2aa03ba8beff02f56c5f02158b8a5dfa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2aa03ba8beff02f56c5f02158b8a5dfa
Size

308KB
MD5

2aa03ba8beff02f56c5f02158b8a5dfa
SHA1

30479df03b8af84c083713b503128e13506449d7
SHA256

67b12b273005360753ed8139fac815ab5c86c4f4dc1af4654417c1ebd8349c32
SHA512

a92101962aa061ebb2dfe14d82888a59a7651a850fc5721b10bb14a678b73f753484646a6bc7f86ab90b2ac712f689690229e7d442b7e3549c6c17935fb12b6c
SSDEEP

6144:qcr4q0mOFADDjz6tbd8vDxdXXQ4cvmBRzzx05J5x:dtGYs2LXnxcvmLzzxKT

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2aa03ba8beff02f56c5f02158b8a5dfa

Files

2aa03ba8beff02f56c5f02158b8a5dfa
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 219KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 30KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 19KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE