66e73ed01780a58ff870ed17de01e2ed_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

66e73ed01780a58ff870ed17de01e2ed_JaffaCakes118
Size

3.0MB
MD5

66e73ed01780a58ff870ed17de01e2ed
SHA1

6ac60c1f07a156cf30597a7b5f7632cea1e5f461
SHA256

f0faee8ef4f7724e7defc6e54ea8dbfab3a0ff9270f734c1bd081c856a690fb3
SHA512

66acecbda51fc190da63acb03b9ab76d1f7a9abd34ee6d5a3fc804ded4d2be88049deb56da577b340a42c5ec406779f72ff553ce30be67125419ef78a67a5919
SSDEEP

98304:QYG32KOXHs1hEqeAphGmCWpCBfCN13b5K:QYy2KUHCf7hGFxBfcVb5K

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/XPIZE.SCR	aspack_v212_v242

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/XPICONS.DLL
unpack001/XPIZE.SCR

Files

66e73ed01780a58ff870ed17de01e2ed_JaffaCakes118
.zip
CHORD.WAV
LOGO.SYS
LOGOS.SYS
LOGOW.SYS
NOTIFY.WAV
ULTIMXP.THEME
XPAERO.BMP
XPDEFLT.WAV
XPERROR.WAV
XPEXCLAM.WAV
XPICONS.DLL
.dll windows:4 windows x86 arch:x86

e07e00e45407ff0dd6abc9eaa981fa7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_initterm
malloc
_adjust_fdiv
free

Sections

.text
Size: 4KB - Virtual size: 366B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 138B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 276KB - Virtual size: 274KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
XPIZE.SCR
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 212KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 18KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 14KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.axial
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
XPMENU.WAV
XPMINIM.WAV
XPRECYCL.WAV
XPRESTOR.WAV
XPSDOWN.WAV
XPSTART.WAV
XPSTOP.WAV

Sharing

General

Malware Config

Signatures

Files

e07e00e45407ff0dd6abc9eaa981fa7b

Headers

File Characteristics

Imports

msvcrt

Sections

.text Size: 4KB - Virtual size: 366B

.rdata Size: 4KB - Virtual size: 138B

.data Size: 4KB - Virtual size: 36B

.rsrc Size: 276KB - Virtual size: 274KB

.reloc Size: 4KB - Virtual size: 324B

Headers

File Characteristics

Sections

.text Size: 212KB - Virtual size: 444KB

.rdata Size: 18KB - Virtual size: 68KB

.data Size: 14KB - Virtual size: 72KB

.sxdata Size: 4KB - Virtual size: 4KB

.rsrc Size: 108KB - Virtual size: 108KB

.axial Size: 5KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 366B

.rdata
Size: 4KB - Virtual size: 138B

.data
Size: 4KB - Virtual size: 36B

.rsrc
Size: 276KB - Virtual size: 274KB

.reloc
Size: 4KB - Virtual size: 324B

.text
Size: 212KB - Virtual size: 444KB

.rdata
Size: 18KB - Virtual size: 68KB

.data
Size: 14KB - Virtual size: 72KB

.sxdata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 108KB - Virtual size: 108KB

.axial
Size: 5KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB