f5051ba15fc3f0e552a5713baa7bad7c_JaffaCakes118 | Triage

Sharing

General

Target

f5051ba15fc3f0e552a5713baa7bad7c_JaffaCakes118
Size

39KB
MD5

f5051ba15fc3f0e552a5713baa7bad7c
SHA1

9c8c6ee8628159c9dfef33c2455073e79669e106
SHA256

36f84df47f78b0bf66032244a704d3ed711e50a7b66aff4b957e0407d29c4b02
SHA512

4987989e4a76efb5a3ebb9e0f714a84bb885a6b8b7e79b9751fc1c4815da94e4c80d68acae1570ce8e5e78e7570d800183fd8d9ebf42fc01cdb1d3db67086dc2
SSDEEP

768:uHuoednmS+mRZ2qAlW4GrxIbPrfq4KkhLH9uq+eWXB:uHuBJ5RZ2qAlW4NjqWj8bXXB

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5051ba15fc3f0e552a5713baa7bad7c_JaffaCakes118

Files

f5051ba15fc3f0e552a5713baa7bad7c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.TEXT
Size: 5KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ASPACK
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ADATA
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE