166c35f920b17d9f719002a6be7f6e74fd84706fb5c01838dfda2fccc4ea6772N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

166c35f920b17d9f719002a6be7f6e74fd84706fb5c01838dfda2fccc4ea6772N
Size

91KB
MD5

fe3743f595bffc1881be3fbbf3f98c90
SHA1

540fca0ca55184e17783aea00f4282f323ef351b
SHA256

166c35f920b17d9f719002a6be7f6e74fd84706fb5c01838dfda2fccc4ea6772
SHA512

d2d42760e6118a5bce779f9d5b0e25b9dcb85143e7db2a0981edf1b9fbf074c5ea8ada991c93c18cfb2d40ea945ed67a73373fef800dc627b26c84d7371335fa
SSDEEP

1536:9a8jroAbRB+XWCQLZeIdSwkda8jroAbRB+XWCQLZeIdSwkS4:LFRBLJStFRBLJSB

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
166c35f920b17d9f719002a6be7f6e74fd84706fb5c01838dfda2fccc4ea6772N

Files

166c35f920b17d9f719002a6be7f6e74fd84706fb5c01838dfda2fccc4ea6772N
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 19KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qnk
Size: - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE