b90c8a1afc1f0232527841775f025e6a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b90c8a1afc1f0232527841775f025e6a
Size

143KB
MD5

b90c8a1afc1f0232527841775f025e6a
SHA1

51abff3ffb079877268bae76d70cc5a26e5cfb50
SHA256

165eaf7af739e35a9c2984cfa98c93d04d69d69dd237ba15a545715761d46c6a
SHA512

4dd83db6d9710f50b395b999178199e804b8fd01b5218a24c2fe8793b4707a5178a4401a66402fa1fed694793f56a934f43c971f8b093f58285c03f721a0521a
SSDEEP

3072:jxY88+vCJWUfpUct+R7jWr1ySDl4Zuh1IX0PUlmuM6OKinAiJuf/v8:jSn3wUf/+ROBLbHyAruM6Fs4f/k

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b90c8a1afc1f0232527841775f025e6a

Files

b90c8a1afc1f0232527841775f025e6a
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 25KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 796KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 92KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE