30cf46c3e23cfa29bb65f69c468d91e6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

30cf46c3e23cfa29bb65f69c468d91e6_JaffaCakes118
Size

1.3MB
MD5

30cf46c3e23cfa29bb65f69c468d91e6
SHA1

e8ecd6789fea68b6f3c5c139cce1ded6ce73c784
SHA256

4c1e487ff0631e1fa27502375eb31717fb797fc62653838d9067e9bda9b9dbe7
SHA512

0bd51380a46a70189ea0c1dd6226d8a14eec34c07c563119ebd1b8d0324daf5cc8dc78af476e2f8f1f9458640155e21a9d1ae8e96dad65032a26f7b5c8475887
SSDEEP

24576:FSzkmBIqpixs9uBoTBjV/GqYoEUCC37JM6tkgYVlgVJCiczismDwcD4:F2BI0ieIB+Bx/GqzCCNBtkRVWLjczi1S

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/NFS-CfgInstaller.exe	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/NFS-CfgInstaller.exe
unpack002/out.upx

Files

30cf46c3e23cfa29bb65f69c468d91e6_JaffaCakes118
.rar
CARSELECT_MANUFACTURER_MITSUBISHI.dds
ECLIPSE/geometry.bin
ECLIPSE/textures.bin
Ferrari575SA_NFSU1Mod.jpg
.jpg
NFS-CfgInstaller.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 120KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 70KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Readme_ENG.txt
Readme_RUS.txt
SECONDARYLOGO_ECLIPSE.dds
ferrariSA_install.u1car

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 120KB

UPX1 Size: 70KB - Virtual size: 72KB

.rsrc Size: 5KB - Virtual size: 8KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 122KB - Virtual size: 122KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 7KB - Virtual size: 15KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 9KB - Virtual size: 8KB

UPX0
Size: - Virtual size: 120KB

UPX1
Size: 70KB - Virtual size: 72KB

.rsrc
Size: 5KB - Virtual size: 8KB

.text
Size: 122KB - Virtual size: 122KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 7KB - Virtual size: 15KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 9KB - Virtual size: 8KB