83caf549f7ab1b1e0a926cf4349b8dd8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

83caf549f7ab1b1e0a926cf4349b8dd8_JaffaCakes118
Size

78KB
MD5

83caf549f7ab1b1e0a926cf4349b8dd8
SHA1

7b41f61af3ffbf5dd0ab60094b92f1e4500dae06
SHA256

bb849b32414786e32ee474a802708c3ef5fa7ee60a454b30ba93e43beed9bf38
SHA512

ec5f4b4cb415006e98c917e26e23a7763646e64ace3683ca6f55e6895938271137470a2ffefe856a94cd73cecb1a0ad4796d2a9d6ebd299977a572917c8922fe
SSDEEP

1536:gJtIAu8orP85w0PcELCr/+VfES9C9rNWBFcq5mloqaObYe5aE45eXbA:aIyNvBy+A9rNabsoqB5T45l

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83caf549f7ab1b1e0a926cf4349b8dd8_JaffaCakes118

Files

83caf549f7ab1b1e0a926cf4349b8dd8_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 7KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

m97r
Size: 512B - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 48KB

.rdata Size: 512B - Virtual size: 8KB

.data Size: 512B - Virtual size: 16KB

.sdata Size: 512B - Virtual size: 8KB

.reloc Size: 512B - Virtual size: 8KB

m97r Size: 512B - Virtual size: 52KB

.data Size: 5KB - Virtual size: 204KB

.idata Size: 12KB - Virtual size: 16KB

.rdata Size: 37KB - Virtual size: 40KB

.rsrc Size: 8KB - Virtual size: 8KB

.aspack Size: 4KB - Virtual size: 4KB

.adata Size: - Virtual size: 4KB

.text
Size: 7KB - Virtual size: 48KB

.rdata
Size: 512B - Virtual size: 8KB

.data
Size: 512B - Virtual size: 16KB

.sdata
Size: 512B - Virtual size: 8KB

.reloc
Size: 512B - Virtual size: 8KB

m97r
Size: 512B - Virtual size: 52KB

.data
Size: 5KB - Virtual size: 204KB

.idata
Size: 12KB - Virtual size: 16KB

.rdata
Size: 37KB - Virtual size: 40KB

.rsrc
Size: 8KB - Virtual size: 8KB

.aspack
Size: 4KB - Virtual size: 4KB

.adata
Size: - Virtual size: 4KB