304b0b1682cce719926793b6b5754144cd840da86fea29d5d0d45fd315a34deb | Triage

Sharing

General

Target

304b0b1682cce719926793b6b5754144cd840da86fea29d5d0d45fd315a34deb
Size

740KB
MD5

e33d1fc7349d3f00ed5772dda9e9d150
SHA1

5add130d81839a80a10acb234ef497915290ca91
SHA256

304b0b1682cce719926793b6b5754144cd840da86fea29d5d0d45fd315a34deb
SHA512

9cd7d8081039047f5c8440532e9a4f5058559245d04c8a2bbe936f8bfd4f828b67d96848f52d99bbd9c907e931a25dbb3ebbd9fbfa47cf083c6638604f027310
SSDEEP

12288:XRN41aeXnHf+w1v9h1W+UMfw1imZU50UNyP1tHS8yniqBA/ebuNMKL1zbqENS:BN41db1HM+Ugw47xA9BqBA/oU3NS

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
304b0b1682cce719926793b6b5754144cd840da86fea29d5d0d45fd315a34deb

Files

304b0b1682cce719926793b6b5754144cd840da86fea29d5d0d45fd315a34deb
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 379KB - Virtual size: 956KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 285KB - Virtual size: 676KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 41KB - Virtual size: 596KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE