{"id":12727,"date":"2021-03-16T09:09:58","date_gmt":"2021-03-16T09:09:58","guid":{"rendered":"https:\/\/nsfocusglobal.com\/?p=12727"},"modified":"2026-04-17T18:07:46","modified_gmt":"2026-04-17T18:07:46","slug":"freakout-malware-analysis-freakout-samples","status":"publish","type":"post","link":"https:\/\/nsfocusglobal.com\/pt-br\/freakout-malware-analysis-freakout-samples\/","title":{"rendered":"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples"},"content":{"rendered":"\n

Produced by: NSFOCUS Security Labs<\/strong><\/p>\n\n\n\n

FreakOut samples appearing in the campaign were a typical IRC bot Trojan program written in Python. The Trojan program would connect to IRC channels in hardcoded C&C and act as instructed by C&C to collect information, launch DDoS attacks, interact with shells, and conduct ARP sniffing attacks. Also, it carried three vulnerability payloads and could attack vulnerable web servers for lateral movement.<\/p>\n\n\n\n

Code in the following screenshots was deobfuscated to facilitate understanding.<\/p>\n\n\n\n

Persistence and Antagonism<\/strong> <\/p>\n\n\n\n

The FreakOut Trojan mainly achieved persistence via the following operations:<\/p>\n\n\n\n

1. Use the fork function to generate a daemon:<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n

2. Change its name to boot.py and write itself to rc.local for automatic start at system startup:<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n

The FreakOut Trojan usually engages in the following antagonistic activities:<\/p>\n\n\n\n

1. Protect critical information via XOR encryption or zlib compression:<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n

The XOR encryption corresponds to the following decryption algorithm:<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n

2. Interfere with analysis to some degree via variant and method name confusion:<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n

3. Run single instance of an application and command line detection: The sample ran single instance of an application by using an abstract UNIX domain socket and binding a special keyword postconnect_gateway_notify_lock.<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n

Vulnerability Spread<\/strong><\/p>\n\n\n\n

The FreakOut trojan exploited three vulnerabilities assigned CVE-2020-28188, CVE-2021-3007, and CVE-2020-7961 for lateral movement via TerraMaster TOS, Zend Framework, and Liferay Portal respectively. It is worth noting that CVE-2021-3007 was a deserialization vulnerability discovered in January 2021, which was close to the time when the FreakOut Trojan appeared in the wild.<\/p>\n\n\n\n

– CVE-2020-28188<\/p>\n\n\n\n

The vulnerability is due to lack of input validation in the “event” parameter on the “makecvs” PHP page (\/include\/makecvs.php). This allows unauthenticated, remote attackers to inject OS commands and use TerraMaster TOS before 4.2.06 to take control of servers.<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n
\"Red<\/figure>\n\n\n\n

– CVE-2021-3007<\/p>\n\n\n\n

The vulnerability is triggered by insecure object deserialization. In Zend Framework later than 3.0.0, attackers abuse the Zend3 feature that loads classes from objects so as to upload and execute malicious code on servers. The code can be uploaded using the “callback†parameter, which in this case inserts malicious code rather than the callbackOptions array.<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n
\"Red<\/figure>\n\n\n\n

– CVE-2020-7961<\/p>\n\n\n\n

The vulnerability is a Java unmarshalling vulnerability via JSON web services (JSONWS) in Liferay Portal prior to 7.2.1 CE GA2. Marshalling, which is similar to serialization, is used for communication with remote objects, in our case with a serialized object. Exploiting the vulnerability lets the attacker provide a malicious object, that when unmarshalled, allows remote code execution.<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n
\"Red<\/figure>\n\n\n\n

After deserialization, the vulnerability payload would access http:\/\/gxbrowser.net:8004\/t and download the t<\/strong> java file. As shown in the following figure, after successful exploitation, out.py would be obtained and executed with a changed name.<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n

ARP Sniffing and Poisoning<\/strong><\/p>\n\n\n\n

FreakOut performed the ARP sniffing function by acting as a man in the middle, excluding some source and destination ports (1337\/6667\/23\/443\/37215\/53\/22), and forwarding received information to the server’s port 1337. Details are as follows:<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n
\"Red<\/figure>\n\n\n\n

Communications<\/strong><\/p>\n\n\n\n

The Trojan used the IRC protocol for C&C communication. The online information is illustrated as follows:<\/p>\n\n\n\n

Sample: NICK [HAX|Linux|x86_64|32]aYXzMIcqFqg<\/p>\n\n\n\n

Description: [HAX|operating system|architecture|CPU quantity]8–12 random letters<\/p>\n\n\n\n

Sample: USER [HAX|Linux|x86_64|32]aYXzMIcqFqg gxbrowser.net localhost: aYXzMIcqFqg<\/p>\n\n\n\n

Description: The command adds a server address and hardcoded field “localhost: “<\/p>\n\n\n\n

USER <username><hostname><servername><realname>(RFC 1459<\/a>)<\/p>\n\n\n\n

Sample: JOIN #update N3Wm3W<\/p>\n\n\n\n

Description: Hardcoded channel and chatroom password<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n
\"Red<\/figure>\n\n\n\n

Instructions and Functions<\/strong> <\/p>\n\n\n\n

Under the control of C&C, the FreakOut Trojan could collect information, launch DDoS attacks, interact with shells, perform ARP sniffing, and conduct other attacks.<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n

Version Iteration<\/strong><\/p>\n\n\n\n

From the end of 2020 to the beginning of 2021, at least three in-the-wild versions of FreakOut were updated.<\/p>\n\n\n\n

The first version necro.py was similar to out.py in the framework and had readable code. It was the predecessor of out.py.<\/p>\n\n\n\n

The second version out.py was analyzed in the previous sections. It greatly increased code obfuscation on the basis of necro and added TCP flood and exploit.<\/p>\n\n\n\n

The third version benchmark.py added DGA domain name settings based on out, making xyz a top-level domain name of all generated C&C.<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n

FreakOut IoC<\/strong> <\/p>\n\n\n\n

Sha256:<\/p>\n\n\n\n

\"Red<\/figure>\n\n\n\n

C&C:<\/p>\n\n\n\n

\"Red<\/figure>\n<\/body><\/html>\n","protected":false},"excerpt":{"rendered":"

Produced by: NSFOCUS Security Labs FreakOut samples appearing in the campaign were a typical IRC bot Trojan program written in Python. The Trojan program would connect to IRC channels in hardcoded C&C and act as instructed by C&C to collect information, launch DDoS attacks, interact with shells, and conduct ARP sniffing attacks. Also, it carried […]<\/p>\n","protected":false},"author":6,"featured_media":12722,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_coblocks_attr":"","_coblocks_dimensions":"","_coblocks_responsive_height":"","_coblocks_accordion_ie_support":"","footnotes":""},"categories":[3,5],"tags":[506],"class_list":["post-12727","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","category-ddos-mitigation","tag-malware"],"acf":[],"yoast_head":"\n\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples - NSFOCUS<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/\" \/>\n<meta property=\"og:locale\" content=\"pt_BR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples - NSFOCUS\" \/>\n<meta property=\"og:description\" content=\"Produced by: NSFOCUS Security Labs FreakOut samples appearing in the campaign were a typical IRC bot Trojan program written in Python. The Trojan program\" \/>\n<meta property=\"og:url\" content=\"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/\" \/>\n<meta property=\"og:site_name\" content=\"NSFOCUS\" \/>\n<meta property=\"article:published_time\" content=\"2021-03-16T09:09:58+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-04-17T18:07:46+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2021\/03\/11.jpg\" \/>\n<meta name=\"author\" content=\"Jie Ji\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:title\" content=\"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples - NSFOCUS\" \/>\n<meta name=\"twitter:description\" content=\"Produced by: NSFOCUS Security Labs FreakOut samples appearing in the campaign were a typical IRC bot Trojan program written in Python. The Trojan program\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2021\/03\/11.jpg\" \/>\n<meta name=\"twitter:label1\" content=\"Escrito por\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jie Ji\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. tempo de leitura\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutos\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/\"},\"author\":{\"name\":\"Jie Ji\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/#\\\/schema\\\/person\\\/1077d8fcd7e52c96f17a33b63a0d157b\"},\"headline\":\"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples\",\"datePublished\":\"2021-03-16T09:09:58+00:00\",\"dateModified\":\"2026-04-17T18:07:46+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/\"},\"wordCount\":707,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2021\\\/03\\\/11.jpg\",\"keywords\":[\"malware\"],\"articleSection\":[\"Blog\",\"DDoS Mitigation\"],\"inLanguage\":\"pt-BR\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/\",\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/\",\"name\":\"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples - NSFOCUS\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2021\\\/03\\\/11.jpg\",\"datePublished\":\"2021-03-16T09:09:58+00:00\",\"dateModified\":\"2026-04-17T18:07:46+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/#breadcrumb\"},\"inLanguage\":\"pt-BR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/#primaryimage\",\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2021\\\/03\\\/11.jpg\",\"contentUrl\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2021\\\/03\\\/11.jpg\",\"width\":1200,\"height\":487,\"caption\":\"malware\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/freakout-malware-analysis-freakout-samples\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/nsfocusglobal.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/#website\",\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/\",\"name\":\"NSFOCUS\",\"description\":\"Security Made Smart and Simple\",\"publisher\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/nsfocusglobal.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"pt-BR\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/#organization\",\"name\":\"NSFOCUS\",\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2024\\\/08\\\/logo-ns.png\",\"contentUrl\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2024\\\/08\\\/logo-ns.png\",\"width\":248,\"height\":36,\"caption\":\"NSFOCUS\"},\"image\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/#\\\/schema\\\/person\\\/1077d8fcd7e52c96f17a33b63a0d157b\",\"name\":\"Jie Ji\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/61cb438513c138ce3f1f49e3485f113a0215220de5e284a2bd4e85358f6c8d02?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/61cb438513c138ce3f1f49e3485f113a0215220de5e284a2bd4e85358f6c8d02?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/61cb438513c138ce3f1f49e3485f113a0215220de5e284a2bd4e85358f6c8d02?s=96&d=mm&r=g\",\"caption\":\"Jie Ji\"},\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/author\\\/jji\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples - NSFOCUS","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/","og_locale":"pt_BR","og_type":"article","og_title":"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples - NSFOCUS","og_description":"Produced by: NSFOCUS Security Labs FreakOut samples appearing in the campaign were a typical IRC bot Trojan program written in Python. The Trojan program","og_url":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/","og_site_name":"NSFOCUS","article_published_time":"2021-03-16T09:09:58+00:00","article_modified_time":"2026-04-17T18:07:46+00:00","og_image":[{"url":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2021\/03\/11.jpg","type":"","width":"","height":""}],"author":"Jie Ji","twitter_card":"summary_large_image","twitter_title":"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples - NSFOCUS","twitter_description":"Produced by: NSFOCUS Security Labs FreakOut samples appearing in the campaign were a typical IRC bot Trojan program written in Python. The Trojan program","twitter_image":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2021\/03\/11.jpg","twitter_misc":{"Escrito por":"Jie Ji","Est. tempo de leitura":"4 minutos"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/#article","isPartOf":{"@id":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/"},"author":{"name":"Jie Ji","@id":"https:\/\/nsfocusglobal.com\/#\/schema\/person\/1077d8fcd7e52c96f17a33b63a0d157b"},"headline":"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples","datePublished":"2021-03-16T09:09:58+00:00","dateModified":"2026-04-17T18:07:46+00:00","mainEntityOfPage":{"@id":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/"},"wordCount":707,"commentCount":0,"publisher":{"@id":"https:\/\/nsfocusglobal.com\/#organization"},"image":{"@id":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/#primaryimage"},"thumbnailUrl":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2021\/03\/11.jpg","keywords":["malware"],"articleSection":["Blog","DDoS Mitigation"],"inLanguage":"pt-BR","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/","url":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/","name":"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples - NSFOCUS","isPartOf":{"@id":"https:\/\/nsfocusglobal.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/#primaryimage"},"image":{"@id":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/#primaryimage"},"thumbnailUrl":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2021\/03\/11.jpg","datePublished":"2021-03-16T09:09:58+00:00","dateModified":"2026-04-17T18:07:46+00:00","breadcrumb":{"@id":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/#breadcrumb"},"inLanguage":"pt-BR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/"]}]},{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/#primaryimage","url":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2021\/03\/11.jpg","contentUrl":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2021\/03\/11.jpg","width":1200,"height":487,"caption":"malware"},{"@type":"BreadcrumbList","@id":"https:\/\/nsfocusglobal.com\/freakout-malware-analysis-freakout-samples\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/nsfocusglobal.com\/"},{"@type":"ListItem","position":2,"name":"\u2018FreakOut\u2019 Malware Analysis \u2013 FreakOut Samples"}]},{"@type":"WebSite","@id":"https:\/\/nsfocusglobal.com\/#website","url":"https:\/\/nsfocusglobal.com\/","name":"NSFOCUS","description":"Security Made Smart and Simple","publisher":{"@id":"https:\/\/nsfocusglobal.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/nsfocusglobal.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"pt-BR"},{"@type":"Organization","@id":"https:\/\/nsfocusglobal.com\/#organization","name":"NSFOCUS","url":"https:\/\/nsfocusglobal.com\/","logo":{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/nsfocusglobal.com\/#\/schema\/logo\/image\/","url":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2024\/08\/logo-ns.png","contentUrl":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2024\/08\/logo-ns.png","width":248,"height":36,"caption":"NSFOCUS"},"image":{"@id":"https:\/\/nsfocusglobal.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/nsfocusglobal.com\/#\/schema\/person\/1077d8fcd7e52c96f17a33b63a0d157b","name":"Jie Ji","image":{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/secure.gravatar.com\/avatar\/61cb438513c138ce3f1f49e3485f113a0215220de5e284a2bd4e85358f6c8d02?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/61cb438513c138ce3f1f49e3485f113a0215220de5e284a2bd4e85358f6c8d02?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/61cb438513c138ce3f1f49e3485f113a0215220de5e284a2bd4e85358f6c8d02?s=96&d=mm&r=g","caption":"Jie Ji"},"url":"https:\/\/nsfocusglobal.com\/pt-br\/author\/jji\/"}]}},"_links":{"self":[{"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/posts\/12727","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/comments?post=12727"}],"version-history":[{"count":1,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/posts\/12727\/revisions"}],"predecessor-version":[{"id":32681,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/posts\/12727\/revisions\/32681"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/media\/12722"}],"wp:attachment":[{"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/media?parent=12727"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/categories?post=12727"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/tags?post=12727"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}