a11d7347de23e62df3961553c989d2de_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a11d7347de23e62df3961553c989d2de_JaffaCakes118
Size

77KB
MD5

a11d7347de23e62df3961553c989d2de
SHA1

aee9fb6ba54561bb7d572322b3fac78b1a65637f
SHA256

9934c36b0d7f0f12f01a43fcb883154df9fa7cb2e103db5b47b53d0a1c9d595e
SHA512

c657ce65acb94a7bd2162bd3b8051f11ebfacff8f3304a8394adc86757ba30ca13107d90570ee46abd1f725967d4db986bb2e8849b295faf63bcf6607894b184
SSDEEP

1536:fd5aatE2QmCViQLHT+7rAJrizIBEr97U67iWvpg:fPftE2QmCVbrT+7UJrUr97x5vW

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a11d7347de23e62df3961553c989d2de_JaffaCakes118

Files

a11d7347de23e62df3961553c989d2de_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 7KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fuuzor
Size: 512B - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 48KB

.rdata Size: 512B - Virtual size: 8KB

.data Size: 512B - Virtual size: 16KB

.sdata Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 8KB

fuuzor Size: 512B - Virtual size: 52KB

.data Size: 5KB - Virtual size: 184KB

.idata Size: 28KB - Virtual size: 32KB

.rdata Size: 22KB - Virtual size: 24KB

.rsrc Size: 6KB - Virtual size: 8KB

.aspack Size: 4KB - Virtual size: 4KB

.adata Size: - Virtual size: 4KB

.text
Size: 7KB - Virtual size: 48KB

.rdata
Size: 512B - Virtual size: 8KB

.data
Size: 512B - Virtual size: 16KB

.sdata
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 8KB

fuuzor
Size: 512B - Virtual size: 52KB

.data
Size: 5KB - Virtual size: 184KB

.idata
Size: 28KB - Virtual size: 32KB

.rdata
Size: 22KB - Virtual size: 24KB

.rsrc
Size: 6KB - Virtual size: 8KB

.aspack
Size: 4KB - Virtual size: 4KB

.adata
Size: - Virtual size: 4KB