General
-
Target
b7be1b97be9375168e1741195fdb5ec5
-
Size
17KB
-
MD5
b7be1b97be9375168e1741195fdb5ec5
-
SHA1
10efebd610564a5246a54d8045bb6aef011c5afb
-
SHA256
65f1fd2ca224229f43f58985f8e838c49b9fe1707fb1bf6b2c54080ec6ee8654
-
SHA512
5b110ca7dd74f42431fc0d1314009c71c1ad62ab86ba1df0f72155ce23df6de33fb6c703797041d06acf6efba65cd7456dba4c503ba569349e04b6d8d22fe6c6
-
SSDEEP
384:wns1i/6cBMtN13qg4AdfRHjSYAxWr6+S9Pfu7n5ZPjl:Ys1i/LitjIATjSDxZdeV3
Malware Config
Signatures
-
resource yara_rule sample aspack_v212_v242 -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b7be1b97be9375168e1741195fdb5ec5
Files
-
b7be1b97be9375168e1741195fdb5ec5.sys windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 8KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 512B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.aspack Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE