574e0b75624775bdf8be05b5b5722cb74098c398a330b52f6aefb55c7fcd8056 | Triage

Sharing

General

Target

574e0b75624775bdf8be05b5b5722cb74098c398a330b52f6aefb55c7fcd8056
Size

445KB
MD5

c49ebb9fb036ffb615c4ac7ffdbc2db1
SHA1

a6934533e891c2be2790a55a2c19c0405ee507b8
SHA256

574e0b75624775bdf8be05b5b5722cb74098c398a330b52f6aefb55c7fcd8056
SHA512

a824a734b0519c2a8270f4ae2befd71bcbed8726760fb2f2081df09ccf33d088fa2e0b4de527e3c3115920611a0a83b539b60e4352ef23fdd0d3a79d77be4d4a
SSDEEP

6144:G8/dMpqpNKl6prpx54Lf53O2X3HS/uhrmepKn6yu:G8/dMpqpNKkuLdOi3HS/iq8Vyu

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
574e0b75624775bdf8be05b5b5722cb74098c398a330b52f6aefb55c7fcd8056

Files

574e0b75624775bdf8be05b5b5722cb74098c398a330b52f6aefb55c7fcd8056
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 344KB - Virtual size: 872KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE