285257f82812551787f008d774439982059f0b4b665c52d9c2179434082aba43N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

285257f82812551787f008d774439982059f0b4b665c52d9c2179434082aba43N
Size

93KB
MD5

e616b9848cd778108a35b4840fcb61a0
SHA1

b3ed6b4efa0f03b8c082362853884dc59f78f05f
SHA256

285257f82812551787f008d774439982059f0b4b665c52d9c2179434082aba43
SHA512

c0a34167bacbef816912279fea5ce1b3d7892235ee46af6b39cad3d27fa87d91626c9aaa3f5815887b98af641425081ee23cc5095d9fd9819b9b63e130771ee6
SSDEEP

1536:fFEEMePz2YkKT41ViHYDX4JrhFZzVCWKDAj9ue+Oncwi9xOCd1+FWozNcf9hmzSe:tHLwKwVUYDArhDVCWKDAjQe+Oncwi9wD

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
285257f82812551787f008d774439982059f0b4b665c52d9c2179434082aba43N

Files

285257f82812551787f008d774439982059f0b4b665c52d9c2179434082aba43N
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 86KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE