2b1d7e2b5db07f167d2ba4ecf1de094c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2b1d7e2b5db07f167d2ba4ecf1de094c_JaffaCakes118
Size

419KB
MD5

2b1d7e2b5db07f167d2ba4ecf1de094c
SHA1

ae8fac856ccebe57902f8c559da9d9ff6c61c717
SHA256

6d861081041d2992540f34d02b986acf8804ae6c6786d3d74b0b3778e1d7033d
SHA512

94b42b0f0b86de883412df37a3f15ffde12af5de73ea3ca380cab9514d234fba6951de49f9808190b06542b098be36b2550bd0abd03baeb4b4532a3249866362
SSDEEP

6144:Tna9UYHdOhkB/HAPvspQeeaQee4QeesQeeKmQeehQeeD7P4Q6eL42Vt5JB57hAOE:29UY946cPP4oVJB57hY5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b1d7e2b5db07f167d2ba4ecf1de094c_JaffaCakes118

Files

2b1d7e2b5db07f167d2ba4ecf1de094c_JaffaCakes118
.dll windows:5 windows x86 arch:x86

7dd22752aaa567bd3311873a3b3f7ef7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\Cheat Damage\Kumpulan SC\Cheat Ane\WH Privasi\Release\X-BH.pdb

Imports

kernel32

MultiByteToWideChar
WideCharToMultiByte
VirtualFree
VirtualAlloc
OutputDebugStringA
GetSystemInfo
IsProcessorFeaturePresent
WriteFile
GetLastError
CreateFileA
CloseHandle
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
InterlockedIncrement
InterlockedDecrement
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
GetCommandLineA
RtlUnwind
GetModuleHandleW
GetVersionExA
LCMapStringA
LCMapStringW
GetCPInfo
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapCreate
HeapDestroy
HeapReAlloc
ReadFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
HeapSize
SetFilePointer
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
InitializeCriticalSectionAndSpinCount
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetLocaleInfoW
VirtualQuery
LoadLibraryA
GetProcAddress
GetCurrentProcess
FlushInstructionCache
SetLastError
CreateThread
VirtualProtect
GetModuleHandleA
Beep
Sleep
IsBadReadPtr
RaiseException
ExitProcess

user32

GetSystemMetrics
DestroyWindow
RegisterClassExA
GetAsyncKeyState
MessageBoxA
CreateWindowExA
DefWindowProcA
GetDesktopWindow

d3d9

Direct3DCreate9

gdi32

SetBkColor
GetCharacterPlacementA
SelectObject
SetBkMode
GetTextMetricsW
GetCharacterPlacementW
SetTextColor
ExtTextOutW
MoveToEx
ExtTextOutA
CreateCompatibleDC
SetMapMode
SetTextAlign
CreateFontIndirectW
CreateFontIndirectA
DeleteObject
DeleteDC
CreateDIBSection
GetGlyphOutlineA
GetTextMetricsA
GetObjectW
GetObjectA
GetFontLanguageInfo

advapi32

RegQueryValueExA
RegOpenKeyA
RegCloseKey

Sections

.text
Size: 229KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 46KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 440B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7dd22752aaa567bd3311873a3b3f7ef7

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

d3d9

gdi32

advapi32

Sections

.text Size: 229KB - Virtual size: 229KB

.rdata Size: 112KB - Virtual size: 112KB

.data Size: 46KB - Virtual size: 65KB

.rsrc Size: 512B - Virtual size: 440B

.reloc Size: 29KB - Virtual size: 28KB

.text
Size: 229KB - Virtual size: 229KB

.rdata
Size: 112KB - Virtual size: 112KB

.data
Size: 46KB - Virtual size: 65KB

.rsrc
Size: 512B - Virtual size: 440B

.reloc
Size: 29KB - Virtual size: 28KB