dd444ee8375673bcfa0e9a6f5e7b15f8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dd444ee8375673bcfa0e9a6f5e7b15f8_JaffaCakes118
Size

2.5MB
MD5

dd444ee8375673bcfa0e9a6f5e7b15f8
SHA1

953771e625ae0b3e25642fdfb1466546b8858846
SHA256

f8963115ced427aa510fd95d515012156ff589ae3df361a784798046bea245b2
SHA512

903ca35b54472c2580296450004df04c1eef04f4dd9103f132da527e9bd34e9f429c74d7a933e7fff1786f63dc0921f5614d212866a18b919fc5ef104943a748
SSDEEP

49152:SsXEx+qu9M9z8hlTwzCUJURA/yxUuWsQ4aUHKVPFeEWQaqaoBufXE:mO4W5wz5UUsf7HKH1F3uXE

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd444ee8375673bcfa0e9a6f5e7b15f8_JaffaCakes118

Files

dd444ee8375673bcfa0e9a6f5e7b15f8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

gq_gmk?a
Size: 387KB - Virtual size: 940KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

,T_TQ0Y4
Size: 22KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

L>D2kZn8
Size: - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0#:8C^KX
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fh)BNNP'
Size: - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

=#@-dRlt
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

c,l"v!bI
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LOcW-t$(
Size: 951KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Qcr aVl5
Size: 890KB - Virtual size: 904KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

X0nQ^OKY
Size: 101KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

%mSw%h>6
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uho3``wN
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_O^\:H0E
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

gq_gmk?a Size: 387KB - Virtual size: 940KB

,T_TQ0Y4 Size: 22KB - Virtual size: 40KB

L>D2kZn8 Size: - Virtual size: 71KB

0#:8C^KX Size: 12KB - Virtual size: 12KB

fh)BNNP' Size: - Virtual size: 16B

=#@-dRlt Size: 512B - Virtual size: 4KB

c,l"v!bI Size: 57KB - Virtual size: 60KB

LOcW-t$( Size: 951KB - Virtual size: 1.5MB

Qcr aVl5 Size: 890KB - Virtual size: 904KB

X0nQ^OKY Size: 101KB - Virtual size: 104KB

%mSw%h>6 Size: - Virtual size: 64KB

uho3``wN Size: 6KB - Virtual size: 8KB

_O^\:H0E Size: - Virtual size: 4KB

gq_gmk?a
Size: 387KB - Virtual size: 940KB

,T_TQ0Y4
Size: 22KB - Virtual size: 40KB

L>D2kZn8
Size: - Virtual size: 71KB

0#:8C^KX
Size: 12KB - Virtual size: 12KB

fh)BNNP'
Size: - Virtual size: 16B

=#@-dRlt
Size: 512B - Virtual size: 4KB

c,l"v!bI
Size: 57KB - Virtual size: 60KB

LOcW-t$(
Size: 951KB - Virtual size: 1.5MB

Qcr aVl5
Size: 890KB - Virtual size: 904KB

X0nQ^OKY
Size: 101KB - Virtual size: 104KB

%mSw%h>6
Size: - Virtual size: 64KB

uho3``wN
Size: 6KB - Virtual size: 8KB

_O^\:H0E
Size: - Virtual size: 4KB