3d02ba5408654a587cceb372b5e3b79d740d40b81976ce8fac072549f5ae2cfd | Triage

Sharing

General

Target

3d02ba5408654a587cceb372b5e3b79d740d40b81976ce8fac072549f5ae2cfd
Size

5.9MB
MD5

063048588d8d0e116e623f01a6560fcf
SHA1

9d33dd8b3dbcd23440c2d43809e1d3966b228766
SHA256

3d02ba5408654a587cceb372b5e3b79d740d40b81976ce8fac072549f5ae2cfd
SHA512

698de36a35866ae2f84b12ceca19534bcaa932bb891412f7f5020113215f5a419e932260d22f286f0563992a60ca42f101d384d080d71786d649bd388fd51bc3
SSDEEP

98304:Jf2FZUY2ZEPh9Xp1Qf6uHzgfbMlEfDt3iMw6QSUMMj4xvMs27lVKssg2ZsUi0Kq:JyZv2ZMhT1LCzggeDt3i1M1MsClVK/gz

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d02ba5408654a587cceb372b5e3b79d740d40b81976ce8fac072549f5ae2cfd

Files

3d02ba5408654a587cceb372b5e3b79d740d40b81976ce8fac072549f5ae2cfd
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

(f)]'6X,
Size: 543KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

826STfut
Size: 4.9MB - Virtual size: 17.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

w +d-&K0
Size: 44KB - Virtual size: 736KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

H7s+_l1f
Size: 2KB - Virtual size: 428KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ithel
Size: 430KB - Virtual size: 432KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE