f7131dff3aa6b4f09ec7dffd8c2f7537f9ca0284e7595b50ca21a48f0ce1f9ea | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f7131dff3aa6b4f09ec7dffd8c2f7537f9ca0284e7595b50ca21a48f0ce1f9ea
Size

483KB
MD5

5676c8fba62fdb2bc2acd27b8f142354
SHA1

e4b76db4c46d35953462be4cf99492688c909c56
SHA256

f7131dff3aa6b4f09ec7dffd8c2f7537f9ca0284e7595b50ca21a48f0ce1f9ea
SHA512

29997cd6bfe524fbc56f203700ace57f100a6335113ecc9bf2c581340cafcf01d24df09589446dd29e5909ba7534ca2516e073855222cd1a0e5f64284572298e
SSDEEP

12288:6g7H0ZbthooP9BETV6ExEJrm8Ri+nK8r:6cHwZFBEzEJ/

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

f7131dff3aa6b4f09ec7dffd8c2f7537f9ca0284e7595b50ca21a48f0ce1f9ea
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 358KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 108KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_PUBDATA
Size: 7KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dark
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE