DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Overview
overview
5Static
static
3宏杰网�...st.dll
windows7-x64
1宏杰网�...st.dll
windows10-2004-x64
1宏杰网�...st.exe
windows7-x64
5宏杰网�...st.exe
windows10-2004-x64
5宏杰网�...in.vbs
windows7-x64
1宏杰网�...in.vbs
windows10-2004-x64
1宏杰网�...ck.vbs
windows7-x64
1宏杰网�...ck.vbs
windows10-2004-x64
1宏杰网�...in.vbs
windows7-x64
1宏杰网�...in.vbs
windows10-2004-x64
1宏杰网�...lt.vbs
windows7-x64
1宏杰网�...lt.vbs
windows10-2004-x64
1宏杰网�...st.vbs
windows7-x64
1宏杰网�...st.vbs
windows10-2004-x64
1宏杰网�...or.asp
windows7-x64
3宏杰网�...or.asp
windows10-2004-x64
3宏杰网�...ot.asp
windows7-x64
3宏杰网�...ot.asp
windows10-2004-x64
3宏杰网�...dd.vbs
windows7-x64
1宏杰网�...dd.vbs
windows10-2004-x64
1宏杰网�...ow.vbs
windows7-x64
1宏杰网�...ow.vbs
windows10-2004-x64
1宏杰网�...el.vbs
windows7-x64
1宏杰网�...el.vbs
windows10-2004-x64
1宏杰网�...it.vbs
windows7-x64
1宏杰网�...it.vbs
windows10-2004-x64
1宏杰网�...04.vbs
windows7-x64
1宏杰网�...04.vbs
windows10-2004-x64
1宏杰网�...te.vbs
windows7-x64
1宏杰网�...te.vbs
windows10-2004-x64
1宏杰网�...ns.vbs
windows7-x64
1宏杰网�...ns.vbs
windows10-2004-x64
1Static task
static1
Behavioral task
behavioral1
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/AutoHost.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/AutoHost.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral3
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/AutoHost.exe
Resource
win7-20240704-en
Behavioral task
behavioral4
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/AutoHost.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral5
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Admin.vbs
Resource
win7-20240704-en
Behavioral task
behavioral6
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Admin.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral7
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Check.vbs
Resource
win7-20240708-en
Behavioral task
behavioral8
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Check.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral9
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Chkadmin.vbs
Resource
win7-20240708-en
Behavioral task
behavioral10
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Chkadmin.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral11
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Default.vbs
Resource
win7-20240705-en
Behavioral task
behavioral12
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Default.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral13
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/ErrList.vbs
Resource
win7-20240708-en
Behavioral task
behavioral14
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/ErrList.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral15
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Error.asp
Resource
win7-20240705-en
Behavioral task
behavioral16
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Error.asp
Resource
win10v2004-20240709-en
Behavioral task
behavioral17
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Foot.asp
Resource
win7-20240705-en
Behavioral task
behavioral18
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/Foot.asp
Resource
win10v2004-20240709-en
Behavioral task
behavioral19
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostAdd.vbs
Resource
win7-20240705-en
Behavioral task
behavioral20
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostAdd.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral21
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostBuyNow.vbs
Resource
win7-20240704-en
Behavioral task
behavioral22
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostBuyNow.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral23
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostDel.vbs
Resource
win7-20240704-en
Behavioral task
behavioral24
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostDel.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral25
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostEdit.vbs
Resource
win7-20240708-en
Behavioral task
behavioral26
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostEdit.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral27
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostEdit_404.vbs
Resource
win7-20240708-en
Behavioral task
behavioral28
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostEdit_404.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral29
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostEdit_BeginDate.vbs
Resource
win7-20240708-en
Behavioral task
behavioral30
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostEdit_BeginDate.vbs
Resource
win10v2004-20240709-en
Behavioral task
behavioral31
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostEdit_Connections.vbs
Resource
win7-20240705-en
Behavioral task
behavioral32
Sample
宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/Host/Admin/HostEdit_Connections.vbs
Resource
win10v2004-20240709-en
Target
5bd81e5dfc55ddfb01342e333eec9c94_JaffaCakes118
Size
1.8MB
MD5
5bd81e5dfc55ddfb01342e333eec9c94
SHA1
5915adef521efe0137e74a99e093af5df8209ab3
SHA256
aecf5be11d20b58a8883d80cb6465afffd82256f80ead554fc1e997983c68564
SHA512
8434a2b772f8f9aea62e4873d22000d66520d220755d25cce3fa66fe1a0adc539def2efe755f94c83935f8892afa4ca314616902bef6ae887a8f09d3ba312c70
SSDEEP
49152:lgepM5dH3XCUPZRy0+RfmSzibDAZkOiwke58:BqdCUR245DAZkOiie
Checks for missing Authenticode signature.
resource |
---|
unpack001/宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/AutoHost.dll |
unpack001/宏杰网络虚拟主机实时开通系统 v2.2.500 特别版/AutoHost.exe |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
MethCallEngine
ord516
ord518
ord519
ord593
ord594
ord520
ord631
ord632
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ord537
ord573
ord685
ord101
ord102
ord103
ord104
ord105
ord617
ord619
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
MethCallEngine
ord516
ord518
ord519
ord626
ord553
ord660
ord662
ord593
ord594
ord595
ord598
ord520
ord631
ord525
ord632
ord526
EVENT_SINK_AddRef
ord527
ord528
ord560
ord561
DllFunctionCall
ord670
EVENT_SINK_Release
ord600
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord710
ord711
ord712
ord606
ord607
ord608
ord716
ProcCallEngine
ord536
ord537
ord645
ord648
ord571
ord572
ord573
ord681
ord685
ord100
ord579
ord610
ord612
ord613
ord616
ord617
ord618
ord541
ord619
ord542
ord543
ord544
ord545
ord546
ord547
ord580
ord581
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ