a2e3c6b97bde83f0b816fe0c8a39d14c

Sharing

Copy URL Twitter E-mail

General

Target

a2e3c6b97bde83f0b816fe0c8a39d14c
Size

403KB
MD5

a2e3c6b97bde83f0b816fe0c8a39d14c
SHA1

1c80056484510efa7557cdbe0baba1bcf5b8a1c1
SHA256

ce02ba1ae7f143dd4601072cadff467aa9c5a962d5d0a5015ea29fb328393630
SHA512

c52684a95e10f77c15eeadca6e0bb5000f6bfce2417e697c172dac0773a75a605960534896dcdecd048618a5e4841253fc581cc4c27f90981c997dbae987a974
SSDEEP

12288:E/YYTlKEX9KeFmcBC799auvLN4qFzfyvfY:SRQYUz5N4Y3

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 2 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/林达QQ昵称靠前助手/name.stg	aspack_v212_v242
static1/unpack001/林达QQ昵称靠前助手/林达QQ昵称靠前助手.exe	aspack_v212_v242

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/林达QQ昵称靠前助手/name.stg
unpack001/林达QQ昵称靠前助手/林达QQ昵称靠前助手.exe

Files

a2e3c6b97bde83f0b816fe0c8a39d14c
.rar
logo.gif
.gif
林达QQ昵称靠前助手/name.stg
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

Alpha
Bravo
Charlie
Delta
Depression
Echo
Foxtrot

Sections

��
Size: 199KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�U��
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�O��
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�O��
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�T��
Size: 22KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: 9KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�K��
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
林达QQ昵称靠前助手/林达QQ昵称靠前助手.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

��
Size: 143KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�M��
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�;��
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�S��
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�<��
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�U��
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�=��
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�F��
Size: 5KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�K��
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�I��
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
说明.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

���� Size: 199KB - Virtual size: 500KB

�U�� Size: 3KB - Virtual size: 8KB

�O�� Size: - Virtual size: 4KB

�O�� Size: 3KB - Virtual size: 12KB

��� Size: 512B - Virtual size: 4KB

�T�� Size: 22KB - Virtual size: 40KB

��� Size: 9KB - Virtual size: 24KB

�K�� Size: 5KB - Virtual size: 8KB

��� Size: - Virtual size: 4KB

Headers

File Characteristics

Sections

���� Size: 143KB - Virtual size: 340KB

�M�� Size: 2KB - Virtual size: 8KB

�;�� Size: - Virtual size: 4KB

�S�� Size: 3KB - Virtual size: 12KB

�<�� Size: - Virtual size: 4KB

�U�� Size: 512B - Virtual size: 4KB

�=�� Size: - Virtual size: 28KB

�F�� Size: 5KB - Virtual size: 20KB

�K�� Size: 12KB - Virtual size: 16KB

�I�� Size: - Virtual size: 4KB

��
Size: 199KB - Virtual size: 500KB

�U��
Size: 3KB - Virtual size: 8KB

�O��
Size: - Virtual size: 4KB

�O��
Size: 3KB - Virtual size: 12KB

��
Size: 512B - Virtual size: 4KB

�T��
Size: 22KB - Virtual size: 40KB

��
Size: 9KB - Virtual size: 24KB

�K��
Size: 5KB - Virtual size: 8KB

��
Size: - Virtual size: 4KB

��
Size: 143KB - Virtual size: 340KB

�M��
Size: 2KB - Virtual size: 8KB

�;��
Size: - Virtual size: 4KB

�S��
Size: 3KB - Virtual size: 12KB

�<��
Size: - Virtual size: 4KB

�U��
Size: 512B - Virtual size: 4KB

�=��
Size: - Virtual size: 28KB

�F��
Size: 5KB - Virtual size: 20KB

�K��
Size: 12KB - Virtual size: 16KB

�I��
Size: - Virtual size: 4KB