63f32ade65c6690c8c695f34445fff89 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63f32ade65c6690c8c695f34445fff89
Size

223KB
MD5

63f32ade65c6690c8c695f34445fff89
SHA1

a17b5f7c456e82c93e4b9e7876f1e46f0393967f
SHA256

71fc213b87ba8276c5c3f372d5da3e8e415a645274bb54aac1924c77b93c5aac
SHA512

d318cef8967f0d66c627f49e84c5023f290b53dc64ae97dced268d8f926be3bd2cb558e871f882f48bdac195224246df6bb1cdc7faa1e42bee8f60d5f0c06de5
SSDEEP

3072:gko6AY5krsFDwhxu8EknSPgLcYws/0ghl+8bKzNQ55OFmBbcqjUHOJsXsFH5:y6An4F8tDcY4gh3njRQHNE

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63f32ade65c6690c8c695f34445fff89

Files

63f32ade65c6690c8c695f34445fff89
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 135KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datas
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE