-
xc/cooledit/pic/aldr.gif.gif
-
xc/cooledit/pic/badg.jpg.jpg
-
xc/cooledit/pic/bg_search_box.gif.gif
-
xc/cooledit/pic/btn_search_box.gif.gif
-
xc/cooledit/pic/cc_head_left.gif
-
xc/cooledit/pic/cc_head_right.gif.gif
-
xc/cooledit/pic/ccbang.gif.gif
-
xc/cooledit/pic/ccbg.gif.gif
-
xc/cooledit/pic/ccl.gif.gif
-
xc/cooledit/pic/cclogo.gif.gif
-
xc/cooledit/pic/ccstyle.css
-
xc/cooledit/pic/cctext.gif.gif
-
xc/cooledit/pic/gbuy.gif.gif
-
xc/cooledit/pic/mozart.gif.gif
-
xc/cooledit/pic/stpatrick.gif.gif
-
xc/cooledit/poop.html
-
xc/cooledit/stpatrick.gif.gif
-
xc/cooledit/suck.html
-
xc/footer.inc
-
xc/index.php.html
-
xc/index.php~.html .ps1 polyglot
-
xc/lincks
-
xc/pic/ccbg.gif.gif
-
xc/pic/ccl.gif.gif
-
xc/pic/cclogo.gif.gif
-
xc/pic/ccstyle.css
-
xc/pic/cctext.gif.gif
-
xc/resume.inc
-
xc/test.txt
-
xp/file.ani
-
xp/index.htm.js
-
xp/log.php
-
xp/riff.htm
-
xp/w1n.elf linux x86
-
xp/w1n.c