7acd39cd94474c55ed14ddceb3a1cb3125cf003a4901a5620d22c24faefaf639 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7acd39cd94474c55ed14ddceb3a1cb3125cf003a4901a5620d22c24faefaf639
Size

1.8MB
MD5

c1ab650a0be01ec387281c282183b7f5
SHA1

01522851265cf80d29d50e6d7bcefb4ad0f13cae
SHA256

7acd39cd94474c55ed14ddceb3a1cb3125cf003a4901a5620d22c24faefaf639
SHA512

65285444551bc0d0d5a9c4368d080ee458f7b671a8d53542a708b5c99ea91529c1daa822f7fa3150ff8f3b481528ad0574184f187576d6211f1adf82aae11cdf
SSDEEP

24576:H5I9EXg8o9dbXGzNSzjsATpmk9/vE/PSItzZjcMT1dyP4QeyzzwRATieIkuZogLc:H5AOwHnVrIKIt2MT+PZOjeIkV8Z12j

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7acd39cd94474c55ed14ddceb3a1cb3125cf003a4901a5620d22c24faefaf639

Files

7acd39cd94474c55ed14ddceb3a1cb3125cf003a4901a5620d22c24faefaf639
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 276KB - Virtual size: 608KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1.5MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 27KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE