cfd123bec32b06c9c562b0b1db7b4de1a0e645dfb1f267be3093bf48b6f16ee9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cfd123bec32b06c9c562b0b1db7b4de1a0e645dfb1f267be3093bf48b6f16ee9
Size

562KB
MD5

f2bfa5c9d74a5d14b85703764bce563f
SHA1

09bf7cf58ecf6108377a1154484c46d9839c5879
SHA256

cfd123bec32b06c9c562b0b1db7b4de1a0e645dfb1f267be3093bf48b6f16ee9
SHA512

5b96af3d35999649fe090bdfe4400d7600fcbec5b1f066d41e4dd1f415acc6dbe7cd49dd96c542af9cf8fd00cb72ab002063a4c09930e0d7c9568078557d9234
SSDEEP

12288:w+N5kvgEFZqYkj83duL4Ns1L3z00CK3l3:w+NGVacduLp1v00Ci

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

cfd123bec32b06c9c562b0b1db7b4de1a0e645dfb1f267be3093bf48b6f16ee9
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 552KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE