46e230bee4094c98d29229524a531bef_JaffaCakes118 | Triage

Sharing

General

Target

46e230bee4094c98d29229524a531bef_JaffaCakes118
Size

1.3MB
MD5

46e230bee4094c98d29229524a531bef
SHA1

7eab2f3749d9d0f929a6455eba72d85c5a88f474
SHA256

594b6fb7a7c4489d81117c1e253565d7332467dce7de05ec7e8600310f6af049
SHA512

c41b8f587cd30a26376f5e75017bcfe2330c31d7e8cd04d7928e6f040e68794f9b1bf4b83249fdfff3f80932d4a54c1975da4cb9035898fa254a45de1505b3c0
SSDEEP

24576:jUKtl5/5i9BnNJPzhOcj3X/UOvbcBFVni0zz6dS7CDh/bOlDebV9:xl5B0BnNJYcj/UO4BVzCV/u4

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46e230bee4094c98d29229524a531bef_JaffaCakes118

Files

46e230bee4094c98d29229524a531bef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ecode
Size: 155KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE