d00d9f4b0a143aac9b1f3ef47880b82dd3d0df2202c1d84890232b6a67d3eaa1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d00d9f4b0a143aac9b1f3ef47880b82dd3d0df2202c1d84890232b6a67d3eaa1
Size

56KB
MD5

c48477ddf8871419a021bfdbbdd88e19
SHA1

ced6f2382f0d039bcc64a4528ebb9b447102e2a4
SHA256

d00d9f4b0a143aac9b1f3ef47880b82dd3d0df2202c1d84890232b6a67d3eaa1
SHA512

49c4248c4d724d568f1929c5c8d55ba4c2d360d3af81cde03be77d6e5e3eec8d6e1ed48be664d5f6a473486539663f4f58cde581465df892f8a0a6b9d9727e23
SSDEEP

1536:044gBtwxGPdk0I6MRBXoVZSZN3jRIodhbsc6w//680:0ywodIl5oVCRIoHQVw390

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

d00d9f4b0a143aac9b1f3ef47880b82dd3d0df2202c1d84890232b6a67d3eaa1
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 33KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE