a3f809057b0c6aaf34e0d003e0a0da4b

Sharing

Copy URL

Twitter E-mail

General

Target

a3f809057b0c6aaf34e0d003e0a0da4b
Size

2.5MB
MD5

a3f809057b0c6aaf34e0d003e0a0da4b
SHA1

cbd8f2249a14e951aa50e1c9b4e817e9d4b1d76a
SHA256

b969e49b4b9a5b44de5594de3789d4e9ae0ab226370aead28c17f7c0a42d9124
SHA512

719cf946442502a216fc925ab0c91f332382f296c60a7844b48803ad36a13180a94cbd8a69b1e69679597027d6bfda0dc190dacdea047f08d003372dc66c7152
SSDEEP

49152:eBoQKLlwVvFMepnNaanh7XkLCbQxBORcI1dRMlyxt3qqXQ1PuRhBvaliAKNFf:eS41nNash78vxaPMlyxt6+O4hBmc

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/AWiconsPro.exe	aspack_v212_v242

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/AWiconsPro.8bf
unpack001/AWiconsPro.exe

Files

a3f809057b0c6aaf34e0d003e0a0da4b
.rar
AWiconsPro.8bf
.dll windows:4 windows x86 arch:x86

f4f95c9ae2f38e344cc13113050b3cc4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

OutputDebugStringA
WritePrivateProfileStringA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
CreateProcessA
GetPrivateProfileIntA

user32

EndDialog
GetWindowTextA
GetClassNameA
MessageBoxA
SetForegroundWindow
OpenClipboard
EnumWindows
RegisterWindowMessageA
CloseClipboard
EmptyClipboard
SetClipboardData
PostMessageA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey

msvcp60

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcrt

strcpy
strcat
strlen
strstr
memset
__CxxFrameHandler
sprintf
_CxxThrowException
??2@YAPAXI@Z
free
??1type_info@@UAE@XZ
strcmp

Exports

Exports

ENTRYPOINT
Inner_Bevel_Entry_Point

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 877B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 667B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AWiconsPro.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 358KB - Virtual size: 880KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 50KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 67KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.f4cg
Size: 5KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 11KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 730KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 620KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.f4cg
Size: 426KB - Virtual size: 428KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
langs/chinese.lng
langs/下载说明.htm
.html .js polyglot
langs/安装说明.txt
langs/非常世纪资源网.url
.url
samples/3daqua_demo.icl
samples/3dartistic_demo.icl
samples/Crystal.icl
samples/IconsX.icl
samples/Noia.icl
samples/Shoffar.icl
samples/artistic_demo.icl
samples/realistic_demo.icl
samples/samples.icl
samples/xpartistic_demo.icl
samples/下载说明.htm
.html .js polyglot
samples/非常世纪资源网.url
.url
下载说明.htm
.html .js polyglot
非常世纪资源网.url
.url

Sharing

General

Malware Config

Signatures

Files

f4f95c9ae2f38e344cc13113050b3cc4

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcp60

msvcrt

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 12KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 877B

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 667B

Headers

File Characteristics

Sections

.text Size: 358KB - Virtual size: 880KB

.rdata Size: 50KB - Virtual size: 168KB

.data Size: 10KB - Virtual size: 104KB

.text1 Size: 67KB - Virtual size: 320KB

.f4cg Size: 5KB - Virtual size: 64KB

.data1 Size: 11KB - Virtual size: 128KB

.pdata Size: 730KB - Virtual size: 768KB

.rsrc Size: 120KB - Virtual size: 620KB

.idata Size: 512B - Virtual size: 4KB

.f4cg Size: 426KB - Virtual size: 428KB

.adata Size: - Virtual size: 4KB

.text
Size: 16KB - Virtual size: 12KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 877B

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 667B

.text
Size: 358KB - Virtual size: 880KB

.rdata
Size: 50KB - Virtual size: 168KB

.data
Size: 10KB - Virtual size: 104KB

.text1
Size: 67KB - Virtual size: 320KB

.f4cg
Size: 5KB - Virtual size: 64KB

.data1
Size: 11KB - Virtual size: 128KB

.pdata
Size: 730KB - Virtual size: 768KB

.rsrc
Size: 120KB - Virtual size: 620KB

.idata
Size: 512B - Virtual size: 4KB

.f4cg
Size: 426KB - Virtual size: 428KB

.adata
Size: - Virtual size: 4KB