a2e5f1edb1fb002ee04d7c204a661e6d

Sharing

Copy URL Twitter E-mail

General

Target

a2e5f1edb1fb002ee04d7c204a661e6d
Size

2.8MB
MD5

a2e5f1edb1fb002ee04d7c204a661e6d
SHA1

f371e96f928cc97fdb7d5f390454ea437d270a02
SHA256

15f354d4a5616a7a786ae839c52d99ce00ba37e4446c5455c8ab8dd62f952d3b
SHA512

5492c7b1de0f1cc03e773dd00cd2010f24c1e15fd20de1fc9abff9b7d673aa582c11674d9f223082016d41f512c851fc27bf43f31e55bcf0b433e0c217af14bf
SSDEEP

49152:1vAV72IjU/QS1JCVbKEMWys5KZkjDT82VItb69iPFmnTIh3Fhjl45JQ/YPnVjB:FAht4/QS1oVGEM45YkXAOAtSIlFhJmtr

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/极品传世.exe	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/极品传世.exe

Files

a2e5f1edb1fb002ee04d7c204a661e6d
.rar
极品传世.exe
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 410KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 13KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 1.1MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp1
Size: 50KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 768KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
网通加速器.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 410KB - Virtual size: 1.1MB

.itext Size: 2KB - Virtual size: 8KB

.data Size: 13KB - Virtual size: 28KB

.bss Size: 512B - Virtual size: 48KB

.idata Size: 5KB - Virtual size: 16KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 4KB

.vmp0 Size: 1.1MB - Virtual size: 1.2MB

.vmp1 Size: 50KB - Virtual size: 64KB

.reloc Size: - Virtual size: 4KB

.rsrc Size: 768KB - Virtual size: 1.1MB

.aspack Size: 8KB - Virtual size: 12KB

.adata Size: - Virtual size: 4KB

.text
Size: 410KB - Virtual size: 1.1MB

.itext
Size: 2KB - Virtual size: 8KB

.data
Size: 13KB - Virtual size: 28KB

.bss
Size: 512B - Virtual size: 48KB

.idata
Size: 5KB - Virtual size: 16KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 4KB

.vmp0
Size: 1.1MB - Virtual size: 1.2MB

.vmp1
Size: 50KB - Virtual size: 64KB

.reloc
Size: - Virtual size: 4KB

.rsrc
Size: 768KB - Virtual size: 1.1MB

.aspack
Size: 8KB - Virtual size: 12KB

.adata
Size: - Virtual size: 4KB