b77235f85d6c66f80ca36c9b01e82ead

Sharing

Copy URL Twitter E-mail

General

Target

b77235f85d6c66f80ca36c9b01e82ead
Size

1.2MB
MD5

b77235f85d6c66f80ca36c9b01e82ead
SHA1

1ca63a358c27e1de5167105a1ffb87f61c90db69
SHA256

76928451ea77097ad6f96fda0ee51be9430aa4537b29b853757e76f6ffe8f912
SHA512

1bda326ee7e128e199f88343719d2e52e8d0ccaccf3ea049f996ed9d6a95c097ccef758258fb2b70f78ec16d35740f75f656dff65c263463528a7100880cecf4
SSDEEP

24576:6nIzhZQj6qiwZyLownEN+fWIu4aDmjZ0vmuaXxlOwYbhwBl2Qrif9N/e0ZC:6nJso+uQaDMomjh9Bl2Jf9N/ed

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/bdupd1+4tr.exe	aspack_v212_v242

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Play.dll
unpack001/bdupd1+4tr.exe

Files

b77235f85d6c66f80ca36c9b01e82ead
.zip
Code5.de.url
Play.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

V2mGetTime
V2mIsPlay
V2mPlayFile
V2mPlayResource
V2mPlayStream
V2mSetAutoRepeat
V2mStop
V2mTotalTime

Sections

CODE
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 243B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 708B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
bdupd1+4tr.exe
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 526KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 34KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 544KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 624KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.heLL
Size: 271KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
code5.nfo
sILeNt heLLsCrEAm.nfo

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 9KB - Virtual size: 12KB

DATA Size: 21KB - Virtual size: 24KB

BSS Size: - Virtual size: 4KB

.idata Size: 1KB - Virtual size: 4KB

.edata Size: 243B - Virtual size: 4KB

.reloc Size: 708B - Virtual size: 708B

Headers

File Characteristics

Sections

.text Size: 526KB - Virtual size: 1.6MB

.itext Size: 4KB - Virtual size: 8KB

.data Size: 34KB - Virtual size: 372KB

.bss Size: - Virtual size: 544KB

.idata Size: 4KB - Virtual size: 16KB

.didata Size: 1024B - Virtual size: 4KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 140KB

.rsrc Size: 624KB - Virtual size: 1.6MB

.heLL Size: 271KB - Virtual size: 272KB

.adata Size: - Virtual size: 4KB

CODE
Size: 9KB - Virtual size: 12KB

DATA
Size: 21KB - Virtual size: 24KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 1KB - Virtual size: 4KB

.edata
Size: 243B - Virtual size: 4KB

.reloc
Size: 708B - Virtual size: 708B

.text
Size: 526KB - Virtual size: 1.6MB

.itext
Size: 4KB - Virtual size: 8KB

.data
Size: 34KB - Virtual size: 372KB

.bss
Size: - Virtual size: 544KB

.idata
Size: 4KB - Virtual size: 16KB

.didata
Size: 1024B - Virtual size: 4KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 140KB

.rsrc
Size: 624KB - Virtual size: 1.6MB

.heLL
Size: 271KB - Virtual size: 272KB

.adata
Size: - Virtual size: 4KB