70c948f3348ec01e94cfb27a30a17e411326ccc06e1b3c5d4fe18d4e6282a921 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70c948f3348ec01e94cfb27a30a17e411326ccc06e1b3c5d4fe18d4e6282a921
Size

18KB
MD5

74612a907fe26011019738d814354bf5
SHA1

fefcc01e1ae8b7b35e82e1e10eb119e214763a13
SHA256

70c948f3348ec01e94cfb27a30a17e411326ccc06e1b3c5d4fe18d4e6282a921
SHA512

61f9a27d7727c18aa88f0a47689410a6e10a4faa1fa48f9953440814c2bf1d442384f1d29839a7fa5cecdfe804837d9680f5d45e20865a4e80bfb33b67853cca
SSDEEP

384:5lee64qH/8nUGp6vtBo5NL7e6yypJ/0Ax8r6+S9Pfu7n5Q:T36TH/8UFK5NLi+xLdeVQ

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

70c948f3348ec01e94cfb27a30a17e411326ccc06e1b3c5d4fe18d4e6282a921
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.000BE9
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0BE9EE
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE