fb89bc9dd4381c430a926e99a82c069ad76970fd2e3e937903b28cd5ee6e5645

Sharing

Copy URL Twitter E-mail

General

Target

fb89bc9dd4381c430a926e99a82c069ad76970fd2e3e937903b28cd5ee6e5645
Size

612KB
MD5

8ff3bd4e0aa5a279bd2134a462af41aa
SHA1

c8c4b9445f7456a56bc88848cfbd0b91b3a42f28
SHA256

fb89bc9dd4381c430a926e99a82c069ad76970fd2e3e937903b28cd5ee6e5645
SHA512

555f31395bc69ba0b3989a7e098b737c1f087b3940e9bfa480cb1597837f23a9941ae00102f3350ba1a3bd3b970c37127d5570b4f3b14572a262aef3154e3269
SSDEEP

12288:dc4muRlPtu7V8ZWeeYumWb+YuoDlQ666b+hmj1xKBf6fTjRH:64rhtu7WZqYumWbWMQ3hmjAf6fnN

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb89bc9dd4381c430a926e99a82c069ad76970fd2e3e937903b28cd5ee6e5645

Files

fb89bc9dd4381c430a926e99a82c069ad76970fd2e3e937903b28cd5ee6e5645
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Exports

Exports

@@Main@Finalize
@@Main@Initialize
@@Unithome@Finalize
@@Unithome@Initialize
_Form1
_Form2
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 471KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 14KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 106KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

.text Size: 471KB - Virtual size: 1.4MB

.data Size: 14KB - Virtual size: 92KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 16KB

.didata Size: 512B - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 106KB - Virtual size: 160KB

.reloc Size: - Virtual size: 112KB

.aspack Size: 12KB - Virtual size: 16KB

.adata Size: - Virtual size: 4KB

.text
Size: 471KB - Virtual size: 1.4MB

.data
Size: 14KB - Virtual size: 92KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 16KB

.didata
Size: 512B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 106KB - Virtual size: 160KB

.reloc
Size: - Virtual size: 112KB

.aspack
Size: 12KB - Virtual size: 16KB

.adata
Size: - Virtual size: 4KB