110958138f479c3f717c3ef2a67f05f2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

110958138f479c3f717c3ef2a67f05f2_JaffaCakes118
Size

619KB
MD5

110958138f479c3f717c3ef2a67f05f2
SHA1

f82dba95bf7188e0de97ee5fafd82a1b5992ade3
SHA256

8438f2de1608faaf44192e7d748c566401a77bcd72299b085023cfe0f323c019
SHA512

0c36b9307854c215288f56b8b9727c90f76f13903939de7db2e2f7e08704997bb3ae1ce589c33cb63d1fc8fd2e5ab1d8a1e21f8c8cacee9b586dff17d52cb16e
SSDEEP

12288:sDwhmpO2ZIMxR6b7qS7xoiXNBMAiU/+woakhZbk6MYvInrkroE:sBO2ZRo7q6rXNXqa6ZbkNrMoE

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/yijduiqi/bin/upancc_fmt.exe	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/yijduiqi/bin/upancc_fmt.exe

Files

110958138f479c3f717c3ef2a67f05f2_JaffaCakes118
.rar
yijduiqi/bin/upancc_fmt.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 13KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/14
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/29
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/45
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/61
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/73
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/87
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/99
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/112
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/123
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/134
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 13KB - Virtual size: 36KB

.data Size: 3KB - Virtual size: 8KB

.rdata Size: 2KB - Virtual size: 4KB

/4 Size: 1KB - Virtual size: 4KB

.bss Size: - Virtual size: 32KB

.idata Size: 1024B - Virtual size: 4KB

.CRT Size: 512B - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

/14 Size: 512B - Virtual size: 4KB

/29 Size: 1024B - Virtual size: 4KB

/45 Size: 1024B - Virtual size: 4KB

/61 Size: 5KB - Virtual size: 12KB

/73 Size: 1024B - Virtual size: 4KB

/87 Size: 1024B - Virtual size: 4KB

/99 Size: 512B - Virtual size: 4KB

/112 Size: 512B - Virtual size: 4KB

/123 Size: 1024B - Virtual size: 4KB

/134 Size: 512B - Virtual size: 4KB

.aspack Size: 4KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

.text
Size: 13KB - Virtual size: 36KB

.data
Size: 3KB - Virtual size: 8KB

.rdata
Size: 2KB - Virtual size: 4KB

/4
Size: 1KB - Virtual size: 4KB

.bss
Size: - Virtual size: 32KB

.idata
Size: 1024B - Virtual size: 4KB

.CRT
Size: 512B - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

/14
Size: 512B - Virtual size: 4KB

/29
Size: 1024B - Virtual size: 4KB

/45
Size: 1024B - Virtual size: 4KB

/61
Size: 5KB - Virtual size: 12KB

/73
Size: 1024B - Virtual size: 4KB

/87
Size: 1024B - Virtual size: 4KB

/99
Size: 512B - Virtual size: 4KB

/112
Size: 512B - Virtual size: 4KB

/123
Size: 1024B - Virtual size: 4KB

/134
Size: 512B - Virtual size: 4KB

.aspack
Size: 4KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB