f07399b1c632a07a21502b213345df3a_JaffaCakes118

General

Target

f07399b1c632a07a21502b213345df3a_JaffaCakes118
Size

578KB
MD5

f07399b1c632a07a21502b213345df3a
SHA1

61c919435e77d1b7aa97206db1cac8afb213f730
SHA256

3b6786c55179fa007b67d9f65d63436dcfc405c67fc4197c7c1e7fee0e0e2d73
SHA512

694f13a78a382d6376e515bec5a54c6e4d593ae9306a68c3cc3fb0fa166aedbbb5bc7691bfca0b8ac42b16783f6b5d8a9584926efc8de954abd822a015e4610d
SSDEEP

12288:aooJB94K1Fs8IqU+r2ovW1meyUGpA1wXOY49kbDUqK:aoy94K1zIqVrfvW1HGm1JGbD8

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f07399b1c632a07a21502b213345df3a_JaffaCakes118

Files

f07399b1c632a07a21502b213345df3a_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

Size: 70KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 76KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 69KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 9KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 244KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 70KB - Virtual size: 228KB

Size: 76KB - Virtual size: 96KB

Size: - Virtual size: 4KB

Size: 69KB - Virtual size: 80KB

Size: 512B - Virtual size: 4KB

Size: 9KB - Virtual size: 20KB

.rsrc Size: 108KB - Virtual size: 108KB

.data Size: 244KB - Virtual size: 464KB

.adata Size: - Virtual size: 4KB

.rsrc
Size: 108KB - Virtual size: 108KB

.data
Size: 244KB - Virtual size: 464KB

.adata
Size: - Virtual size: 4KB