871598b9007f599b43a1abf255f950b63e6765685ae3d45756bf05fa82e337b1 | Triage

Sharing

General

Target

871598b9007f599b43a1abf255f950b63e6765685ae3d45756bf05fa82e337b1
Size

201KB
MD5

77099bbd1007b7f819a7e1289194aeaf
SHA1

00cfcfd799a3d94b8705af082693b23da7d97afb
SHA256

871598b9007f599b43a1abf255f950b63e6765685ae3d45756bf05fa82e337b1
SHA512

1b7d75a2b76c1e0eecd0c969d32c6119eff3ad3aa3325d8208d3b8e029c70bae835c023ba38c1f4215f5ecfa979d348d6e9271b0a753b1e1c2a928cf06ae6b2c
SSDEEP

3072:Ya9hHwjrCHZaOLZL/WlY5HI85pkzYBIlRDCNDPOx3Q0dEEaO2AL5bnIDQ8vzR4:Ya9haCN7kY6L4qg0OO2QnCza

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
871598b9007f599b43a1abf255f950b63e6765685ae3d45756bf05fa82e337b1

Files

871598b9007f599b43a1abf255f950b63e6765685ae3d45756bf05fa82e337b1
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

OpenDlg
SetDlgPos
ShowDlgHide

Sections

.text
Size: 106KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE