802c4d117d1e7dc4fb3b6fb7b2e3cd3c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

802c4d117d1e7dc4fb3b6fb7b2e3cd3c
Size

270KB
MD5

802c4d117d1e7dc4fb3b6fb7b2e3cd3c
SHA1

1df68970f2fea426c75d2570c68caeb3b36c85d1
SHA256

98ff70cc47858737e5800fe9fbd74bbb6d61a8c517cad2f27691d1e87fe7fa7b
SHA512

352a6bff7b308efc54fa14715e044540efd3b2f04fd8f0af0b6b6781e05e26fbaac9b2826822ce109bd5ac4095b8b58b3356e9055fd654a7336e515b82c7cdde
SSDEEP

6144:uP3VkAflNR1mmUZwyF7hZUjjDZtKJgVOq4rbge2:GVbIzZN7MXVN

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
802c4d117d1e7dc4fb3b6fb7b2e3cd3c

Files

802c4d117d1e7dc4fb3b6fb7b2e3cd3c
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 206KB - Virtual size: 732KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 62KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE