eeb90e56d4cb71fa79d3fa830d07c289_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

eeb90e56d4cb71fa79d3fa830d07c289_JaffaCakes118
Size

87KB
MD5

eeb90e56d4cb71fa79d3fa830d07c289
SHA1

16e75b231e3abd315b8b0a3cf3258cebb7e83043
SHA256

6110e5b0e7960bab2342cca01b34aa174cfc68e5d70fd5089f8a1c3ba5183049
SHA512

d62b53adb6e1ab9ace5e554e5f2f2e775e1e96a63ba4798ad1ffd101f73379a478a4a8570836ec44088ba30c32555ac14aa8f3c7f102a7a075ab62c59018c633
SSDEEP

1536:+e33fhaYz/Sc0GCIbvHrsuh1xusj8+NNLV3qob8z432OtcmogFTU5W:+83fZScdCOLt4+XL24mF0CW

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/TGTMODZ V5.0/TGTMODZ V5.0.exe
unpack001/TGTMODZ V5.0/cuasogame.dll
unpack001/TGTMODZ V5.0/uhvui.dll

Files

eeb90e56d4cb71fa79d3fa830d07c289_JaffaCakes118
.rar
CnProModz hack one hit, headshot cf.url
.url
Huong Dan.reg
Huong dan su dung TGT Modz.url
.url
TGTMODZ V5.0/TGTMODZ V5.0.exe
.exe windows:4 windows x86 arch:x86

e1a576666b13bfa37edd7f7c8f138725

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaFreeVar
__vbaStrVarMove
__vbaLateIdCall
__vbaEnd
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
_adj_fprem1
__vbaStrCat
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaOnError
__vbaObjSet
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
__vbaVarIndexLoad
_CIsin
__vbaChkstk
ord526
EVENT_SINK_AddRef
__vbaStrCmp
DllFunctionCall
__vbaCastObjVar
_adj_fpatan
__vbaR4Var
__vbaLateIdCallLd
EVENT_SINK_Release
ord600
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
__vbaStrToUnicode
_adj_fprem
_adj_fdivr_m64
__vbaLateIdStAd
__vbaFPException
__vbaI2Var
_CIlog
__vbaNew2
__vbaR8Str
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
ord681
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaVarTstNe
__vbaI4Var
__vbaStrToAnsi
__vbaVarDup
__vbaVerifyVarObj
__vbaLateMemCallLd
_CIatan
__vbaStrMove
_allmul
__vbaLateIdSt
_CItan
_CIexp
__vbaFreeObj
__vbaFreeStr

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TGTMODZ V5.0/cuasogame.dll
.exe windows:4 windows x86 arch:x86

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 8KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
TGTMODZ V5.0/uhvui.dll
.dll windows:4 windows x86 arch:x86

132b5253e577ba65f0d1ff05c9fd08ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetCursorPos

gdi32

CreateDIBSection

d3dx9_29

D3DXVec3Project

Sections

.text
Size: 57KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e1a576666b13bfa37edd7f7c8f138725

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 32KB - Virtual size: 29KB

.data Size: 4KB - Virtual size: 6KB

.rsrc Size: 8KB - Virtual size: 4KB

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 8KB - Virtual size: 32KB

.rsrc Size: 8KB - Virtual size: 12KB

132b5253e577ba65f0d1ff05c9fd08ae

Headers

File Characteristics

Imports

kernel32

user32

gdi32

d3dx9_29

Sections

.text Size: 57KB - Virtual size: 316KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 32KB - Virtual size: 29KB

.data
Size: 4KB - Virtual size: 6KB

.rsrc
Size: 8KB - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 32KB

.rsrc
Size: 8KB - Virtual size: 12KB

.text
Size: 57KB - Virtual size: 316KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB