ec98ced93f74df8dc25ec839c0be19c241c3ea014d1eabb367a0491ab2e4fe2d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec98ced93f74df8dc25ec839c0be19c241c3ea014d1eabb367a0491ab2e4fe2d
Size

210KB
MD5

794b97dee4dce4ebd24fafc9b29085be
SHA1

0cee8fce16a8d15d023c5b193d9a325eed074eec
SHA256

ec98ced93f74df8dc25ec839c0be19c241c3ea014d1eabb367a0491ab2e4fe2d
SHA512

8d74021a0c4640982c442a88894211069d55af25e72116ff365ab45e6d31357f5ee8b7e4ba1e314dd8aaf699c758ba77d6aab65443f5d83d682c8a04f3d75929
SSDEEP

1536:56zGGiHWgQvnC1IWD4QXGYjrUyisrYcpdbGkCzIzR3RSToWJntgeAsgyr6yZt/Zt:aiL1mQXDSCdseZoTo9eAsgyr5y0+K

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ec98ced93f74df8dc25ec839c0be19c241c3ea014d1eabb367a0491ab2e4fe2d

Files

ec98ced93f74df8dc25ec839c0be19c241c3ea014d1eabb367a0491ab2e4fe2d
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 53KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 111KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE