b00e02ab67d9d1360dd3c34f377fa531615fca5077841a2d86fa1633adc58886

Sharing

Copy URL Twitter E-mail

General

Target

b00e02ab67d9d1360dd3c34f377fa531615fca5077841a2d86fa1633adc58886
Size

527KB
MD5

1e9c6679cc46c7cdd0b9925b7b6492ee
SHA1

ca382a7c653079dbef1c4bae0dbdf76f0a761f88
SHA256

b00e02ab67d9d1360dd3c34f377fa531615fca5077841a2d86fa1633adc58886
SHA512

124ea93c8b0e520deb82d6c8c04f1f322216c48f1bf217de903e66f8b29e317a93771cf8f14e3a20a0fc998bcb5a1e975d9e0048a8e7761d65b9fb42b9e895d7
SSDEEP

3072:OtwizQTj8CSUYf8W3nSjen++Bj88OZS0/Qe2HdOLlqw1aQuoYKN6LS12is2HlU6S:yuj8NDF3OR9/Qe2HdklruoYk6LW/UD+q

Score

10^/10

Malware Config

Signatures

Detects executables packed with ASPack 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_ASPack

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b00e02ab67d9d1360dd3c34f377fa531615fca5077841a2d86fa1633adc58886

Files

b00e02ab67d9d1360dd3c34f377fa531615fca5077841a2d86fa1633adc58886
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 92KB - Virtual size: 92KB

DATA Size: 4KB - Virtual size: 4KB

BSS Size: 4KB - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 4KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 4KB

.reloc Size: 8KB - Virtual size: 8KB

.rsrc Size: 8KB - Virtual size: 8KB

.aspack Size: 8KB - Virtual size: 8KB

.adata Size: 4KB - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 2KB

CODE
Size: 92KB - Virtual size: 92KB

DATA
Size: 4KB - Virtual size: 4KB

BSS
Size: 4KB - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 4KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 8KB - Virtual size: 8KB

.aspack
Size: 8KB - Virtual size: 8KB

.adata
Size: 4KB - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 2KB