596b20a9765cc43119402d26fa512e0f58bdc83be8b994ab4ee0a28a40611268 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

596b20a9765cc43119402d26fa512e0f58bdc83be8b994ab4ee0a28a40611268
Size

507KB
MD5

6ebeb1ab9f3341046b00c5a4fa84733b
SHA1

67000654c36d8f6a8fde5ddb483590c69052bcd4
SHA256

596b20a9765cc43119402d26fa512e0f58bdc83be8b994ab4ee0a28a40611268
SHA512

a99d05175d8c9d888e78718f184e43629ec71421883e8f2e597b66d4134506dbb58608bd226bb34cc5221b516d04d445ca6d9a25d746b9f2c1e6a326815d5437
SSDEEP

12288:gZ6GDEXPIi2AnplO1WuJRJCsaGWJWbtYsBqLLIJoyiGoN1lrrI:gZwVO1jRJCllsBqPTGoN/rI

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

596b20a9765cc43119402d26fa512e0f58bdc83be8b994ab4ee0a28a40611268
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 164KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 332KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE