08a4e14f691fe9f2f11c316eeb4f6034

Sharing

Copy URL Twitter E-mail

General

Target

08a4e14f691fe9f2f11c316eeb4f6034
Size

1.1MB
MD5

08a4e14f691fe9f2f11c316eeb4f6034
SHA1

60a58690fbfc2a45c29d2935bf9cf52b23c1917a
SHA256

f991bfb63eaffed6a3412bcf0605df28d40c21c5e1259e705b2aa95a878cb1bf
SHA512

d8200af61ffe12bb201e4677d3d1447a7628d3d652f2ecf882e3de449673a3eb19383e02e79ec777890aac8ca29c82c75482967fc4c83632053148d64cf32d54
SSDEEP

24576:nFOieRQB35OMQlkJZal+v2x6j9sWgFV5/FjtwWXytG0qx:FOSBJOlUZaqsJFb5dv0qx

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 3 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/��1-ǿ��Ƽ�QQLog.exe	aspack_v212_v242
static1/unpack001/��2-QQMsgShow.exe	aspack_v212_v242
static1/unpack001/��3-��鿴QQ��Ϣ.exe	aspack_v212_v242

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/��1-ǿ��Ƽ�QQLog.exe
unpack001/��2-QQMsgShow.exe
unpack001/��3-��鿴QQ��Ϣ.exe

Files

08a4e14f691fe9f2f11c316eeb4f6034
.cab
��Ľ��취-��.jpg
.jpg
��Ľ��취.jpg
.jpg
��1-ǿ��Ƽ�QQLog.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 115KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 18KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 177KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
��2-QQMsgShow.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 100KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.srdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 70KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
��3-��鿴QQ��Ϣ.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 317KB - Virtual size: 696KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 43KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
��ô��.txt
��λ�ȡע��.txt
ʹ�ð��.chm
.chm

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 115KB - Virtual size: 236KB

.rdata Size: 18KB - Virtual size: 60KB

.data Size: 3KB - Virtual size: 28KB

.rsrc Size: 177KB - Virtual size: 288KB

.aspack Size: 27KB - Virtual size: 28KB

.adata Size: - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 100KB - Virtual size: 208KB

.rdata Size: 12KB - Virtual size: 44KB

.data Size: 5KB - Virtual size: 40KB

.srdata Size: 4KB - Virtual size: 4KB

.rsrc Size: 26KB - Virtual size: 128KB

.aspack Size: 70KB - Virtual size: 72KB

.adata Size: - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 317KB - Virtual size: 696KB

.rdata Size: 43KB - Virtual size: 148KB

.data Size: 4KB - Virtual size: 32KB

.rsrc Size: 44KB - Virtual size: 52KB

.aspack Size: 27KB - Virtual size: 28KB

.adata Size: - Virtual size: 4KB

.text
Size: 115KB - Virtual size: 236KB

.rdata
Size: 18KB - Virtual size: 60KB

.data
Size: 3KB - Virtual size: 28KB

.rsrc
Size: 177KB - Virtual size: 288KB

.aspack
Size: 27KB - Virtual size: 28KB

.adata
Size: - Virtual size: 4KB

.text
Size: 100KB - Virtual size: 208KB

.rdata
Size: 12KB - Virtual size: 44KB

.data
Size: 5KB - Virtual size: 40KB

.srdata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 26KB - Virtual size: 128KB

.aspack
Size: 70KB - Virtual size: 72KB

.adata
Size: - Virtual size: 4KB

.text
Size: 317KB - Virtual size: 696KB

.rdata
Size: 43KB - Virtual size: 148KB

.data
Size: 4KB - Virtual size: 32KB

.rsrc
Size: 44KB - Virtual size: 52KB

.aspack
Size: 27KB - Virtual size: 28KB

.adata
Size: - Virtual size: 4KB