6fe8abb298718e81082361336ff61677

Sharing

Copy URL

Twitter E-mail

General

Target

6fe8abb298718e81082361336ff61677
Size

720KB
MD5

6fe8abb298718e81082361336ff61677
SHA1

7a8af9e9e0550ed6025bf53246a7dc2cb7c9fdbc
SHA256

8e200a4f2f66cdfd4d40a146f75fe247fd8a288f2351e67e6c297387b1872077
SHA512

a1643491277a2b4b2f41f96368d70fd498bb6e9add9a276a5afd7ed4d36d5f01058d1d502d558b1dcebe109ba021e9d3944b9b20fa651fcf2b9c410f69e45737
SSDEEP

12288:CuxGH4l8zFWc3bQaCh7sUHrU08dFMyGVDJFz0LT2bS/mCZvdM/6KEUDp09:Cuxlqca8gUHh02yG1dS1V8REWp09

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/QQ功夫英雄伴侣 V1.10/yxbanlv.exe	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/QQ功夫英雄伴侣 V1.10/yxbanlv.exe

Files

6fe8abb298718e81082361336ff61677
.rar
QQ功夫英雄伴侣 V1.10/26呀网址导航.url
QQ功夫英雄伴侣 V1.10/yxbanlv.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 619KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 6KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 86KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
QQ功夫英雄伴侣 V1.10/yxbanlv_up.db
QQ功夫英雄伴侣 V1.10/免责声明 .txt
QQ功夫英雄伴侣 V1.10/新云软件.url
.url
QQ功夫英雄伴侣 V1.10/更新日志.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 619KB - Virtual size: 1.7MB

DATA Size: 6KB - Virtual size: 16KB

BSS Size: - Virtual size: 56KB

.idata Size: 4KB - Virtual size: 12KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 120KB

.rsrc Size: 86KB - Virtual size: 1.0MB

.aspack Size: 22KB - Virtual size: 24KB

.adata Size: - Virtual size: 4KB

CODE
Size: 619KB - Virtual size: 1.7MB

DATA
Size: 6KB - Virtual size: 16KB

BSS
Size: - Virtual size: 56KB

.idata
Size: 4KB - Virtual size: 12KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 120KB

.rsrc
Size: 86KB - Virtual size: 1.0MB

.aspack
Size: 22KB - Virtual size: 24KB

.adata
Size: - Virtual size: 4KB