Forum Version 7

Hello everyone,
The forum is currently being updated to version 7 for better compatibility with the rest of the site. We apologize for any inconvenience.

Fanxiang SSD S770 firmware Version 3.W.J.1t

kirill_deadless
ออฟไลน์
Newbie
Enregistré

เพิ่มเติม

1 à¸›à¸µ 5 à¹€à¸”à¸·à¸à¸™ à¸—à¸µà¹ˆà¸œà¹ˆà¸²à¸™à¸¡à¸² #2983 โดย kirill_deadless

Replied by kirill_deadless on topic Fanxiang SSD S770 firmware Version 3.W.J.1t

Download button doesn't work. Can you send me a link to the tool and firmware? Thanks anyway.

กรุณา เข้าสู่ระบบ หรือ สมัครสมาชิกใหม่ เพื่อเข้าร่วมวงสนทนา

Tom
ออฟไลน์
The Best Poster
Enregistré

เพิ่มเติม

1 à¸›à¸µ 5 à¹€à¸”à¸·à¸à¸™ à¸—à¸µà¹ˆà¸œà¹ˆà¸²à¸™à¸¡à¸² #2984 โดย Tom

Replied by Tom on topic Fanxiang SSD S770 firmware Version 3.W.J.1t

Try this link, but NOD32 tells me there is Trojan inside:
6/11/2024 10:19:32 PM;Real-time file system protection;file: SSDmanagement_1.2oewxD2R.0.35.exe. a variant of Generik.ZLQOZY trojan

cdn.shopify.com/s/files/1/0761/2992/7485....35.exe?v=1700554854

Cheers
Tom

กรุณา เข้าสู่ระบบ หรือ สมัครสมาชิกใหม่ เพื่อเข้าร่วมวงสนทนา

supermag
ออฟไลน์
Newbie
Enregistré

เพิ่มเติม

Replied by supermag on topic Fanxiang SSD S770 firmware Version 3.W.J.1t

just dowloade3d but there is no exe or tool, its just a file. how to use, my ssd drive not working, it is showing 2gb instead of 2 tb, need this to fix.

Last edit: 1 à¸›à¸µ 4 à¹€à¸”à¸·à¸à¸™ à¸—à¸µà¹ˆà¸œà¹ˆà¸²à¸™à¸¡à¸² by supermag.

กรุณา เข้าสู่ระบบ หรือ สมัครสมาชิกใหม่ เพื่อเข้าร่วมวงสนทนา

pinopapi
ออฟไลน์
Newbie
Enregistré

เพิ่มเติม

Replied by pinopapi on topic Fanxiang SSD S770 firmware Version 3.W.J.1t

Recently ran into issues with this drive. Using anyrun for analysis since im feeling lazy to do it myself. Here are some screenshots and information regarding the analysis. DONT RUN IT.

So far I havent found a solution to getting my drive back. It simply disappeared one day after running into boot issues. I cant get to the legit drivers or this company sells SSD's to get malware out from their website. Or there is a common case of a watering hole attack.

Public anyrun analysis: app.any.run/tasks/d27d282c-d931-409f-9642-b3175b851c5a

Analysis:

This task involves the execution of an executable file named "SSDmanagement_1.0.35.exe" located in the user's temporary folder. The executable file is launched by the "cmd.exe" process, which is a common command-line interpreter in Windows. The executable file is then used to extract the contents of another file, "~9204951028391987741~.tmp", using the 7zG.exe utility.

Legitimate programs may use the command-line interpreter to execute other programs or scripts. In this case, the executable file "SSDmanagement_1.0.35.exe" may be a legitimate program that performs some specific function related to SSD management. The extraction of contents from the temporary file using the 7zG.exe utility could be a normal behavior for a program that needs to extract or decompress files.

However, the use of a temporary file and the execution of an executable file from the user's temporary folder can also be indicative of malicious behavior. Malware often uses temporary files to hide its presence or to store malicious payloads. The execution of an executable file from the temporary folder can be a way for malware to evade detection or to bypass security measures. Therefore, further analysis is needed to determine if this behavior is part of a legitimate program or if it is indicative of malicious activity.