5f2b7d7b05e099e96c634ba6dbc47e8b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5f2b7d7b05e099e96c634ba6dbc47e8b_JaffaCakes118
Size

175KB
MD5

5f2b7d7b05e099e96c634ba6dbc47e8b
SHA1

2d3f08caf2a234eff8861ca94780149ae58b3b74
SHA256

9846070e381daf46b1d0bd527d6c166ac7bbba8a9418763b5449d207d93d2ecc
SHA512

64bdcf65e9e248ec88fe0bcaa10737103347ec43175876f5dcf26fefb580ea712c6eca26e870aadb17fc17d721b6dde5fb784559924be0a61ff56f48aeaa3bb9
SSDEEP

3072:mBObIqu++mknt0+hmyrSsSQIHVSbfsIqaSZCVN15flNvs5gOkesXwIeXcKyRC:4ObIqjenhmyZ8VSJSZCVfNU5gnZXosM

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/TechSmith.Camtasia.Studio.v6.x.ONLY.Keymaker-ZWT/TechSmith.Camtasia.Studio.v6.x/keygen.exe	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/TechSmith.Camtasia.Studio.v6.x.ONLY.Keymaker-ZWT/TechSmith.Camtasia.Studio.v6.x/keygen.exe

Files

5f2b7d7b05e099e96c634ba6dbc47e8b_JaffaCakes118
.zip
0Day Soft - www.softnewsportal.ru.url
TechSmith.Camtasia.Studio.v6.x.ONLY.Keymaker-ZWT/0Day Soft - www.softnewsportal.ru.url
TechSmith.Camtasia.Studio.v6.x.ONLY.Keymaker-ZWT/TechSmith.Camtasia.Studio.v6.x/0Day Soft - www.softnewsportal.ru.url
TechSmith.Camtasia.Studio.v6.x.ONLY.Keymaker-ZWT/TechSmith.Camtasia.Studio.v6.x/file_id.diz
TechSmith.Camtasia.Studio.v6.x.ONLY.Keymaker-ZWT/TechSmith.Camtasia.Studio.v6.x/keygen.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 28KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZWT
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZWT
Size: 56KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZWT
Size: 19KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZWT
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZWT
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
TechSmith.Camtasia.Studio.v6.x.ONLY.Keymaker-ZWT/TechSmith.Camtasia.Studio.v6.x/zwt.nfo

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 28KB - Virtual size: 48KB

.ZWT Size: 3KB - Virtual size: 4KB

.data Size: 2KB - Virtual size: 44KB

.rsrc Size: 60KB - Virtual size: 104KB

.ZWT Size: 56KB - Virtual size: 64KB

.ZWT Size: 19KB - Virtual size: 24KB

.reloc Size: - Virtual size: 4KB

.ZWT Size: 6KB - Virtual size: 8KB

.ZWT Size: - Virtual size: 4KB

.text
Size: 28KB - Virtual size: 48KB

.ZWT
Size: 3KB - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 44KB

.rsrc
Size: 60KB - Virtual size: 104KB

.ZWT
Size: 56KB - Virtual size: 64KB

.ZWT
Size: 19KB - Virtual size: 24KB

.reloc
Size: - Virtual size: 4KB

.ZWT
Size: 6KB - Virtual size: 8KB

.ZWT
Size: - Virtual size: 4KB