b6599d63515e0ad1636ab3de8194457a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6599d63515e0ad1636ab3de8194457a
Size

33KB
MD5

b6599d63515e0ad1636ab3de8194457a
SHA1

e04c08eb59c77ac17b1436188237a06281a3b9d2
SHA256

62e11ca0b0e4d5ec9ba4d1655224d4c9ec697a321b431ed7955402c32433eb1c
SHA512

99942c11f165a16df032d1fab6f8c99dd86516ccce182a155d490dc01ceea92c2b4edd3e3950fb438a76766bfda4c81d65b7b1f3ce752a069548d269bda3ad7c
SSDEEP

768:NALkRNZ9EjAHCcJGENEM8q+oo/rOeuyQqRq8/xvdeVP:NALkRVHCctkpooTeqRqeC

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6599d63515e0ad1636ab3de8194457a

Files

b6599d63515e0ad1636ab3de8194457a
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 25KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE