542790bfd1d5db4912285aaefc367497e454773ce5bf57c8a20ece58aa0d72dc

Sharing

Copy URL

Twitter E-mail

General

Target

542790bfd1d5db4912285aaefc367497e454773ce5bf57c8a20ece58aa0d72dc
Size

1.7MB
MD5

e4d806903d6c5a22f30c92662d245787
SHA1

29ac2ee784470284d02575e70f3883fe510ae6d5
SHA256

542790bfd1d5db4912285aaefc367497e454773ce5bf57c8a20ece58aa0d72dc
SHA512

75ff48c87af2a3a95ca17855946198f4a66b8cc9ba397050fff64d0280f07c796e00c04bb6cfeb841db6187057d5aa7837a364a7ccd4d02cffd1fd81e17a9bc3
SSDEEP

49152:6AYPOWCyCkw9HEU7P9SexiulbyLWvQK6aAuGnr1Ft2VUsT:6DPlC/6wP8egul2LWvQKJHyrTUVU4

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
542790bfd1d5db4912285aaefc367497e454773ce5bf57c8a20ece58aa0d72dc

Files

542790bfd1d5db4912285aaefc367497e454773ce5bf57c8a20ece58aa0d72dc
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Exports

Exports

@@Main@Finalize
@@Main@Initialize
@@Unithome@Finalize
@@Unithome@Initialize
_Form1
_Form2
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 477KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.1MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 105KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

.text Size: 477KB - Virtual size: 1.4MB

.data Size: 15KB - Virtual size: 92KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 16KB

.didata Size: 512B - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 1.1MB - Virtual size: 3.0MB

.reloc Size: - Virtual size: 112KB

.aspack Size: 105KB - Virtual size: 108KB

.adata Size: - Virtual size: 4KB

.text
Size: 477KB - Virtual size: 1.4MB

.data
Size: 15KB - Virtual size: 92KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 16KB

.didata
Size: 512B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1.1MB - Virtual size: 3.0MB

.reloc
Size: - Virtual size: 112KB

.aspack
Size: 105KB - Virtual size: 108KB

.adata
Size: - Virtual size: 4KB