5dd3b2c771f779006f31e157fece9309_JaffaCakes118 | Triage

Sharing

General

Target

5dd3b2c771f779006f31e157fece9309_JaffaCakes118
Size

23KB
MD5

5dd3b2c771f779006f31e157fece9309
SHA1

39ecfaf4150b9ee489c35ef83a690ecfb0e86314
SHA256

be3ee9d56a17226829597ec787ca0d032d3631bab954925fa8e2dfc0a5d91e27
SHA512

79c585cca525d5b62c0adba0af554a72555ae9b92ecbeee7723fd4467b7b13150a8e6d0892982fce85b150c365d697fa889bcf147b62d92f411ab6b540722bfc
SSDEEP

384:XNn6pVqOsFDnMkYo7ij7Up+yM5ZDOQrdCWIe/Axrr6+e9Pfqbn1:96poOsL7ijZnqQrktxSha5

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5dd3b2c771f779006f31e157fece9309_JaffaCakes118

Files

5dd3b2c771f779006f31e157fece9309_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 10KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE