c3f9d69842a3c4c17d1988b6dad4ecd5 | Triage

Sharing

General

Target

c3f9d69842a3c4c17d1988b6dad4ecd5
Size

41KB
MD5

c3f9d69842a3c4c17d1988b6dad4ecd5
SHA1

56be505a50182e0ed2162f20000c147be1f3824c
SHA256

bb26b3ad61d07ff4dad2042da9b2ad5be6053ca3d1500a0fac5e732e699e89ab
SHA512

3af3d8c402cdd4c0ab085a40c6ae83ee68e6d00b1f3183be2c3ce87f3818810acef822ae2471ba8a689defda4c5bda2adc5337a7ee9959c5cb270bf8fadee7fe
SSDEEP

768:ivBAVb8hNkxbSM3Ymqo79L+GvT2IrdzLSwUFi2di4ZODcok9or0x9ha5:tVkNrM3zqU9L+47rd+3iixp

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c3f9d69842a3c4c17d1988b6dad4ecd5

Files

c3f9d69842a3c4c17d1988b6dad4ecd5
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 29KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE