429c4698eb1536db5ee14319a203ebc8

Sharing

Copy URL Twitter E-mail

General

Target

429c4698eb1536db5ee14319a203ebc8
Size

1.6MB
MD5

429c4698eb1536db5ee14319a203ebc8
SHA1

b4a10f0c4accc04c59df8278b60f86474cf8ff74
SHA256

8befe23c9c799c92ead89a887dbc1e6114e153b6854b019d22ecc177b22ac21a
SHA512

945a42bc2fb599b7b31f6ddced247cf909bc37736b063f0464cd5adb7ba97e8d504c2c427010a2f7ddf722d50cb0d9ce943076a7f0c6e709f4495c9da85cb61e
SSDEEP

49152:At7+imiW++AvK3XzVFG85n+2A7ng2IfgZjGT:FKJvK3Lzn+77g28gZj0

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 2 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/LianLianKan.exe	aspack_v212_v242
static1/unpack001/Maps.exe	aspack_v212_v242

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/LianLianKan.exe
unpack001/Maps.exe

Files

429c4698eb1536db5ee14319a203ebc8
.rar
Config.ini
Images/B1.jpg
.jpg
Images/B2.jpg
.jpg
Images/B3.jpg
.jpg
Images/B4.jpg
.jpg
Images/B5.jpg
.jpg
Images/Q1.jpg
.jpg
Images/Q2.jpg
.jpg
Images/Q3.jpg
.jpg
Images/Q4.jpg
.jpg
Images/Q5.jpg
.jpg
Images/新云软件.url
.url
LianLianKan.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.code
Size: 14KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 107KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 18KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 226KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Maps.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.code
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 18KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Maps/1.xml
.xml
Maps/2.xml
.xml
Maps/3.xml
.xml
Maps/4.xml
.xml
Mouse.cur
Sound/dian.wav
Sound/jiangli.wav
Sound/jieshu.wav
Sound/kaishi.wav
Sound/yinyue1.mid
Sound/yinyue2.mid
Sound/yinyue3.mid
Sound/yinyue4.mid
Sound/yinyue5.mid
Sound/yinyue6.mid
Sound/yinyue7.mid
Sound/zhadan.wav
help.ini

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.code Size: 14KB - Virtual size: 48KB

.text Size: 107KB - Virtual size: 224KB

.rdata Size: 18KB - Virtual size: 40KB

.data Size: 226KB - Virtual size: 316KB

.rsrc Size: 1024B - Virtual size: 20KB

.aspack Size: 23KB - Virtual size: 24KB

.adata Size: - Virtual size: 4KB

Headers

File Characteristics

Sections

.code Size: 4KB - Virtual size: 12KB

.text Size: 18KB - Virtual size: 36KB

.rdata Size: 512B - Virtual size: 4KB

.data Size: 2KB - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 20KB

.aspack Size: 23KB - Virtual size: 24KB

.adata Size: - Virtual size: 4KB

.code
Size: 14KB - Virtual size: 48KB

.text
Size: 107KB - Virtual size: 224KB

.rdata
Size: 18KB - Virtual size: 40KB

.data
Size: 226KB - Virtual size: 316KB

.rsrc
Size: 1024B - Virtual size: 20KB

.aspack
Size: 23KB - Virtual size: 24KB

.adata
Size: - Virtual size: 4KB

.code
Size: 4KB - Virtual size: 12KB

.text
Size: 18KB - Virtual size: 36KB

.rdata
Size: 512B - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 20KB

.aspack
Size: 23KB - Virtual size: 24KB

.adata
Size: - Virtual size: 4KB