0e5b832be40a4a57c1f1dd513fc266c6023eeea66198cc73c09c7dec5df730a1N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e5b832be40a4a57c1f1dd513fc266c6023eeea66198cc73c09c7dec5df730a1N
Size

170KB
MD5

0dba348945c83d87de7e1784c6943240
SHA1

bd9d098594da1484c4a26f31305c3c1f2df985e4
SHA256

0e5b832be40a4a57c1f1dd513fc266c6023eeea66198cc73c09c7dec5df730a1
SHA512

b218df22e7f212a53a80cf624838e04b5f4e1c1c1ba75a3a4059e0aadca2a67e503ce8136e3106f552db32e7830fd6af7d64e5d367dd92ea4f936c8f34005f37
SSDEEP

3072:+r7eWn3FR3ZqzPs3CIvNUWfnDydJgbQcoNK9VpAtJdOj4OjU:+XTowC8UYCuPoNK9QPMj4OA

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e5b832be40a4a57c1f1dd513fc266c6023eeea66198cc73c09c7dec5df730a1N

Files

0e5b832be40a4a57c1f1dd513fc266c6023eeea66198cc73c09c7dec5df730a1N
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 22KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 104KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE