Overview

overview

8

Static

static

1

火绒剑5...ll.bat

windows7-x64

8

火绒剑5...ll.bat

windows10-2004-x64

8

火绒剑5...ll.bat

windows7-x64

8

火绒剑5...ll.bat

windows10-2004-x64

8

火绒剑5...rd.exe

windows7-x64

3

火绒剑5...rd.exe

windows10-2004-x64

3

火绒剑5...on.dll

windows7-x64

3

火绒剑5...on.dll

windows10-2004-x64

3

火绒剑5...rv.sys

windows7-x64

1

火绒剑5...rv.sys

windows10-2004-x64

1

火绒剑5...10.sys

windows7-x64

1

火绒剑5...10.sys

windows10-2004-x64

1

火绒剑5...ag.sys

windows7-x64

1

火绒剑5...ag.sys

windows10-2004-x64

1

火绒剑5...10.sys

windows7-x64

1

火绒剑5...10.sys

windows10-2004-x64

1

火绒剑5...ag.exe

windows7-x64

3

火绒剑5...ag.exe

windows10-2004-x64

3

火绒剑5...rv.sys

windows7-x64

1

火绒剑5...rv.sys

windows10-2004-x64

1

火绒剑5...10.sys

windows7-x64

1

火绒剑5...10.sys

windows10-2004-x64

1

火绒剑5...ag.sys

windows7-x64

1

火绒剑5...ag.sys

windows10-2004-x64

1

火绒剑5...10.sys

windows7-x64

1

火绒剑5...10.sys

windows10-2004-x64

1

火绒剑5...ag.exe

windows7-x64

1

火绒剑5...ag.exe

windows10-2004-x64

1

火绒剑5...cs.dll

windows7-x64

3

火绒剑5...cs.dll

windows10-2004-x64

3

火绒剑5...rl.dll

windows7-x64

3

火绒剑5...rl.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    3d6a0fdf5525f913011075fbbe1a11a5786744db27b39273768f547a56c2a2bb

  • Size

    5.2MB

  • MD5

    3b4956a27b321d94735152190f713a57

  • SHA1

    fb7305eca596cd891e2a01985cbbb61159643600

  • SHA256

    3d6a0fdf5525f913011075fbbe1a11a5786744db27b39273768f547a56c2a2bb

  • SHA512

    1621bb6d742d83dc0d826053b1df767e39f9e5b2490e26a6d8c6d0c4ac331d4613526cc6a60814377172af4cc0987b43b7e19c5ac8cd542144f37ee78cfac61b

  • SSDEEP

    98304:RcAXGzy/MG+mYxMoEpGBGxHH+9PFxDKj9Wv+lxOwZhdhX/vOjevyUwHs:RcAEyMxQWi+9PFxujvOCJvOFUwM

Score
1/10

Malware Config

Signatures

Files

  • 3d6a0fdf5525f913011075fbbe1a11a5786744db27b39273768f547a56c2a2bb
    .zip
  • 火绒剑5.0.74.2-2023.10.23/HRSword Install.bat
    .bat .vbs
  • 火绒剑5.0.74.2-2023.10.23/HRSword Uninstall.bat
    .bat .vbs
  • 火绒剑5.0.74.2-2023.10.23/HRSword.exe
    .exe windows:5 windows x86 arch:x86

    65ff4e478dd241f83f647b6c3e4fec29


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/daemon.dll
    .dll windows:5 windows x86 arch:x86

    a3eb582553bd15892a18d9f89e3b2a86


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/drivers x32/hrwfpdrv.sys
    .sys windows:5 windows x86 arch:x86

    a73e1719a523dea9ac197023ec3a3b5d


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/drivers x32/hrwfpdrv_win10.sys
    .sys windows:5 windows x86 arch:x86

    a73e1719a523dea9ac197023ec3a3b5d


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/drivers x32/sysdiag.sys
    .sys windows:5 windows x86 arch:x86

    aa95663a3245f5c1f48ea917b25667f9


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/drivers x32/sysdiag_win10.sys
    .sys windows:5 windows x86 arch:x86

    aa95663a3245f5c1f48ea917b25667f9


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/drivers x32/usysdiag.exe
    .exe windows:5 windows x86 arch:x86

    e68f3d1d18d1c3dfeed0807e94ee042d


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/drivers x64/hrwfpdrv.sys
    .sys windows:5 windows x64 arch:x64

    75b756741d302d030ecb3afb6dfdbdd9


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/drivers x64/hrwfpdrv_win10.sys
    .sys windows:5 windows x64 arch:x64

    75b756741d302d030ecb3afb6dfdbdd9


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/drivers x64/sysdiag.sys
    .sys windows:5 windows x64 arch:x64

    b0b74d765455a5bdc4644546995abe7c


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/drivers x64/sysdiag_win10.sys
    .sys windows:5 windows x64 arch:x64

    b0b74d765455a5bdc4644546995abe7c


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/drivers x64/usysdiag.exe
    .exe windows:5 windows x64 arch:x64

    1d246b73a1363f9de56051128dbcc5a0


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/libcodecs.dll
    .dll windows:5 windows x86 arch:x86

    957624f9857252eeec3df6f94b97f9dc


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/libcurl.dll
    .dll windows:5 windows x86 arch:x86

    882acd5087a5ac829628463b4aeaf80e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/libxsse.dll
    .dll windows:5 windows x86 arch:x86

    c1a77b6099db379d3f12d5329ceded1c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/selfprot.dll
    .dll windows:5 windows x86 arch:x86

    8d364dda4fee79a14338baa56355d230


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/uactmon.dll
    .dll windows:5 windows x86 arch:x86

    86e7eec1e15c4d784791412b483ec56e


    Code Sign

    Headers

    Imports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/usysdiag.dll
    .dll windows:5 windows x86 arch:x86

    e17404561494c850a5ac4b53ea852723


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • 火绒剑5.0.74.2-2023.10.23/usysdiag.exe
    .exe windows:5 windows x64 arch:x64

    1d246b73a1363f9de56051128dbcc5a0


    Code Sign

    Headers

    Imports

    Sections