179186baf7288eba091b1aa3a06f933ad7dabe72fdc4254b5c33c4470b0d4963

Sharing

Copy URL Twitter E-mail

General

Target

179186baf7288eba091b1aa3a06f933ad7dabe72fdc4254b5c33c4470b0d4963
Size

762KB
MD5

01f353643bdecffdd9982d3cbdf28b10
SHA1

e6e327d6cacc81e832aed5144c6b4bacc7b57e0c
SHA256

179186baf7288eba091b1aa3a06f933ad7dabe72fdc4254b5c33c4470b0d4963
SHA512

5c3d78c6fc75063babc4ad744fdc09db5a7614c672711cc42456e0cd166150c1f618aaa0fe4e766f0246a9a00e729d57878d0b08025e7160d376d09df6bd8c70
SSDEEP

12288:93co2BInORA5yE2tSaTW1B2bB8QJfL46MWZfVD1VEUjkuWC8Vls7H62TrSMI4LZF:932BYPOWr2yQJfMxWZ9DLEUr78j2TG7i

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
179186baf7288eba091b1aa3a06f933ad7dabe72fdc4254b5c33c4470b0d4963

Files

179186baf7288eba091b1aa3a06f933ad7dabe72fdc4254b5c33c4470b0d4963
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Exports

Exports

@@Main@Finalize
@@Main@Initialize
@@Unithome@Finalize
@@Unithome@Initialize
_Form1
_Form2
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 477KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 227KB - Virtual size: 476KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

.text Size: 477KB - Virtual size: 1.4MB

.data Size: 15KB - Virtual size: 92KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 16KB

.didata Size: 512B - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 227KB - Virtual size: 476KB

.reloc Size: - Virtual size: 112KB

.aspack Size: 35KB - Virtual size: 36KB

.adata Size: - Virtual size: 4KB

.text
Size: 477KB - Virtual size: 1.4MB

.data
Size: 15KB - Virtual size: 92KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 16KB

.didata
Size: 512B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 227KB - Virtual size: 476KB

.reloc
Size: - Virtual size: 112KB

.aspack
Size: 35KB - Virtual size: 36KB

.adata
Size: - Virtual size: 4KB