84e203a42a099a7fbb667b0dfebf85a734da41ef8bbc8177908abe43922e5d5f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

84e203a42a099a7fbb667b0dfebf85a734da41ef8bbc8177908abe43922e5d5f
Size

9.2MB
MD5

a1e9152377d7c3bdab440f4200e87aa7
SHA1

a2ecb937e239d4fc9db32eecce747ee1bc328717
SHA256

84e203a42a099a7fbb667b0dfebf85a734da41ef8bbc8177908abe43922e5d5f
SHA512

bc0e6660092a694b2f597a03023b139251f4f99c805a92937fe33e04dc0110e2f0329d09c10603193fe11257f58ffd95f64a7a5126747ed0cbd3aac586fbef1d
SSDEEP

196608:ApYO5vERuQYg6hl6gv/eKnD/GGvb8cD96OAMFLXhI2Ci+uW:ain6/6gvVnD/GWocB6OAY31+uW

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84e203a42a099a7fbb667b0dfebf85a734da41ef8bbc8177908abe43922e5d5f

Files

84e203a42a099a7fbb667b0dfebf85a734da41ef8bbc8177908abe43922e5d5f
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 379KB - Virtual size: 964KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 120KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 26KB - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 116KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE