8678a714244fe9a133a804474c6dfbc1df799e78d9d41d4d5b36da5b2c58f5af[.]exe[.]zip

General

Target

8678a714244fe9a133a804474c6dfbc1df799e78d9d41d4d5b36da5b2c58f5af.exe.zip
Size

171KB
MD5

598fe0ada46cef06cbf43e14c3194204
SHA1

89fb84975b7c36e5fe120bbceeeb7da24e1c4e49
SHA256

039769e07deb4c92dbaf349aaf78c067164ec6f732a2bb5a3dbe3595741e8168
SHA512

bbd7ab853b287e1909063d79fccc1ed3e4420e767c96e3221a8e93efd04b4a560652526652cc2b53b3a9e74fd0adb24c181531819e28eddafb706826e9a7e769
SSDEEP

3072:/9csOXmSzEe7eip47JC2UxwhHmW2unJJcZO9PFxNUbe8LGWtlBBFHpQARtWw5l:CsO7zxFu1ewHbdqWPlYekXBFpxr

Score

7^/10

aspackv2

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
static1/unpack001/8678a714244fe9a133a804474c6dfbc1df799e78d9d41d4d5b36da5b2c58f5af.exe	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/8678a714244fe9a133a804474c6dfbc1df799e78d9d41d4d5b36da5b2c58f5af.exe

8678a714244fe9a133a804474c6dfbc1df799e78d9d41d4d5b36da5b2c58f5af.exe.zip
.zip

Password: infected
8678a714244fe9a133a804474c6dfbc1df799e78d9d41d4d5b36da5b2c58f5af.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 152KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE