5fc45713d1c95a358f74c26238054ce7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5fc45713d1c95a358f74c26238054ce7_JaffaCakes118
Size

466KB
MD5

5fc45713d1c95a358f74c26238054ce7
SHA1

014a1ce16d1fabd3219ca387eaf3379d3c262805
SHA256

de43f10a3c488234a4d632ce0c9505d2cb098843d0b00fb41ffbf6295e1ddcdf
SHA512

8173a2d5b89bef6bc6dd2acccd70e8c801e27cffef15013e0676c096aa9f45543463f46e9001b91b88f0f9d4e4aaf9f0ad529db0656ca3642c160d2522369bca
SSDEEP

6144:FGe+3Qg4JVjFy5rVt43DF7xCt5lTjIzIhzl87MU/F14kLns1IOabELgvmCOgfDWd:/cQNFy5pCF7xcNXOj/jYxabExCKw2/

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/Pistol Whip ReBoRn hitbox/Config.exe	upx

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Pistol Whip ReBoRn hitbox/Config.dll
unpack001/Pistol Whip ReBoRn hitbox/Config.exe
unpack002/out.upx

Files

5fc45713d1c95a358f74c26238054ce7_JaffaCakes118
.rar
Pistol Whip ReBoRn hitbox/Config.dll
.dll windows:4 windows x86 arch:x86

84acbc2a2269fa2faf97a8131851105d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateThread
GetModuleFileNameA
FreeLibrary
GetProcAddress
LoadLibraryA
CloseHandle
OpenProcess
GetLastError
WriteProcessMemory
VirtualProtectEx
VirtualProtect
GetCurrentProcessId
MapViewOfFile
CreateFileMappingA
GetLocaleInfoW
SetEndOfFile
GetOEMCP
GetACP
CreateFileA
ReadFile
Sleep
GetModuleHandleA
ReadProcessMemory
ExitProcess
SetStdHandle
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
GetVersionExA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
SetUnhandledExceptionFilter
FlushFileBuffers
SetFilePointer
WriteFile
EnterCriticalSection
InitializeCriticalSection
InterlockedExchange
DeleteCriticalSection
LeaveCriticalSection
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
MultiByteToWideChar
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RaiseException
HeapFree
HeapAlloc
GetCommandLineA
GetVersion
HeapReAlloc
LCMapStringA
LCMapStringW
GetCPInfo
CompareStringA
CompareStringW
TerminateProcess
GetCurrentProcess
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetEnvironmentVariableA

user32

GetAsyncKeyState
FindWindowA
GetWindowThreadProcessId
SetWindowsHookExA
CallNextHookEx
SetCursorPos

gdi32

SelectObject
DeleteObject
CreateFontA

winmm

timeGetTime
sndPlaySoundA

opengl32

glClearColor
glTexEnvi
glColor3ub
glRasterPos2i
glHint
glPushAttrib
glListBase
glCallLists
glPopAttrib
wglGetCurrentDC
glGenLists
wglUseFontBitmapsA
glLineWidth
glColor4f
glVertex3fv
glPushMatrix
glLoadIdentity
glDisable
glEnable
glBlendFunc
glColor4ub
glBegin
glVertex2f
glEnd
glPopMatrix

Sections

.text
Size: 304KB - Virtual size: 300KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Pistol Whip ReBoRn hitbox/Config.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 176KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 308KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 436KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Pistol Whip ReBoRn hitbox/Readme.txt
Pistol Whip ReBoRn hitbox/Zone-CStrike.3Dn.ru - Скачать читы для онлайн игр. Читы для Cs 1.6, Читы для CSS, Читы для COD3,4,5,6,7 и для многих других..url
Pistol Whip ReBoRn hitbox/commandmenu.txt
Pistol Whip ReBoRn hitbox/main.cfg
Readme.txt

Sharing

General

Malware Config

Signatures

Files

84acbc2a2269fa2faf97a8131851105d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

opengl32

Sections

.text Size: 304KB - Virtual size: 300KB

.rdata Size: 32KB - Virtual size: 28KB

.data Size: 24KB - Virtual size: 55KB

.reloc Size: 24KB - Virtual size: 22KB

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 176KB

UPX1 Size: 308KB - Virtual size: 312KB

.rsrc Size: 81KB - Virtual size: 84KB

Headers

File Characteristics

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 436KB - Virtual size: 432KB

.text
Size: 304KB - Virtual size: 300KB

.rdata
Size: 32KB - Virtual size: 28KB

.data
Size: 24KB - Virtual size: 55KB

.reloc
Size: 24KB - Virtual size: 22KB

UPX0
Size: - Virtual size: 176KB

UPX1
Size: 308KB - Virtual size: 312KB

.rsrc
Size: 81KB - Virtual size: 84KB

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 436KB - Virtual size: 432KB