9601c8604a7fc84edffcdac6a6b0cd6f

Sharing

Copy URL Twitter E-mail

General

Target

9601c8604a7fc84edffcdac6a6b0cd6f
Size

597KB
MD5

9601c8604a7fc84edffcdac6a6b0cd6f
SHA1

3d7b85e76d9852d0644c67d07e0a3987f222d114
SHA256

64623fa1b9249618d8153925d945963f9b2666e28c9f1ebd345048623686b043
SHA512

520e3cd65be12aa7fd5774f8dd5e0388f74ac4d0e25e635e2c77fa111471727caf01437bc2b981aa7ed27e1fe5877aa0b66818bf33e2c08e3c25caa1682ae90a
SSDEEP

12288:4hfDrDb0ZSGvTFMvXa2888888888888W888888888884MYyW1meyUGp6zUjc:4BDASGvTJRMYyW1HGMgY

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9601c8604a7fc84edffcdac6a6b0cd6f

Files

9601c8604a7fc84edffcdac6a6b0cd6f
.dll regsvr32 windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

Size: 299KB - Virtual size: 832KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 38KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 87KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 152KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 299KB - Virtual size: 832KB

Size: 2KB - Virtual size: 4KB

Size: 4KB - Virtual size: 12KB

Size: - Virtual size: 24KB

Size: 13KB - Virtual size: 16KB

Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 4KB

Size: 38KB - Virtual size: 76KB

.rsrc Size: 87KB - Virtual size: 88KB

.data Size: 152KB - Virtual size: 376KB

.adata Size: - Virtual size: 4KB

.rsrc
Size: 87KB - Virtual size: 88KB

.data
Size: 152KB - Virtual size: 376KB

.adata
Size: - Virtual size: 4KB