JaffaCakes118_8a4c1d8d431cf0463f46c730dc23d7fe

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_8a4c1d8d431cf0463f46c730dc23d7fe
Size

378KB
MD5

8a4c1d8d431cf0463f46c730dc23d7fe
SHA1

6bc6a3b86b4db03fe3fa9ce2855de9e0d8b1dfd3
SHA256

0d296f9353373783f64441d9ef093ea9e624c1bacd0eb2bd3f650eae2124741d
SHA512

8d368a36b44ddaeeee45e99b1d795e6dee33ff3d2d00a2797873272c6f4f97fc802f6b097bb7275a619379c63f84e37b1f424bdf2d2fbef90449824c5b1ba926
SSDEEP

6144:dB+jpE94r9JheG47PWYkznOFzJzlG2ootEIvjE94MAmmFPsKr5m/9PGcKgAzk+O7:dBcEarXhebPWYk7cNbXmI8486PU/9XKe

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/LEX2.dll	aspack_v212_v242

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/LEX2.dll
unpack001/LEX2.exe

Files

JaffaCakes118_8a4c1d8d431cf0463f46c730dc23d7fe
.rar
LEX2.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

CreateInterface

Sections

Size: 46KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 130KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
LEX2.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 29KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 156KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
LEX2.ini
Readme.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 46KB - Virtual size: 92KB

Size: 20KB - Virtual size: 20KB

Size: 2KB - Virtual size: 20KB

Size: 5KB - Virtual size: 12KB

.data Size: 130KB - Virtual size: 132KB

.adata Size: - Virtual size: 4KB

Headers

File Characteristics

Sections

Size: 29KB - Virtual size: 64KB

Size: 5KB - Virtual size: 12KB

Size: 1024B - Virtual size: 12KB

.data Size: 156KB - Virtual size: 160KB

.adata Size: - Virtual size: 4KB

.data
Size: 130KB - Virtual size: 132KB

.adata
Size: - Virtual size: 4KB

.data
Size: 156KB - Virtual size: 160KB

.adata
Size: - Virtual size: 4KB