139ca119d872fa63cba7c330533b28e9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

139ca119d872fa63cba7c330533b28e9
Size

22KB
MD5

139ca119d872fa63cba7c330533b28e9
SHA1

f13895258f4377a64b609ff1e3010619c8e268a5
SHA256

5c0d25f5c8ceb01517f5b6bc11e8d2e5a046ec6ce7f495e4bdfd98c76c3ebbb8
SHA512

8985497209f5952cd2c7edb6fed4140109da8705e471a7f0c23ccd49d2323a3bec25bc5c19d69b1e3d692d2b472b38c330762f514bb05d6690bdf5cfff0f0e10
SSDEEP

384:lT65oQ3bp8tGvHkyDhX0U20nwUxocajQPAN/zAxvr6+e9Pfqbn1j2dIkeAS:lT65ft8tET0U20HxoDjQIhEx+ha5KdII

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
139ca119d872fa63cba7c330533b28e9

Files

139ca119d872fa63cba7c330533b28e9
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE