Overview

overview

3

Static

static

1

data/新云软件.url

windows7-x64

1

data/新云软件.url

windows10-2004-x64

1

images/fon...ex.htm

windows7-x64

3

images/fon...ex.htm

windows10-2004-x64

3

images/fon...ex.htm

windows7-x64

3

images/fon...ex.htm

windows10-2004-x64

1

images/fon...ex.htm

windows7-x64

3

images/fon...ex.htm

windows10-2004-x64

3

images/js/uc.js

windows7-x64

3

images/js/uc.js

windows10-2004-x64

3

images/sec...ex.htm

windows7-x64

3

images/sec...ex.htm

windows10-2004-x64

3

images/sec...ex.htm

windows7-x64

3

images/sec...ex.htm

windows10-2004-x64

3

images/sec...ex.htm

windows7-x64

3

images/sec...ex.htm

windows10-2004-x64

3

images/sec...ex.htm

windows7-x64

3

images/sec...ex.htm

windows10-2004-x64

3

inc/add.js

windows7-x64

3

inc/add.js

windows10-2004-x64

3

inc/index.js

windows7-x64

3

inc/index.js

windows10-2004-x64

3

include/db...ass.js

windows7-x64

3

include/db...ass.js

windows10-2004-x64

3

include/gi...ass.js

windows7-x64

3

include/gi...ass.js

windows10-2004-x64

3

include/se...ass.js

windows7-x64

3

include/se...ass.js

windows10-2004-x64

3

include/te...ass.js

windows7-x64

3

include/te...ass.js

windows10-2004-x64

3

install/in...ls.ps1

windows7-x64

3

install/in...ls.ps1

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9787799074ef81175fed4015004781ad_JaffaCakes118

  • Size

    625KB

  • MD5

    9787799074ef81175fed4015004781ad

  • SHA1

    007cc2cac87f10b919a1b284dd0659567b844c34

  • SHA256

    e09eedc97a868926bcd0952df20098c23fbfc79d17c1ee3f4938e6a6e2140e3c

  • SHA512

    81ca399847530bf7fbe29a50186f506a34ec10f04095d991707f7bf305c30e19272aacf6c4e05199781566ae75e9bf0834503c8700c54f71e3ee5b6877c42f05

  • SSDEEP

    12288:wrxP7gPadMn291sfs4yQAy4L/1vKVPsOas7jsYuIoZ6/Ggk8GXA7XYp0/:wN7gPaWn29GsxQA/pLZZ6/njYps

Score
1/10

Malware Config

Signatures

Files

  • 9787799074ef81175fed4015004781ad_JaffaCakes118
    .rar
  • data/conf/_config.php
  • data/conf/_db.php
  • data/conf/_db.sql
  • data/seccode.inc.php
  • data/template.inc.php
  • data/新云软件.url
    .url
  • images/bg.jpg
    .jpg
  • images/bg_bottom.jpg
    .jpg
  • images/bg_footer.png
    .png
  • images/bg_header.jpg
    .jpg
  • images/bg_input.gif
    .gif
  • images/bg_logo.png
    .png
  • images/bg_main.jpg
    .jpg
  • images/bg_search.gif
    .gif
  • images/bg_top.jpg
    .jpg
  • images/btn_add.gif
    .gif
  • images/btn_aspk.gif
    .gif
  • images/btn_index.gif
    .gif
  • images/btn_list.gif
    .gif
  • images/btn_search.gif
    .gif
  • images/close (2).gif
    .gif
  • images/close.gif
    .gif
  • images/face.gif
    .gif
  • images/face0.gif
    .gif
  • images/face1.gif
    .gif
  • images/face2.gif
    .gif
  • images/face3.gif
    .gif
  • images/face4.gif
    .gif
  • images/face5.gif
    .gif
  • images/fonts/ch/index.htm
  • images/fonts/en/FetteSteinschrift.ttf
  • images/fonts/en/PilsenPlakat.ttf
  • images/fonts/en/index.htm
  • images/fonts/index.htm
  • images/icon0.gif
    .gif
  • images/icon1.gif
    .gif
  • images/icon10.gif
    .gif
  • images/icon11.gif
    .gif
  • images/icon12.gif
    .gif
  • images/icon13.gif
    .gif
  • images/icon14.gif
    .gif
  • images/icon15.gif
    .gif
  • images/icon2.gif
    .gif
  • images/icon3.gif
    .gif
  • images/icon4.gif
    .gif
  • images/icon5.gif
    .gif
  • images/icon6.gif
    .gif
  • images/icon7.gif
    .gif
  • images/icon8.gif
    .gif
  • images/icon9.gif
    .gif
  • images/js/uc.js
    .js
  • images/logo.gif
    .gif
  • images/logo.psd
  • images/seccode/background/background1.jpg
    .jpg
  • images/seccode/background/background2.jpg
    .jpg
  • images/seccode/background/background3.jpg
    .jpg
  • images/seccode/background/background4.jpg
    .jpg
  • images/seccode/background/background5.jpg
    .jpg
  • images/seccode/background/background6.jpg
    .jpg
  • images/seccode/background/background7.jpg
    .jpg
  • images/seccode/background/background8.jpg
    .jpg
  • images/seccode/background/index.htm
  • images/seccode/flash/flash1.swf
  • images/seccode/flash/flash2.swf
  • images/seccode/gif/OCR_A_Extended/2.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/3.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/4.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/6.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/7.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/8.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/9.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/b.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/c.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/e.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/f.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/g.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/h.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/index.htm
  • images/seccode/gif/OCR_A_Extended/j.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/k.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/m.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/p.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/q.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/r.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/t.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/v.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/w.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/x.gif
    .gif
  • images/seccode/gif/OCR_A_Extended/y.gif
    .gif
  • images/seccode/gif/Small_Fonts/2.gif
    .gif
  • images/seccode/gif/Small_Fonts/3.gif
    .gif
  • images/seccode/gif/Small_Fonts/4.gif
    .gif
  • images/seccode/gif/Small_Fonts/6.gif
    .gif
  • images/seccode/gif/Small_Fonts/7.gif
    .gif
  • images/seccode/gif/Small_Fonts/8.gif
    .gif
  • images/seccode/gif/Small_Fonts/9.gif
    .gif
  • images/seccode/gif/Small_Fonts/b.gif
    .gif
  • images/seccode/gif/Small_Fonts/c.gif
    .gif
  • images/seccode/gif/Small_Fonts/e.gif
    .gif
  • images/seccode/gif/Small_Fonts/f.gif
    .gif
  • images/seccode/gif/Small_Fonts/g.gif
    .gif
  • images/seccode/gif/Small_Fonts/h.gif
    .gif
  • images/seccode/gif/Small_Fonts/index.htm
  • images/seccode/gif/Small_Fonts/j.gif
    .gif
  • images/seccode/gif/Small_Fonts/k.gif
    .gif
  • images/seccode/gif/Small_Fonts/m.gif
    .gif
  • images/seccode/gif/Small_Fonts/p.gif
    .gif
  • images/seccode/gif/Small_Fonts/q.gif
    .gif
  • images/seccode/gif/Small_Fonts/r.gif
    .gif
  • images/seccode/gif/Small_Fonts/t.gif
    .gif
  • images/seccode/gif/Small_Fonts/v.gif
    .gif
  • images/seccode/gif/Small_Fonts/w.gif
    .gif
  • images/seccode/gif/Small_Fonts/x.gif
    .gif
  • images/seccode/gif/Small_Fonts/y.gif
    .gif
  • images/seccode/index.htm
  • images/seccode/sound/c.mp3
  • images/seccode/sound/e.mp3
  • images/seccode/sound/f.mp3
  • images/seccode/sound/h.mp3
  • images/seccode/sound/k.mp3
  • images/seccode/sound/l.mp3
  • images/seccode/sound/m.mp3
  • images/seccode/sound/n.mp3
  • images/seccode/sound/o.mp3
  • images/seccode/sound/p.mp3
  • images/seccode/sound/q.mp3
  • images/seccode/sound/r.mp3
  • images/seccode/sound/s.mp3
  • images/seccode/sound/t.mp3
  • images/seccode/sound/u.mp3
  • images/seccode/sound/v.mp3
  • images/seccode/sound/w.mp3
  • images/seccode/sound/x.mp3
  • images/seccode/sound/y.mp3
  • images/seccode/sound/z.mp3
  • inc/add.js
    .js
  • inc/body.Fix
  • inc/head.Fix
  • inc/index.js
    .js
  • inc/style.css
  • include/common.inc.php
  • include/db_mysql.class.php
    .js
  • include/gifmerge.class.php
    .js
  • include/global.func.php
  • include/seccode.class.php
    .js
  • include/seccode.php
  • include/template.class.php
    .js
  • index.php
  • install/images/boxtitle_bg.gif
    .gif
  • install/images/but_back.gif
    .gif
  • install/images/but_next.gif
    .gif
  • install/images/but_setup.gif
    .gif
  • install/images/nav_bg.gif
    .gif
  • install/images/nav_but.gif
    .gif
  • install/images/nav_left.gif
    .gif
  • install/images/nav_right.gif
    .gif
  • install/images/nav_this.gif
    .gif
  • install/images/rarrow.gif
    .gif
  • install/images/toplogo.gif
    .gif
  • install/images/toplogo.psd
  • install/includes/config_rglobals.php
    .ps1
  • install/includes/config_rglobals_magic.php
    .ps1
  • install/includes/inc_install.php
  • install/index.php
    .ps1
  • install/templates/ajax2.js
    .js
  • install/templates/jquery.js
    .js
  • install/templates/s1.html
    .html
  • install/templates/s2.html
    .html .js polyglot
  • install/templates/s3.html
    .html .js polyglot
  • install/templates/s4.html
    .html .js polyglot
  • install/templates/style.css
  • install/templates/tablebox.css
  • seccode.php
  • source/add.php
  • source/admin.php
  • source/api.php
  • source/index.php
  • source/list.php
  • source/so.php
  • template/default/add.htm
  • template/default/footer.htm
  • template/default/header.htm
    .html .js polyglot
  • template/default/index.htm
  • template/default/list.htm
  • template/default/login.htm
    .js
  • template/default/message.htm
  • 说明.txt