Overview

overview

8

Static

static

7

arswp/ArSwp.dll

windows7-x64

8

arswp/ArSwp.dll

windows10-2004-x64

8

arswp/ArSwp.exe

windows7-x64

3

arswp/ArSwp.exe

windows10-2004-x64

3

安装说明.url

windows7-x64

1

安装说明.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    020699e5d1b5dcb5b21d747384401e39_JaffaCakes118

  • Size

    676KB

  • MD5

    020699e5d1b5dcb5b21d747384401e39

  • SHA1

    b8c1563845b70766a1fd881f1d9c1999e08b38ad

  • SHA256

    41843784c365ac7b7fe3e94d43b4141075f3ba57010eb68191c05b838626820f

  • SHA512

    f2a3381fb7dc310042dcc969c881ede9dba47f8853a63a03d7b8dc072231fc34c2a7dcb0bff4dc8416463ccd8163844fc2f171b492239f30b3b64f7ece9f3fc4

  • SSDEEP

    12288:DXEJVBnB6DSQ3w5SJRKkjWStbiDAjkykvN2M7iT2qICzV8RHvRsOsYQP+SngUOQn:DXmBYDRgaNWibiDAjjk12MOT2OzO9iOM

Score
7/10
aspackv2

Malware Config

Signatures

  • ASPack v2.12-2.42 2 IoCs

    Detects executables packed with ASPack v2.12-2.42

    aspackv2
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 020699e5d1b5dcb5b21d747384401e39_JaffaCakes118
    .rar
  • arswp/ArSwp.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • arswp/ArSwp.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • arswp/Logo/Thumbs.db
  • arswp/Logo/home.ini
  • arswp/Logo/logo.bmp
  • arswp/ar.lib
  • arswp/at.lib
  • arswp/file.dat
  • arswp/readme.txt
  • arswp/set.ini
  • 安装说明.url
    .url