33d42c2a09cbb0d77577548b8744d33d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

33d42c2a09cbb0d77577548b8744d33d_JaffaCakes118
Size

181KB
MD5

33d42c2a09cbb0d77577548b8744d33d
SHA1

6a9e88f2742daee022f17cbdaad91a8b4fc97e37
SHA256

9188bd566f4646efebbf427650b956cef61720ef77d8f4f5f27da5b69ac11a3f
SHA512

85f8b22e7d99311f570052a415032739b50d12f44d9bac0bda40e2b89cd31b9d0f8d8ba3514df359fb4e3fe0a781cb1e9f3ae029bf2037bb1f4217fefe7ec1a5
SSDEEP

3072:xdd0FZk3OhC8lgX/+pY7LsWE5fCtiwDud0NTv/7FfKDifyuAmDLxPZL/kz:xdaZk3YSX/Jm55epf9em/Iz

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33d42c2a09cbb0d77577548b8744d33d_JaffaCakes118

Files

33d42c2a09cbb0d77577548b8744d33d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 140KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE