c8a1fca4bb6304991fe42c60d329a5b2

Sharing

Copy URL Twitter E-mail

General

Target

c8a1fca4bb6304991fe42c60d329a5b2
Size

566KB
MD5

c8a1fca4bb6304991fe42c60d329a5b2
SHA1

515af587a48c4e4a1b6fa841f029932e7ed9f1d0
SHA256

954ea272b1fdd08122a9799ef06a0132cc7e6bee4bacefd024f205a834f6ea68
SHA512

64add29acd6a95f27bc306106f6abefb568acb1ce99660c03945d98b165f180e2992a2cccc28f4ac0431b92ae964f2de95d0998667cc21f7d7603e0c9b490561
SSDEEP

12288:r2Xn2lRBwvycHAnN7pRhHk8gAG02nneWQs1ohbMmES51C0i+QZY5u+1:r2X2lXSyfILAGLneps1ohbMm5nC0bT1

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/czzrsoftvideocap/VideoCap.exe	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/czzrsoftvideocap/VideoCap.exe

Files

c8a1fca4bb6304991fe42c60d329a5b2
.rar
czzrsoftvideocap/VideoCap.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 306KB - Virtual size: 772KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 144KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 163KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
czzrsoftvideocap/help.html
.html
czzrsoftvideocap/images/2.png
.png
czzrsoftvideocap/images/img17159656.png
.png
czzrsoftvideocap/images/shape14872265.gif
czzrsoftvideocap/images/shape15076250.gif
czzrsoftvideocap/新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 306KB - Virtual size: 772KB

DATA Size: 5KB - Virtual size: 12KB

BSS Size: - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 12KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 48KB

.rsrc Size: 144KB - Virtual size: 464KB

.aspack Size: 163KB - Virtual size: 164KB

.adata Size: - Virtual size: 4KB

CODE
Size: 306KB - Virtual size: 772KB

DATA
Size: 5KB - Virtual size: 12KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 12KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 48KB

.rsrc
Size: 144KB - Virtual size: 464KB

.aspack
Size: 163KB - Virtual size: 164KB

.adata
Size: - Virtual size: 4KB