1e1021de7451a5764cf931ee835cbde21d13336654eeccf3b22d6ce3e2f7e592 | Triage

Sharing

General

Target

1e1021de7451a5764cf931ee835cbde21d13336654eeccf3b22d6ce3e2f7e592
Size

1.1MB
MD5

cf35c256663d47392d22fc6d9f59b7a5
SHA1

9fb6d7a2699caaf81b5f0166441874ecb07a11f8
SHA256

1e1021de7451a5764cf931ee835cbde21d13336654eeccf3b22d6ce3e2f7e592
SHA512

39d4daf47f2e4e52ba6fea5ac02be0fd6bf4ce271ee9131df71ba65778aa7d09ebb3fa0e3e52484c6fdd02494fbc0280c4daa1f9056d88189ed66752f84c78d2
SSDEEP

24576:uVarpHdsFE6LbLe6MAwaSAjQUlYIuMbmS1mn57PXbZtoP9:kEdsLa6NfSrqukmln57PNKP9

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e1021de7451a5764cf931ee835cbde21d13336654eeccf3b22d6ce3e2f7e592

Files

1e1021de7451a5764cf931ee835cbde21d13336654eeccf3b22d6ce3e2f7e592
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 528KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 70KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 97KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 165KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 97KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 4KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE