422dcec2923bc77b5322527c6348ed95_JaffaCakes118

General

Target

422dcec2923bc77b5322527c6348ed95_JaffaCakes118
Size

228KB
MD5

422dcec2923bc77b5322527c6348ed95
SHA1

22c328d9ea70f531e94daabe62f7090f9a3cfe08
SHA256

3ef57dac9aa56486584e337fd7d754f649f9445bb22ca3f34ee30929b8fdac6c
SHA512

0c68b2424858edb4346876ef5e4cc304675b2c4ae7ca16af9c983c3763bcfbc96b656eb16ac94f01163d702e0d2a7184d739e926de19ba766f6a3d7331666eb2
SSDEEP

6144:1AOTXGnnlsk7BPXS5Es2ATbwiTwEmFJq/:1nXenlhaEbAAImFU

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
422dcec2923bc77b5322527c6348ed95_JaffaCakes118

Files

422dcec2923bc77b5322527c6348ed95_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

Size: 18KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 18KB - Virtual size: 52KB

Size: 512B - Virtual size: 4KB

Size: - Virtual size: 4KB

Size: 41KB - Virtual size: 44KB

Size: 512B - Virtual size: 4KB

Size: 4KB - Virtual size: 8KB

.rsrc Size: 6KB - Virtual size: 16KB

.data Size: 156KB - Virtual size: 156KB

.adata Size: - Virtual size: 4KB

.rsrc
Size: 6KB - Virtual size: 16KB

.data
Size: 156KB - Virtual size: 156KB

.adata
Size: - Virtual size: 4KB