4d60445266f9fb00574922feacefed65a9a658a683fa1880588c0fd2fcc3b451 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4d60445266f9fb00574922feacefed65a9a658a683fa1880588c0fd2fcc3b451
Size

3.0MB
MD5

be7c56957535fb1c84e46639f831a7b4
SHA1

4ff771f8fa83685041cdc60c9107fa558e71ee02
SHA256

4d60445266f9fb00574922feacefed65a9a658a683fa1880588c0fd2fcc3b451
SHA512

43faf476de7de56556056242649fc13a8f8a3b761c14f6c3ad76ac02ae5ed1f01d89756821557725ee1d7a1dc35197f6ef1425f9f73841a24aae390d60d42ae4
SSDEEP

49152:YK1jDpu2tFpWRbII4wx9kUhHlnGZ+ZZj9gFObFur1EItojNBoxPmQpJy08gS/DHp:Ya029WRR4SkQlnGCZjGFORG1ESojfoda

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d60445266f9fb00574922feacefed65a9a658a683fa1880588c0fd2fcc3b451

Files

4d60445266f9fb00574922feacefed65a9a658a683fa1880588c0fd2fcc3b451
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 887KB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1.5MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 632KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.VMP
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE