Overview

overview

3

Static

static

1

cxVer3/Aboutus.vbs

windows7-x64

1

cxVer3/Aboutus.vbs

windows10-2004-x64

1

cxVer3/AcceptJob.asp

windows7-x64

3

cxVer3/AcceptJob.asp

windows10-2004-x64

3

cxVer3/Acc...ve.vbs

windows7-x64

1

cxVer3/Acc...ve.vbs

windows10-2004-x64

1

cxVer3/L_fellow.vbs

windows7-x64

1

cxVer3/L_fellow.vbs

windows10-2004-x64

1

cxVer3/L_kf.vbs

windows7-x64

1

cxVer3/L_kf.vbs

windows10-2004-x64

1

cxVer3/L_wy.vbs

windows7-x64

1

cxVer3/L_wy.vbs

windows10-2004-x64

1

cxVer3/addbook.vbs

windows7-x64

1

cxVer3/addbook.vbs

windows10-2004-x64

1

cxVer3/adm...in.asp

windows7-x64

3

cxVer3/adm...in.asp

windows10-2004-x64

3

cxVer3/adm...dd.asp

windows7-x64

3

cxVer3/adm...dd.asp

windows10-2004-x64

3

cxVer3/adm...el.asp

windows7-x64

3

cxVer3/adm...el.asp

windows10-2004-x64

3

cxVer3/adm...it.asp

windows7-x64

3

cxVer3/adm...it.asp

windows10-2004-x64

3

cxVer3/adm...ok.asp

windows7-x64

3

cxVer3/adm...ok.asp

windows10-2004-x64

3

cxVer3/adm...k1.asp

windows7-x64

3

cxVer3/adm...k1.asp

windows10-2004-x64

3

cxVer3/adm...k2.vbs

windows7-x64

1

cxVer3/adm...k2.vbs

windows10-2004-x64

1

cxVer3/adm...in.asp

windows7-x64

3

cxVer3/adm...in.asp

windows10-2004-x64

3

cxVer3/adm...in.vbs

windows7-x64

1

cxVer3/adm...in.vbs

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    df08c47d606079a7fab9cb0e16c3cfd1_JaffaCakes118

  • Size

    1.4MB

  • MD5

    df08c47d606079a7fab9cb0e16c3cfd1

  • SHA1

    cf566b5f9fadc6feed1b7ea3b38453a7c0cd51e1

  • SHA256

    3c92b8f9cde01e97afa94d731b5032a259204bcaf2fddbd08ecaca98bff02030

  • SHA512

    f4a31962e3190e7a328a18397376d9e3fa13deafb0ee1b8bab45a001ef8ee9706eef847792d3f981bf42eb8ca82841aa0a6acb087ff617a9421521790d3afd87

  • SSDEEP

    24576:fvC7nALyx2GRApcuMnlpES9/4WUjFl5uabYLF5P0Q7PBH9UK:n2AozRAYz/7Cnnc/TB9X

Score
1/10

Malware Config

Signatures

Files

  • df08c47d606079a7fab9cb0e16c3cfd1_JaffaCakes118
    .rar
  • cxVer3/Aboutus.asp
    .vbs
  • cxVer3/AcceptJob.asp
  • cxVer3/AcceptJobSave.asp
    .vbs
  • cxVer3/L_fellow.asp
    .vbs
  • cxVer3/L_kf.ASP
    .vbs
  • cxVer3/L_wy.asp
    .vbs
  • cxVer3/Upload/2005716225141800.jpg
    .jpg
  • cxVer3/Upload/200571691510902.jpg
    .jpg
  • cxVer3/Upload/200571691812246.jpg
    .jpg
  • cxVer3/WinXP-SP2.reg
  • cxVer3/addbook.asp
    .vbs
  • cxVer3/admin/0591_Admin.asp
    .asp .vbs polyglot
  • cxVer3/admin/0591_Admin_Add.asp
    .asp .vbs polyglot
  • cxVer3/admin/0591_Admin_Del.asp
    .asp .vbs polyglot
  • cxVer3/admin/0591_Admin_Pass_edit.asp
    .asp .vbs polyglot
  • cxVer3/admin/0591_reditok.asp
    .asp .vbs polyglot
  • cxVer3/admin/ADDbook1.ASP
  • cxVer3/admin/ADDbook2.ASP
    .vbs
  • cxVer3/admin/Admin.asp
  • cxVer3/admin/Admin_ChkLogin.asp
    .vbs
  • cxVer3/admin/ArticleAdd.asp
    .asp .vbs polyglot
  • cxVer3/admin/ArticleCheck.asp
    .asp .vbs polyglot
  • cxVer3/admin/ArticleCheckSet.asp
    .asp .vbs polyglot
  • cxVer3/admin/ArticleDel.asp
    .asp .vbs polyglot
  • cxVer3/admin/ArticleManage.asp
    .asp .vbs polyglot
  • cxVer3/admin/ArticleModify.asp
    .asp .vbs polyglot
  • cxVer3/admin/ArticleSave.asp
    .asp .vbs polyglot
  • cxVer3/admin/ClassAddBig.asp
    .asp .vbs polyglot
  • cxVer3/admin/ClassAddSmall.asp
    .asp .vbs polyglot
  • cxVer3/admin/ClassDelBig.asp
    .asp .vbs polyglot
  • cxVer3/admin/ClassDelSmall.asp
    .asp .vbs polyglot
  • cxVer3/admin/ClassManage.asp
    .asp .vbs polyglot
  • cxVer3/admin/ClassModifyBig.asp
    .asp .vbs polyglot
  • cxVer3/admin/ClassModifySmall.asp
    .asp .vbs polyglot
  • cxVer3/admin/Conn.asp
    .vbs
  • cxVer3/admin/Databackup/0591bak_date.asp
  • cxVer3/admin/Default.asp
    .asp .vbs polyglot
  • cxVer3/admin/Deljobbook.asp
    .asp .vbs polyglot
  • cxVer3/admin/Login.asp
    .asp .js polyglot
  • cxVer3/admin/Loginout.asp
  • cxVer3/admin/Loginsb.asp
    .asp
  • cxVer3/admin/Manage_Job.asp
    .vbs
  • cxVer3/admin/Manage_JobAdd.asp
    .vbs
  • cxVer3/admin/Manage_JobBook.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_Link.asp
    .vbs
  • cxVer3/admin/Manage_Main.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_Main1.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_Main2.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_Main3.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_Main4.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_News.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_NewsAdd.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_backup.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_editJob.asp
    .vbs
  • cxVer3/admin/Manage_editnews.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_gBook.ASP
    .vbs
  • cxVer3/admin/Manage_yeNews.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_yeNewsAdd.asp
    .asp .vbs polyglot
  • cxVer3/admin/Manage_yeeditnews.asp
    .asp .vbs polyglot
  • cxVer3/admin/Menu_left.asp
    .html .js polyglot
  • cxVer3/admin/UploadFileManage.asp
    .asp .vbs polyglot
  • cxVer3/admin/VoteAdd.asp
    .asp .vbs polyglot
  • cxVer3/admin/VoteDel.asp
    .asp
  • cxVer3/admin/VoteManage.asp
    .asp .vbs polyglot
  • cxVer3/admin/VoteModify.asp
    .asp .vbs polyglot
  • cxVer3/admin/del_gbook.asp
    .vbs
  • cxVer3/admin/gg_News.asp
    .asp .vbs polyglot
  • cxVer3/admin/gg_NewsAdd.asp
    .asp .vbs polyglot
  • cxVer3/admin/gg_editnews.asp
    .asp .vbs polyglot
  • cxVer3/admin/images/b1.gif
    .gif
  • cxVer3/admin/images/input1.gif
    .gif
  • cxVer3/admin/images/menudown.gif
    .gif
  • cxVer3/admin/images/menuup.gif
    .gif
  • cxVer3/admin/images/title.gif
    .gif
  • cxVer3/admin/images/title_bg_quit.gif
    .gif
  • cxVer3/admin/images/titlebg.gif
    .gif
  • cxVer3/admin/manage_aboutus.asp
    .asp .vbs polyglot
  • cxVer3/admin/replay_gbook.ASP
  • cxVer3/admin/replayok.asp
    .vbs
  • cxVer3/admin/sqlcool.asp
  • cxVer3/admin/sysadmin_view.asp
    .asp .vbs polyglot
  • cxVer3/admin/ubbimg/Shockwave.gif
    .gif
  • cxVer3/admin/ubbimg/fly.gif
    .gif
  • cxVer3/admin/ubbimg/glow.gif
    .gif
  • cxVer3/admin/ubbimg/icon_editor_bold.gif
    .gif
  • cxVer3/admin/ubbimg/icon_editor_center.gif
    .gif
  • cxVer3/admin/ubbimg/icon_editor_code.gif
    .gif
  • cxVer3/admin/ubbimg/icon_editor_email.gif
    .gif
  • cxVer3/admin/ubbimg/icon_editor_image.gif
    .gif
  • cxVer3/admin/ubbimg/icon_editor_italicize.gif
    .gif
  • cxVer3/admin/ubbimg/icon_editor_list.gif
    .gif
  • cxVer3/admin/ubbimg/icon_editor_quote.gif
    .gif
  • cxVer3/admin/ubbimg/icon_editor_underline.gif
    .gif
  • cxVer3/admin/ubbimg/icon_editor_url.gif
    .gif
  • cxVer3/admin/ubbimg/move.gif
    .gif
  • cxVer3/admin/ubbimg/mp.gif
    .gif
  • cxVer3/admin/ubbimg/qt.gif
    .gif
  • cxVer3/admin/ubbimg/rm.gif
    .gif
  • cxVer3/admin/ubbimg/shadow.gif
    .gif
  • cxVer3/admin/ubbimg/swf.gif
    .gif
  • cxVer3/articleshow.asp
    .vbs
  • cxVer3/business.asp
    .vbs
  • cxVer3/ccs.css
  • cxVer3/const/Connections.asp
    .asp .vbs polyglot
  • cxVer3/const/admin.asp
    .vbs
  • cxVer3/const/adminadmin.asp
    .vbs
  • cxVer3/const/bbs.css
    .html
  • cxVer3/const/bq.asp
  • cxVer3/const/conn.asp
    .vbs
  • cxVer3/const/count.asp
    .js
  • cxVer3/const/data/Database.asp
    .vbs
  • cxVer3/const/data/address.mdb
  • cxVer3/const/data/count.mdb
  • cxVer3/const/data/remove.asp
  • cxVer3/const/data/vister.mdb
  • cxVer3/const/fsdfjsdklfj@!4d654as.asa
  • cxVer3/const/fycome.asp
    .vbs
  • cxVer3/const/fyday.asp
    .vbs
  • cxVer3/const/fydetal.asp
    .vbs
  • cxVer3/const/fyhour.asp
    .vbs
  • cxVer3/const/fymonth.asp
    .vbs
  • cxVer3/const/fysystem.asp
    .vbs
  • cxVer3/const/fyurl.asp
    .vbs
  • cxVer3/const/fyweek.asp
    .vbs
  • cxVer3/const/image/announce.gif
    .gif
  • cxVer3/const/image/b1.gif
    .gif
  • cxVer3/const/image/b2.gif
    .gif
  • cxVer3/const/image/b3.gif
    .gif
  • cxVer3/const/image/dw.gif
    .gif
  • cxVer3/const/img/t-ani2-a1.gif
    .gif
  • cxVer3/const/img/t-ani2-a2.gif
    .gif
  • cxVer3/const/img/t-ani2-a3.gif
    .gif
  • cxVer3/const/img/t-ani2-a4.gif
    .gif
  • cxVer3/const/img/t-ani2-a5.gif
    .gif
  • cxVer3/const/img/t-ani2-a6.gif
    .gif
  • cxVer3/const/img/t-ani2-a7.gif
    .gif
  • cxVer3/const/img/t-ani2-a8.gif
    .gif
  • cxVer3/const/index.asp
    .vbs
  • cxVer3/const/login.asp
  • cxVer3/const/logout.asp
    .js
  • cxVer3/const/stat.asp
    .vbs
  • cxVer3/const/top.asp
    .js
  • cxVer3/data/DATACXGZS.mdb
  • cxVer3/edit.css
  • cxVer3/editor.asp
    .html .js polyglot
  • cxVer3/foot.asp
    .html
  • cxVer3/gbook.asp
    .vbs
  • cxVer3/image.asp
    .html .js polyglot
  • cxVer3/images/CSS.CSS
  • cxVer3/images/Female.gif
    .gif
  • cxVer3/images/HOMEPAGE.GIF
    .gif
  • cxVer3/images/Male.gif
    .gif
  • cxVer3/images/OICQ.GIF
    .gif
  • cxVer3/images/PSD/left01.psd
  • cxVer3/images/PSD/left02.psd
  • cxVer3/images/PSD/left04.psd
  • cxVer3/images/RECOMMED.gif
    .gif
  • cxVer3/images/admin_home.gif
    .gif
  • cxVer3/images/aleft.gif
    .gif
  • cxVer3/images/anbg.gif
    .gif
  • cxVer3/images/aright.gif
    .gif
  • cxVer3/images/bmp.gif
    .gif
  • cxVer3/images/bold.gif
    .gif
  • cxVer3/images/bookmark.gif
    .gif
  • cxVer3/images/bottombg.gif
    .gif
  • cxVer3/images/bullist.gif
    .gif
  • cxVer3/images/cbanner.gif
    .gif
  • cxVer3/images/center.gif
    .gif
  • cxVer3/images/copy.gif
    .gif
  • cxVer3/images/cut.gif
    .gif
  • cxVer3/images/delete.gif
    .gif
  • cxVer3/images/doc.gif
    .gif
  • cxVer3/images/email.gif
    .gif
  • cxVer3/images/email1.gif
  • cxVer3/images/fgcolor.gif
    .gif
  • cxVer3/images/havepic.gif
    .gif
  • cxVer3/images/help.gif
    .gif
  • cxVer3/images/home.gif
    .gif
  • cxVer3/images/hot.gif
    .gif
  • cxVer3/images/hr.gif
    .gif
  • cxVer3/images/img.gif
    .gif
  • cxVer3/images/indent.gif
    .gif
  • cxVer3/images/italic.gif
    .gif
  • cxVer3/images/jing.gif
    .gif
  • cxVer3/images/kf.gif
    .gif
  • cxVer3/images/left01.gif
    .gif
  • cxVer3/images/left02.gif
    .gif
  • cxVer3/images/left03.gif
    .gif
  • cxVer3/images/left04.gif
    .gif
  • cxVer3/images/leftbg.gif
    .gif
  • cxVer3/images/leftft.gif
    .gif
  • cxVer3/images/leftft2.gif
    .gif
  • cxVer3/images/leftftbg.gif
    .gif
  • cxVer3/images/leftsm.gif
    .gif
  • cxVer3/images/login.gif
    .gif
  • cxVer3/images/mcenter.gif
    .gif
  • cxVer3/images/menutop.gif
    .gif
  • cxVer3/images/news.jpg
    .jpg
  • cxVer3/images/numlist.gif
    .gif
  • cxVer3/images/outdent.gif
    .gif
  • cxVer3/images/paste.gif
    .gif
  • cxVer3/images/r1.gif
    .gif
  • cxVer3/images/r10.gif
    .gif
  • cxVer3/images/r11.gif
    .gif
  • cxVer3/images/r12.gif
    .gif
  • cxVer3/images/r2.gif
    .gif
  • cxVer3/images/r3.gif
    .gif
  • cxVer3/images/r4.gif
    .gif
  • cxVer3/images/r5.gif
    .gif
  • cxVer3/images/r6.gif
    .gif
  • cxVer3/images/r7.gif
    .gif
  • cxVer3/images/r8.gif
    .gif
  • cxVer3/images/r9.gif
    .gif
  • cxVer3/images/redo.gif
    .gif
  • cxVer3/images/save.gif
    .gif
  • cxVer3/images/swf.gif
    .gif
  • cxVer3/images/table.gif
  • cxVer3/images/titlebg.gif
    .gif
  • cxVer3/images/top.fla
  • cxVer3/images/top.gif
    .gif
  • cxVer3/images/top.swf
  • cxVer3/images/topBar_bg.gif
    .gif
  • cxVer3/images/tree_folder3.gif
    .gif
  • cxVer3/images/tree_folder4.gif
    .gif
  • cxVer3/images/underline.gif
    .gif
  • cxVer3/images/undo.gif
    .gif
  • cxVer3/images/url.gif
  • cxVer3/images/voteSubmit.gif
    .gif
  • cxVer3/images/voteView.gif
    .gif
  • cxVer3/images/wlink.gif
    .gif
  • cxVer3/images/wy.gif
    .gif
  • cxVer3/images/xls.gif
    .gif
  • cxVer3/images/zip.gif
    .gif
  • cxVer3/images/未命名-8.png
    .png
  • cxVer3/img/arrow_2.gif
    .gif
  • cxVer3/img/arrow_6.gif
    .gif
  • cxVer3/img/bg_bottom.gif
    .gif
  • cxVer3/img/bg_top.gif
    .gif
  • cxVer3/img/fl_1.gif
    .gif
  • cxVer3/img/fl_2.gif
    .gif
  • cxVer3/img/fl_bg.gif
    .gif
  • cxVer3/img/image1.gif
    .gif
  • cxVer3/img/js_top.gif
    .gif
  • cxVer3/img/kf.png
    .png
  • cxVer3/img/kf_top.gif
    .gif
  • cxVer3/img/nopic.jpg
    .jpg
  • cxVer3/img/web_bg.gif
    .gif
  • cxVer3/img/wy_top.gif
    .gif
  • cxVer3/inc/Conn.asp
    .asp .vbs polyglot
  • cxVer3/inc/Css.css
  • cxVer3/inc/Eshopcode.js
  • cxVer3/inc/Foot.asp
  • cxVer3/inc/Head.asp
    .html
  • cxVer3/inc/Ubb.inc
  • cxVer3/inc/articleCHAR.INC
    .vbs
  • cxVer3/inc/bs.css
  • cxVer3/inc/checkcode.asp
    .vbs
  • cxVer3/inc/config.asp
  • cxVer3/inc/eshopcode.asp
    .vbs
  • cxVer3/inc/function.asp
    .vbs
  • cxVer3/inc/md5.asp
    .vbs
  • cxVer3/inc/sqlcool.asp
  • cxVer3/inc/syscode.asp
    .vbs
  • cxVer3/inc/ubbcode.asp
    .vbs
  • cxVer3/inc/upload.asp
    .vbs
  • cxVer3/index.asp
    .vbs
  • cxVer3/index_ywjs.asp
    .html
  • cxVer3/indexwy.asp
    .vbs
  • cxVer3/kfinfo.asp
    .vbs
  • cxVer3/l_pro.asp
    .vbs
  • cxVer3/l_product.asp
  • cxVer3/l_vote.asp
  • cxVer3/news.asp
    .vbs
  • cxVer3/newsinfo.asp
    .vbs
  • cxVer3/product.asp
  • cxVer3/selcolor.asp
    .js
  • cxVer3/support.asp
    .vbs
  • cxVer3/table.asp
    .js
  • cxVer3/top.asp
    .html
  • cxVer3/tupian/index1_bg.gif
    .gif
  • cxVer3/tupian/jdyou_gongao.gif
    .gif
  • cxVer3/upfilea.asp
    .vbs
  • cxVer3/upload.asp
    .js
  • cxVer3/uploada.asp
    .vbs
  • cxVer3/vote.asp
    .vbs
  • cxVer3/yenewsinfo.asp
    .vbs
  • cxVer3/ywfy1.asp
    .vbs
  • cxVer3/ywfy2.asp
    .vbs
  • cxVer3/ywfy3.asp
    .vbs
  • cxVer3/ywfy4.asp
    .vbs
  • cxVer3/ywfy6.asp
    .vbs
  • cxVer3/下载说明.htm
    .html .js polyglot
  • cxVer3/说明.txt