74e65904b33095fd37e7d62e65491c2d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74e65904b33095fd37e7d62e65491c2d_JaffaCakes118
Size

32KB
MD5

74e65904b33095fd37e7d62e65491c2d
SHA1

bcdd72b2d9bf9044a046d15e6f48c992008773e9
SHA256

0fe6e1a019ee6046e0a3bd1ed38e346334812d105956d85780e30a25328a67b9
SHA512

4452230f31344141cf243c2a7248bc01927702c8f43c70ad64e1537f23652c1bf5a95f576406e871e1f883f5141134df909b268c53b1c603d757af27cbb8cee9
SSDEEP

768:K29DbhiZb47JiHG9488TDEQ1Jgr0usOxBdeV:tD9iZkwHG94lfEQ1J20usa

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74e65904b33095fd37e7d62e65491c2d_JaffaCakes118

Files

74e65904b33095fd37e7d62e65491c2d_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 18KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE