33cf43751b8ccc1776b7fc0c3f8a96cf7924d9b020ce7d5ac4d62cabc14637c2 | Triage

Sharing

General

Target

33cf43751b8ccc1776b7fc0c3f8a96cf7924d9b020ce7d5ac4d62cabc14637c2
Size

107KB
MD5

4eb4cf8d874a83cd3b36972c7419d817
SHA1

719f9d537a32280c0203b80f54ce0c5083343226
SHA256

33cf43751b8ccc1776b7fc0c3f8a96cf7924d9b020ce7d5ac4d62cabc14637c2
SHA512

4e0704ee6fe9700efde7728d56b6727b5ff599555c795233a0d8cbcc546dceb4223b25b7f4c558386995fc2a55e17dcfe43bd7b34a622f98c77e1fdd208908a2
SSDEEP

1536:qnTCqOpUwDWHpuFFedUSERPfZnmQJYR3iVeO64MDYewM6CbEjZV5MRigHR3S20Z8:0wUw88FeMVmgYR3VO64MEew9rHml3Y

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33cf43751b8ccc1776b7fc0c3f8a96cf7924d9b020ce7d5ac4d62cabc14637c2

Files

33cf43751b8ccc1776b7fc0c3f8a96cf7924d9b020ce7d5ac4d62cabc14637c2
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 71KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE