bd200f89d00af0d17d5b15c5522b1321_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bd200f89d00af0d17d5b15c5522b1321_JaffaCakes118
Size

305KB
MD5

bd200f89d00af0d17d5b15c5522b1321
SHA1

2d87a5967105b07e61a1dfa636d92a6656932f8e
SHA256

155b557ce737b1520d1cb066f586f12fd40a560a4967626cdafa7d8108384c2b
SHA512

a91af4b97ffb8d4ee020226ee9fb6a4301e3bf01070bcb3b314f0480c05dde262aabf6499c33c9046a560c5e462ebf0a9e5e0f09ecf080cad61c3808617851a4
SSDEEP

6144:WYqIiKtwflY1+HXqnzgE/HqhENXs2dy92NgvpnoJtEh/F:WYlaflYs3aXPy2anwWht

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd200f89d00af0d17d5b15c5522b1321_JaffaCakes118

Files

bd200f89d00af0d17d5b15c5522b1321_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

ServiceMain
ServiceMainManual

Sections

Size: 104KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 18KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 119KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 104KB - Virtual size: 264KB

Size: 18KB - Virtual size: 36KB

Size: - Virtual size: 16KB

Size: 8KB - Virtual size: 8KB

Size: 512B - Virtual size: 4KB

Size: 15KB - Virtual size: 16KB

.rsrc Size: 11KB - Virtual size: 12KB

Size: 16KB - Virtual size: 20KB

Size: 12KB - Virtual size: 16KB

.data Size: 119KB - Virtual size: 120KB

.adata Size: - Virtual size: 4KB

.rsrc
Size: 11KB - Virtual size: 12KB

.data
Size: 119KB - Virtual size: 120KB

.adata
Size: - Virtual size: 4KB