3077e1ac99c9600d1fa9def668509152 | Triage

Sharing

General

Target

3077e1ac99c9600d1fa9def668509152
Size

61KB
MD5

3077e1ac99c9600d1fa9def668509152
SHA1

8f2528196581fec9f92c30127451561ffa8039a3
SHA256

78fe0bfbad2deb1626a90e3670d24b24ea920b74b9881de1c6c3e3f7e794b359
SHA512

636137efcf11c319558bc85cdeb3de1c4d4a7e82201f07c736fa512f04ba4c63d9093cf5b1c5656359df91c1ef038dbdead8afb749b34227eb50d9d0ae08dec6
SSDEEP

1536:5X97OuTqzFRxT7K+LrxzBz0ge3L+H6DnlhX60TJTpdD0Jp:5X97Op77K+5NPe3LNZ9dYj

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3077e1ac99c9600d1fa9def668509152

Files

3077e1ac99c9600d1fa9def668509152
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 52KB - Virtual size: 548KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE