440a4fd1ac26488532bfbdf8a605f834

Sharing

Copy URL Twitter E-mail

General

Target

440a4fd1ac26488532bfbdf8a605f834
Size

169KB
MD5

440a4fd1ac26488532bfbdf8a605f834
SHA1

32d2ad83871d466f90672e75413ed0890da0fc36
SHA256

f82fa24490df7ae493ff9298f87cd71c0309202b4e73570098250b038b3247fb
SHA512

51d59b8c8f44308058c6d4291a9da4a4d495baa55ab0e6a4a8ed23141f98cb1adf25a6ba7cebd0a10ccaa75a81cdd86ab11c488e8cf33ee8c180f432a1dcff20
SSDEEP

3072:iDcyRX5vv4AAK4gT2YLw3x+WY0qZm78LtCvMt5Ws9XXJI1I:boJn4AvT2Y04yh7LvMtQYX5I1I

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack002/message.txt .exe	aspack_v212_v242

Files

440a4fd1ac26488532bfbdf8a605f834
.eml
email-plain-1.txt
message.zip
.zip
message.txt .exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 37KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 64KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 37KB - Virtual size: 68KB

.rdata Size: 4KB - Virtual size: 8KB

.data Size: 64KB - Virtual size: 180KB

.aspack Size: 3KB - Virtual size: 4KB

.adata Size: - Virtual size: 4KB

.aspack Size: 3KB - Virtual size: 4KB

.adata Size: - Virtual size: 4KB

.aspack Size: 3KB - Virtual size: 4KB

.adata Size: - Virtual size: 4KB

.aspack Size: 3KB - Virtual size: 4KB

.adata Size: - Virtual size: 4KB

.aspack Size: 4KB - Virtual size: 4KB

.text
Size: 37KB - Virtual size: 68KB

.rdata
Size: 4KB - Virtual size: 8KB

.data
Size: 64KB - Virtual size: 180KB

.aspack
Size: 3KB - Virtual size: 4KB

.adata
Size: - Virtual size: 4KB

.aspack
Size: 3KB - Virtual size: 4KB

.adata
Size: - Virtual size: 4KB

.aspack
Size: 3KB - Virtual size: 4KB

.adata
Size: - Virtual size: 4KB

.aspack
Size: 3KB - Virtual size: 4KB

.adata
Size: - Virtual size: 4KB

.aspack
Size: 4KB - Virtual size: 4KB