a2b25ae83edef9b8e3b751931b3462e2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a2b25ae83edef9b8e3b751931b3462e2_JaffaCakes118
Size

165KB
MD5

a2b25ae83edef9b8e3b751931b3462e2
SHA1

98e0db540f91769bb554796de0f125b226858d2c
SHA256

2291ac3261ac3c245b2e667b72dcb17fa541fd174ce8925687a798d2d4abe47a
SHA512

b1b33d6465cb07540c884e1311e9046dc4c2ed8b542b743120a72b9c68778f5759fae881fd5823b08da1ca01aa8c2c7bbb6946aa7278dfaa16cf328fa3bda49b
SSDEEP

3072:kISgnj9ZdnovLLOomLp3/TvmEiJv628VcvWvUqr/2FmizVxlVIQrc:k2j9Z2CHLt/SEi028/prLiz0uc

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/FTP Web浏览搜索引擎(asp) v1.0 RC2/ftpSE.exe	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/FTP Web浏览搜索引擎(asp) v1.0 RC2/ftpSE.exe

Files

a2b25ae83edef9b8e3b751931b3462e2_JaffaCakes118
.rar
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/0.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/ace.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/app.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/arj.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/asp.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/av.GIF
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/avi.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/bmp.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/cab.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/cad.GIF
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/chm.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/com.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/dir.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/dirfile.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/dll.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/dmv.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/doc.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/down.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/exe.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/ftp.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/gif.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/htm.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/html.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/img.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/info.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/jpeg.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/jpg.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/m3u.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/mdb.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/mid.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/mov.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/move.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/mp3.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/mpeg.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/mpg.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/png.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/ppt.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/ra.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/rar.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/real.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/rm.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/sql.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/swf.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/tar.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/torrent.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/txt.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/url.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/wav.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/wave.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/wmv.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/xls.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftp/zip.gif
.gif
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftpSE.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 94KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftpse.ini
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftpse.mdb
FTP Web浏览搜索引擎(asp) v1.0 RC2/ftpseconfig.asp
.vbs
FTP Web浏览搜索引擎(asp) v1.0 RC2/index.asp
.asp
FTP Web浏览搜索引擎(asp) v1.0 RC2/下载说明.htm
.html .js polyglot
FTP Web浏览搜索引擎(asp) v1.0 RC2/安装说明.txt
FTP Web浏览搜索引擎(asp) v1.0 RC2/更新记录.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 94KB - Virtual size: 192KB

.rdata Size: 15KB - Virtual size: 52KB

.data Size: 3KB - Virtual size: 24KB

.rsrc Size: 7KB - Virtual size: 40KB

.aspack Size: 26KB - Virtual size: 28KB

.adata Size: - Virtual size: 4KB

.text
Size: 94KB - Virtual size: 192KB

.rdata
Size: 15KB - Virtual size: 52KB

.data
Size: 3KB - Virtual size: 24KB

.rsrc
Size: 7KB - Virtual size: 40KB

.aspack
Size: 26KB - Virtual size: 28KB

.adata
Size: - Virtual size: 4KB