25b0ec660e5f61e722a2c02a40460400_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25b0ec660e5f61e722a2c02a40460400_JaffaCakes118
Size

713KB
MD5

25b0ec660e5f61e722a2c02a40460400
SHA1

ab2e80bbeb6352ca4d39256a35ca42ac0a1e46c7
SHA256

d5306b7fdc3125259d49cee9054eaffebf67237f9240da82b244b932af7c919b
SHA512

19b02c5da0cdf7d9c747e3cb3b254455f5212a407b2223fb9cb75d6599ac0f6e684cc537b6b995d0d211e7964cde1dcb9a882b14ad5888520beadcd6491f9b46
SSDEEP

12288:lK6GhQ5vr8xL7zf2ppVxwoKjPIy6xehs2mEmGfrMKOQEsuJV:lK6GhQtr893+DnwoKUFximSimEV

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25b0ec660e5f61e722a2c02a40460400_JaffaCakes118

Files

25b0ec660e5f61e722a2c02a40460400_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 663KB - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE