5780734ce0b94fecbb586fd530a1241c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5780734ce0b94fecbb586fd530a1241c
Size

2.1MB
MD5

5780734ce0b94fecbb586fd530a1241c
SHA1

72b035573eafc80142b557212f05a151e9f1d7de
SHA256

2f532a60c34b49b5359944b5f17795d6ccf2e32fde70230baf5b1563be4497ff
SHA512

a036c11f6b842e2542b3e1383d9f0d9625fe537c5b89c6b0022f607330337e9e724d85cf4f22f1fdd3a5639d757a886cf52551878f0575b8f54cdb1fea5cab3f
SSDEEP

49152:j8Hyz5Y7V5dpSgDHtNqS0jiDsQvWw282suNH:jb+zdzhNqtZw282sY

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
static1/unpack001/3dxt-v1.0/3Dxt/3D全息预测系统.exe	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/3dxt-v1.0/3Dxt/3D全息预测系统.exe

Files

5780734ce0b94fecbb586fd530a1241c
.rar
3dxt-v1.0/3Dxt/3D全息预测系统.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 750KB - Virtual size: 800KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
3dxt-v1.0/3Dxt/key.md
3dxt-v1.0/3Dxt/my.md
3dxt-v1.0/3Dxt/数据使用说明.txt
3dxt-v1.0/3Dxt/期数.txt
3dxt-v1.0/3Dxt/说明.txt