8741ca123177ebc6d8f22e5cb85c720afb1f14c520d8b6ea35ab21a2414e039f

General

Target

8741ca123177ebc6d8f22e5cb85c720afb1f14c520d8b6ea35ab21a2414e039f
Size

475KB
MD5

b3612726332c617a398b9b7e6b83f32b
SHA1

0baad49b3ee4cfb58305817360e518de92ff28fe
SHA256

8741ca123177ebc6d8f22e5cb85c720afb1f14c520d8b6ea35ab21a2414e039f
SHA512

e18dbb50e10f7f6124b67eb31257d227e31fc7ce3f855fa81503142be3a949d7c88c7f8d99a50013d833a50af33ce4e97c282e459cc7d14ab390a487ab1fcf96
SSDEEP

12288:JuQL6xU76/yptktGz0LUZ/2H5lHKo0FAOh+IXQTMm:RKypGtaKUZUr0FAObtm

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/RAPIDS~2.EXE	aspack_v212_v242

Files

8741ca123177ebc6d8f22e5cb85c720afb1f14c520d8b6ea35ab21a2414e039f
.cab
10266_~1.EXE
.exe windows x86

04e1eda568b76da8dddfac77f8c260d7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameW
InterlockedExchangeAdd
CallNamedPipeA
FindAtomW
UpdateResourceW
GetModuleHandleA
EraseTape
GetEnvironmentVariableA
CreateDirectoryA
EnumResourceLanguagesA
GetTempPathA
GetCurrentProcess
GetLastError
GetFileSize
GetPrivateProfileStringA

msvcrt

memcpy
_ltoa
_jn
__p__dstbias
ctime
_ismbcprint
fopen
vswprintf
__RTtypeid
labs
_getsystime
wcscspn
_mbsrev
_fstat64

winmm

WOW32ResolveMultiMediaHandle
waveOutGetPlaybackRate
WOWAppExit
NotifyCallbackData
waveInReset
waveOutGetVolume
midiInGetErrorTextW
waveOutGetDevCapsW
midiOutCacheDrumPatches

opengl32

glStencilFunc
glColor3bv
wglCreateLayerContext
glClearAccum
glClearDepth
glVertex3iv
glVertex2dv
wglGetPixelFormat
wglSwapMultipleBuffers
wglCopyContext
glRasterPos2s
glTexCoord3i
glDrawElements
glTexGend
glTexCoord2iv
wglShareLists
glColor4usv
glTexCoord1f

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
RAPIDS~2.EXE
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 243KB - Virtual size: 608KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

04e1eda568b76da8dddfac77f8c260d7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

winmm

opengl32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 77KB - Virtual size: 76KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 32B

Headers

File Characteristics

Sections

CODE Size: 243KB - Virtual size: 608KB

DATA Size: 4KB - Virtual size: 12KB

BSS Size: - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 12KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 44KB

.rsrc Size: 14KB - Virtual size: 52KB

.aspack Size: 11KB - Virtual size: 12KB

.adata Size: - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 77KB - Virtual size: 76KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 32B

CODE
Size: 243KB - Virtual size: 608KB

DATA
Size: 4KB - Virtual size: 12KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 12KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 44KB

.rsrc
Size: 14KB - Virtual size: 52KB

.aspack
Size: 11KB - Virtual size: 12KB

.adata
Size: - Virtual size: 4KB