2e5d51bf039c23841166c7938c6b2533_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2e5d51bf039c23841166c7938c6b2533_JaffaCakes118
Size

1.8MB
MD5

2e5d51bf039c23841166c7938c6b2533
SHA1

149d2d2a4855c7e07b342089b8b909b9dbdcbdcf
SHA256

943343cabf3dc5f7b0ea76471bbb65b6f7732edb5583cba15bedb85bb7c95c87
SHA512

261b64c2fd5dac436811a2fb6248b85820148506131840bb7e83fb34f43a9d4bbb6f1d62d70fd15063c226c9627616bfe65d1b0e36a734c413c6b593d92eea03
SSDEEP

49152:TwZRKS2j4J7Evf7uip4HOlflHh4q4WtJ+t0YKz:87h4CKuip4HOlsqHerK

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e5d51bf039c23841166c7938c6b2533_JaffaCakes118

Files

2e5d51bf039c23841166c7938c6b2533_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

LTGetILTMemory
SetMasterDatabase

Sections

nsn
Size: 785KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nsn
Size: 248KB - Virtual size: 246KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nsn
Size: 8KB - Virtual size: 210KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nsn
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nsn
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nsn
Size: 132B - Virtual size: 136B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nsn
Size: 736KB - Virtual size: 736KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

nsn Size: 785KB - Virtual size: 2.6MB

nsn Size: 248KB - Virtual size: 246KB

nsn Size: 8KB - Virtual size: 210KB

nsn Size: 24KB - Virtual size: 22KB

nsn Size: 12KB - Virtual size: 16KB

nsn Size: 132B - Virtual size: 136B

nsn Size: 736KB - Virtual size: 736KB

.vmp0 Size: 16KB - Virtual size: 15KB

.reloc Size: 4KB - Virtual size: 80B

nsn
Size: 785KB - Virtual size: 2.6MB

nsn
Size: 248KB - Virtual size: 246KB

nsn
Size: 8KB - Virtual size: 210KB

nsn
Size: 24KB - Virtual size: 22KB

nsn
Size: 12KB - Virtual size: 16KB

nsn
Size: 132B - Virtual size: 136B

nsn
Size: 736KB - Virtual size: 736KB

.vmp0
Size: 16KB - Virtual size: 15KB

.reloc
Size: 4KB - Virtual size: 80B