198596c66ee13e04b9cda2fb8c2b9ae8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

198596c66ee13e04b9cda2fb8c2b9ae8_JaffaCakes118
Size

1.3MB
MD5

198596c66ee13e04b9cda2fb8c2b9ae8
SHA1

d18a63270bd61f8d8ab85f7dc2d5382a435cf128
SHA256

e6ce35d50d4b4eb0a08eecfe52251c7f5d2741414b01d1f6f8747f209abd63db
SHA512

53d19b47e3e77004aa58d00ba51b5485897c260cb7962472f86a3f9236e6fd5df69655ea1e38a7ede16692012408fe450b15c740c67bb6dc8d6f23c247fdd55f
SSDEEP

24576:bxgvqqh/x+kGhn2hLRjs5R5zrww5ElDDbZO95NZs3def5+B/vbh5ISCIuTPCuV:beCkGR2pReRZrwuElDDbw53gRnbh5ISi

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
198596c66ee13e04b9cda2fb8c2b9ae8_JaffaCakes118

Files

198596c66ee13e04b9cda2fb8c2b9ae8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 398KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 353KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 587KB - Virtual size: 588KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 398KB - Virtual size: 1.1MB

.itext Size: 2KB - Virtual size: 8KB

.data Size: 10KB - Virtual size: 24KB

.bss Size: - Virtual size: 24KB

.idata Size: 4KB - Virtual size: 16KB

.didata Size: 512B - Virtual size: 4KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 96KB

.rsrc Size: 353KB - Virtual size: 2.4MB

.aspack Size: 587KB - Virtual size: 588KB

.adata Size: - Virtual size: 4KB

.text
Size: 398KB - Virtual size: 1.1MB

.itext
Size: 2KB - Virtual size: 8KB

.data
Size: 10KB - Virtual size: 24KB

.bss
Size: - Virtual size: 24KB

.idata
Size: 4KB - Virtual size: 16KB

.didata
Size: 512B - Virtual size: 4KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 96KB

.rsrc
Size: 353KB - Virtual size: 2.4MB

.aspack
Size: 587KB - Virtual size: 588KB

.adata
Size: - Virtual size: 4KB