04cdfac8c977d83aa5764e26e294482cb9ec9db09cac85d03a17e172c1663d42 | Triage

Sharing

General

Target

04cdfac8c977d83aa5764e26e294482cb9ec9db09cac85d03a17e172c1663d42
Size

3.6MB
MD5

4fd12c0cb62a7a76908f8bac99e0b931
SHA1

9636da3eee1dee3f2563daafbdae41f635cc33e3
SHA256

04cdfac8c977d83aa5764e26e294482cb9ec9db09cac85d03a17e172c1663d42
SHA512

9cc5a11ada627ef86f366bf8db4fc8cbaf165d6d319388e440756eb71551679529124c6ce7d7ad1a2d1c4af3040d8f0c6daaa4c8d0dfd1f02f18e35a35e596ec
SSDEEP

98304:7Gpt2YL/5kFu3HWoc+u6CirjnXdIyAkLC0nMPsgC:zekwdeyLXdIyzdM

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04cdfac8c977d83aa5764e26e294482cb9ec9db09cac85d03a17e172c1663d42

Files

04cdfac8c977d83aa5764e26e294482cb9ec9db09cac85d03a17e172c1663d42
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.6MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE