MD5 Hash File type Added Source Yara Hits
84e3ad0d62d21739d632d2106864e79e ELF 2017-10-16 01:20:43 CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]
b3d26632c4077e731ef2da329974519d ELF 2017-10-16 01:33:40 CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api CuckooSandbox/vmdetect [+]
62cd9381e18d3991097ff5612f171327 C 2018-03-06 20:22:59http://173.199.71.172/dm.txt YRP/webshell_JspSpy_JspSpyJDK5_JspSpyJDK51_luci_jsp_spy2009_m_ma3_xxx YRP/webshell_000_403_807_a_c5_config_css_dm_he1p_JspSpy_JspSpyJDK5_JspSpyJDK51_luci_jsp_xxx YRP/webshell_000_403_807_a_c5_config_css_dm_he1p_xxx YRP/domain [+]
891f5fd5d09ea31df9a83449eae1500c PE32+ 2019-05-24 22:45:13 YRP/Microsoft_Visual_Cpp_80_DLL YRP/IsPE64 YRP/IsWindowsGUI YRP/HasDebugData [+]
e0175eecf8d31a6f32da076d22ecbdff PE32+ 2019-05-24 22:46:24 YRP/Microsoft_Visual_Cpp_80_DLL YRP/IsPE64 YRP/IsWindowsGUI YRP/HasDebugData [+]
39ae8ced52d5b7b93e79c8727b5dd51c PE32+ 2019-05-24 22:49:26 YRP/Microsoft_Visual_Cpp_80_DLL YRP/IsPE64 YRP/IsWindowsGUI YRP/HasDebugData [+]
f5ef3b060fb476253f9a7638f82940d9 PE32+ 2019-05-24 22:51:16 YRP/Microsoft_Visual_Cpp_80_DLL YRP/IsPE64 YRP/IsWindowsGUI YRP/HasDebugData [+]
591ca89a25f06cf01e4345f98a22845c HTML 2019-09-15 01:31:05http://112.74.42.175/dama.jsp YRP/webshell_config_myxx_zend YRP/webshell_000_403_807_a_c5_config_css_dm_he1p_JspSpy_JspSpyJDK5_JspSpyJDK51_luci_jsp_xxx YRP/webshell_000_403_c5_config_myxx_queryDong_spyjsp2010_zend YRP/webshell_000_403_807_a_c5_config_css_dm_he1p_xxx [+]
913637270d8c6b1e739838bcda735795 C 2019-09-15 01:31:16http://112.74.42.175/jspspy.jsp YRP/webshell_JspSpy_JspSpyJDK5_JspSpyJDK51_luci_jsp_spy2009_m_ma3_xxx YRP/webshell_000_403_807_a_c5_config_css_dm_he1p_JspSpy_JspSpyJDK5_JspSpyJDK51_luci_jsp_xxx YRP/webshell_he1p_JspSpy_nogfw_ok_style_1_JspSpy1 YRP/webshell_000_403_807_a_c5_config_css_dm_he1p_xxx [+]