cbf7159339a33b66120f904fd517ef0ce3d7a7cf607dfb8cde31ec6ed045380e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbf7159339a33b66120f904fd517ef0ce3d7a7cf607dfb8cde31ec6ed045380e
Size

11.3MB
MD5

21285e2b4ce5016903eab343121e0a3b
SHA1

9899157111c3806ec77617f2dcfacd0b6e947f3f
SHA256

cbf7159339a33b66120f904fd517ef0ce3d7a7cf607dfb8cde31ec6ed045380e
SHA512

0394827eb660493d7b6c28f6b3642681691e1a34afa405c8c58608e302a35cdb88450dea8727d52542fd801d2f6f3befe876cec682131c5a31cb7e1cd1d5c1af
SSDEEP

196608:6u5mCYYiV57FZvai/lmilGgESJPl6f0XUCTzuyFiEtEc2w+y6sdglKLXZ0P:6uwlYCR9apTtSJ9eCnuyV72sdg0X

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbf7159339a33b66120f904fd517ef0ce3d7a7cf607dfb8cde31ec6ed045380e

Files

cbf7159339a33b66120f904fd517ef0ce3d7a7cf607dfb8cde31ec6ed045380e
.exe windows:5 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.2MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 500KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 13KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9.5MB - Virtual size: 9.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE