84fb6da8e082a4f74b1bdc91229bac8160f495790b4492f1b8ffabc2e6128897 | Triage

Sharing

General

Target

84fb6da8e082a4f74b1bdc91229bac8160f495790b4492f1b8ffabc2e6128897
Size

10.5MB
MD5

b6d65221525b12f8233273cbee11f2bc
SHA1

6fc3d6b6e58734a3d4ccf34bdb49a29b53477a38
SHA256

84fb6da8e082a4f74b1bdc91229bac8160f495790b4492f1b8ffabc2e6128897
SHA512

22f1ed2d909ad1c4a309a6d9268794b3796ea766c22d73a02c47620fe8ebde51009a31519921c16cf79bfcd06784d98d6ed9ea91a18a51d52b107cd826b4d322
SSDEEP

196608:mobO3B8fUbqMQIyE5V5M6g4XvvpxCoMJbMWZTC4kBSBIk+Hh3kz3x93XskE33rY:O3Ek8SV26XxCo0AWxZke+GVK3rY

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84fb6da8e082a4f74b1bdc91229bac8160f495790b4492f1b8ffabc2e6128897

Files

84fb6da8e082a4f74b1bdc91229bac8160f495790b4492f1b8ffabc2e6128897
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 395KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2.6MB - Virtual size: 7.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 35KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ab
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE