97f8af092d6be8cd384e63a204ef9143 | Triage

Sharing

General

Target

97f8af092d6be8cd384e63a204ef9143
Size

1.3MB
MD5

97f8af092d6be8cd384e63a204ef9143
SHA1

03ed72657bced2530f73b8c7e8b676a35bdf63b8
SHA256

e19519636a9eb0ec358263c50569e72be7e12ca081d2318d20763d2c6398abaf
SHA512

50712ee716ef87d50899a7190032980bec5bf75c32c487523d82c893a3300daffcbcbdf436e96354524dd87af986a25fbcd91851bc26e5204c1774ad0fcb9819
SSDEEP

24576:ZWsmaSzijzphoXIp8MBsN2GT+qg6DaE4AwOlIwOgkChR9OtS:ZW+3zpzCMu2mlDj4ASN0R1

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97f8af092d6be8cd384e63a204ef9143

Files

97f8af092d6be8cd384e63a204ef9143
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 191KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 34KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE