05053f2a14552390a5bb222d3fc1b9e3 | Triage

Sharing

General

Target

05053f2a14552390a5bb222d3fc1b9e3
Size

1.8MB
MD5

05053f2a14552390a5bb222d3fc1b9e3
SHA1

e3f484e0ba4037999bf84a42e8822f3de2a64263
SHA256

e5fe560369c76c158933027926490eb2ee6ed15be7d5302750024a23cb4eed42
SHA512

e95978091c10a00e1013870f91f9d4caca383ddd2a2c64f0d8ec1de7c0742ac4b7e775773942a1d680b013fe89a63625ec95b0c3b07b71eb921e015e3846eb93
SSDEEP

49152:I3gpBaX2YkaeO5ca1SG4hld9wOj3mkQE0MCOIURmgx:I3IBM2y5caILh79j3nQlET

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05053f2a14552390a5bb222d3fc1b9e3

Files

05053f2a14552390a5bb222d3fc1b9e3
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 354KB - Virtual size: 880KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1.4MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 23KB - Virtual size: 428KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE