93bae4aec6d25e22e822b841fc60618b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93bae4aec6d25e22e822b841fc60618b_JaffaCakes118
Size

43KB
MD5

93bae4aec6d25e22e822b841fc60618b
SHA1

79e01c730055dad19d7cfb19b2f5dbe762478a64
SHA256

8c83db026c87cc15717b3d1218504bc9b0299868df7d1f58771650b98cbd7b32
SHA512

b1b0735b310c46dbbf6f4eff88dc371f51f3a91147267f9a3f2673ff45978c40aee64ac05a55a1e3161ced7a4c64f1444c45270dbaa878b6f9c54115d644fbd6
SSDEEP

768:6DFsdhOlJWwMaP/k5Y6jUXDIIMY3uV8HOLkveAI0p3cw5m8F8WmPyzQ4+cxGdeVM:62iM9g/k50M9LklI0+wD8tyB+Z

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93bae4aec6d25e22e822b841fc60618b_JaffaCakes118

Files

93bae4aec6d25e22e822b841fc60618b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 28KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE