ae6572c8352581046d36cafedc78369e87aa6b2867c5b1788b05a98da6119842

Sharing

Copy URL

Twitter E-mail

General

Target

ae6572c8352581046d36cafedc78369e87aa6b2867c5b1788b05a98da6119842
Size

2.7MB
MD5

1d29e061230c99b6f1ec419dae582892
SHA1

2c06e4dbb3e5c3b3627ac17dcc25220d8624a70c
SHA256

ae6572c8352581046d36cafedc78369e87aa6b2867c5b1788b05a98da6119842
SHA512

8ab6a05e2b864b85b0c6813b06026358d1e43ffb4cff6f8d2f238e15dc93a3f8aa6c92918544310b3b3e49708522f88f1f96fee1e88452aeaf8eb5abcca1706f
SSDEEP

49152:IcLWmb4Hs8J29ZCDIG6h7Sm36hBUigZd5GGrVLaS2rhxGdMUqWrS7dn8AnrlUltT:IAWmD8J29wDeGbUFhLaSCGdMKrS7++r

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae6572c8352581046d36cafedc78369e87aa6b2867c5b1788b05a98da6119842

Files

ae6572c8352581046d36cafedc78369e87aa6b2867c5b1788b05a98da6119842
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 218KB - Virtual size: 464KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 59KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.4MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 14KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.aspack
.data
.rdata
.reloc
.rsrc/BITMAP/134
.rsrc/BITMAP/30994
.rsrc/BITMAP/30996
.rsrc/CURSOR/10
.rsrc/CURSOR/11
.rsrc/CURSOR/12
.rsrc/CURSOR/13
.rsrc/CURSOR/14
.rsrc/CURSOR/15
.rsrc/CURSOR/16
.rsrc/CURSOR/17
.rsrc/CURSOR/18
.rsrc/CURSOR/2
.rsrc/CURSOR/3
.rsrc/CURSOR/4
.rsrc/CURSOR/5
.rsrc/CURSOR/6
.rsrc/CURSOR/7
.rsrc/CURSOR/8
.rsrc/CURSOR/9
.rsrc/DIALOG/100
.rsrc/DIALOG/102
.rsrc/DIALOG/133
.rsrc/DIALOG/136
.rsrc/DIALOG/30721
.rsrc/DIALOG/30734
.rsrc/GROUP_CURSOR/139
.rsrc/GROUP_CURSOR/30977
.rsrc/GROUP_CURSOR/30998
.rsrc/GROUP_CURSOR/30999
.rsrc/GROUP_CURSOR/31000
.rsrc/GROUP_CURSOR/31001
.rsrc/GROUP_CURSOR/31002
.rsrc/GROUP_CURSOR/31003
.rsrc/GROUP_CURSOR/31004
.rsrc/GROUP_CURSOR/31005
.rsrc/GROUP_CURSOR/31006
.rsrc/GROUP_CURSOR/31007
.rsrc/GROUP_CURSOR/31008
.rsrc/GROUP_CURSOR/31009
.rsrc/GROUP_CURSOR/31010
.rsrc/GROUP_CURSOR/31011
.rsrc/MENU/135
.rsrc/STRING/3841
.rsrc/STRING/3842
.rsrc/STRING/3843
.rsrc/STRING/3857
.rsrc/STRING/3858
.rsrc/STRING/3859
.rsrc/STRING/3860
.rsrc/STRING/3865
.rsrc/STRING/3866
.rsrc/STRING/3867
.rsrc/STRING/3868
.rsrc/STRING/3869
.rsrc/STRING/3887
.rsrc/STRING/7
.text

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 218KB - Virtual size: 464KB

.rdata Size: 59KB - Virtual size: 148KB

.data Size: 9KB - Virtual size: 44KB

.rsrc Size: 2.4MB - Virtual size: 5.1MB

.reloc Size: 14KB - Virtual size: 64KB

.aspack Size: 11KB - Virtual size: 12KB

.adata Size: - Virtual size: 4KB

.text
Size: 218KB - Virtual size: 464KB

.rdata
Size: 59KB - Virtual size: 148KB

.data
Size: 9KB - Virtual size: 44KB

.rsrc
Size: 2.4MB - Virtual size: 5.1MB

.reloc
Size: 14KB - Virtual size: 64KB

.aspack
Size: 11KB - Virtual size: 12KB

.adata
Size: - Virtual size: 4KB