d44f23c342da666a013578ccc2f42751_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d44f23c342da666a013578ccc2f42751_JC.exe
Size

83KB
MD5

d44f23c342da666a013578ccc2f42751
SHA1

652bcf73a22f6f05c7246a406babc1bec4b8440c
SHA256

98161c1b455fffe12dce7cdfa36ca053ccd9bab1b8f24e33f1c8422b7b873802
SHA512

1d778f85f5f3f821b06ae4785636d36317ca756d638c28aeaeaa2ecf8ddb5c9adbe0ac803595646de04e825b03d32d98bd49b0d785ac93c3767f017a48eb4d50
SSDEEP

1536:fSTjtALMd6bE9XJuFrvJ70z+Nj3WCW2EW5ZklHQ07QBsPZEWRfXAE49:U6jI9XJy7rNj3WCW2EW5+lBbPRfw39

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d44f23c342da666a013578ccc2f42751_JC.exe

Files

d44f23c342da666a013578ccc2f42751_JC.exe
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 22KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE