5aac13bfb5ccff8adc18cd2fedee6d602e368ed6f824873279c2e981744827ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5aac13bfb5ccff8adc18cd2fedee6d602e368ed6f824873279c2e981744827ae
Size

526KB
MD5

4988e2c3f83e10c947025ce9e1c54268
SHA1

e972fb2c0c717f5818973a1c94ffaf9328b62a72
SHA256

5aac13bfb5ccff8adc18cd2fedee6d602e368ed6f824873279c2e981744827ae
SHA512

ba702c4e1998e5d0f36659e025ed76a3ad1e5f5d70d33ad8b2c35178747689b0b014a24cd82b0280ff3a1d7bf65339182ecf7edf1468e190fec3debd72856864
SSDEEP

12288:O8PuSy7rdGVIE5361rMjCStDkEcVLw9GewEdlK240CI57PsR6wW4:O8mz7BtUK1rMRxlp9vwgK240fJp4

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
static1/unpack001/0330222000111_387668.exe	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/0330222000111_387668.exe

Files

5aac13bfb5ccff8adc18cd2fedee6d602e368ed6f824873279c2e981744827ae
.zip
0330222000111_387668.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 381KB - Virtual size: 932KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 102KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 33KB - Virtual size: 396KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE