3eb422820d423a7c66ff81fad9ce16a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3eb422820d423a7c66ff81fad9ce16a9
Size

141KB
MD5

3eb422820d423a7c66ff81fad9ce16a9
SHA1

c110f2ffbfcebc9a0aa0a9d408ea494f114bd8d9
SHA256

29d3e4ee00fb01ac663d6f0cdc63e53dbe4e1f0d6dd4ccc1fdc4d3d066f20f27
SHA512

af63ff8a629fa0601460d8e5f3d68687ba58f78d1dd1626bf2a4c95e9f3f60de929287432ab7059eca155330d8680fc2048ab4a6a14991ca2a9ec6853b10c4ee
SSDEEP

3072:Jb8b0kt17cq3vo1060m5k0TcF3X5n+MscWSRrbEU6BaEu:+jZc3d00Y1ts2h

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3eb422820d423a7c66ff81fad9ce16a9

Files

3eb422820d423a7c66ff81fad9ce16a9
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 134KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE