4ea517b4ee9a9c22135fa577a557a02efe8f7c11caa3de06aa052a939c39d6ff | Triage

Sharing

General

Target

4ea517b4ee9a9c22135fa577a557a02efe8f7c11caa3de06aa052a939c39d6ff
Size

72KB
MD5

8559027374825b9849d24261d39783e1
SHA1

0ae6f7a3e2147e1244d90e493870aaf43795101c
SHA256

4ea517b4ee9a9c22135fa577a557a02efe8f7c11caa3de06aa052a939c39d6ff
SHA512

c13e9e5099d1f8c0040858cc786ef2abc0d0110d33ead4391789fac32d7524ddeeab38235d201390e34b09b54c1d0fb42925996ffac621d653993f4a69b01945
SSDEEP

1536:BUdrF74YFUEnp04k4yJ1uuwpu6awoWqmfu7WoS:0F74YWEp0wyK5Nh0YE

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ea517b4ee9a9c22135fa577a557a02efe8f7c11caa3de06aa052a939c39d6ff

Files

4ea517b4ee9a9c22135fa577a557a02efe8f7c11caa3de06aa052a939c39d6ff
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 30KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE