aspweb[.]exe | Triage

Sharing

General

Target

aspweb.exe
Size

703KB
MD5

a77d393d861eb34e71b888e7d9a97115
SHA1

9b29e115e3fb4c8e175bf70459657c65652fbeba
SHA256

033056e2a4dc8e10c9ba7d7ec078376a565d02046bb632bcd6c3be336a92a36e
SHA512

6784b8eb35086e809287c7b8448f0a23f066bd73bf0de3bad0baecd4394269a00b3f9a8782c416a589963eef5d4b31787143d7a5a9c44626d129c52645998234
SSDEEP

12288:/JFZqYMOaQ0q9nV/zsnK23KHVI6nodVdyMLiqyVcxwtVxgpMiuzOTN90gQE:BFZqhOBnVyK23C6OoYMLiVcKtVx4MiuC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aspweb.exe

Files

aspweb.exe
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

test
Size: - Virtual size: 988KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

data
Size: 625KB - Virtual size: 628KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE