fac5536ec174d48bfd11495a197398ab7c3bed1a3973756082aad2e788cb8a17 | Triage

Sharing

General

Target

fac5536ec174d48bfd11495a197398ab7c3bed1a3973756082aad2e788cb8a17
Size

5.7MB
MD5

89e97c7f51a8b93f768f7747d3e40cde
SHA1

2d43b515de37ac461b5f496b2e14d84c1fefb3a9
SHA256

fac5536ec174d48bfd11495a197398ab7c3bed1a3973756082aad2e788cb8a17
SHA512

7550d53a1eedbfc116f75d09a0abb9c998a500e02acc9391dca16c17cdbe9189984e827059ed3b7a55586e40e7b4880bd709c4e7c1857014407ff026572fd52e
SSDEEP

98304:B8PvHttT8mUdUUsUafx6/32Oyz5XPUAJvHbLHFZiig9ms+FKia1UcABX+0VfS+wW:BENPuuhA32zFUmLlZiiaGwia1CIGfS+Z

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fac5536ec174d48bfd11495a197398ab7c3bed1a3973756082aad2e788cb8a17

Files

fac5536ec174d48bfd11495a197398ab7c3bed1a3973756082aad2e788cb8a17
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 419KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2.7MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 30KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 220KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE