53784fbf57107c4de16dbeaf066794ee3f834c6be6a574a5439d4a3adab9f014 | Triage

Resubmissions

10/06/2023, 20:25

230610-y7qkjage31 10

Sharing

Copy URL Twitter E-mail

General

Target

53784fbf57107c4de16dbeaf066794ee3f834c6be6a574a5439d4a3adab9f014
Size

1.3MB
MD5

e0a29b218354601e47ff068d1f7a99a9
SHA1

c70c1e7644164f3bb6f9638699a99e4a4ea358ab
SHA256

53784fbf57107c4de16dbeaf066794ee3f834c6be6a574a5439d4a3adab9f014
SHA512

e147c5f4a871ce3f5fb74d1157bf420beaba3780783386ef0a91679105df1a3b4828aab34b323c5164f02ff4d9e8842b468eb376c7a658c7df8e89b45b3f4c47
SSDEEP

24576:TX7Nm3s9nuWSfva9lhN+RTrLg43+jllcPJwv/DWo8SQiI0+2bX5lcNJpTUG6qoz:wc1uRfvan+7gY+jllfDWfSk6fc

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53784fbf57107c4de16dbeaf066794ee3f834c6be6a574a5439d4a3adab9f014

Files

53784fbf57107c4de16dbeaf066794ee3f834c6be6a574a5439d4a3adab9f014
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 359KB - Virtual size: 600KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 932KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 30KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xzz
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE