de03eeb7889e4523dfe3bed8a8a9d0eb6489045311f77cea5b0d4268bfa90c32

General

Target

de03eeb7889e4523dfe3bed8a8a9d0eb6489045311f77cea5b0d4268bfa90c32
Size

248KB
MD5

675006d339cd1149ad684f90fa1c1436
SHA1

24c1ef9a9d5c4681a5c0baf8de371604ae7c4c78
SHA256

de03eeb7889e4523dfe3bed8a8a9d0eb6489045311f77cea5b0d4268bfa90c32
SHA512

e23a557df3115f3465b442d3656e7066d7753c8a50fdeaf598372c5fc3515f4825bb388b54ff027937bbb2cb243102a377d04a41d8ba2a0cf05a81e9c212cf2b
SSDEEP

6144:5xE++swa3HjnZSBxnHNvPmOu+QUrT610gj7Qh:XElazAB7vPBLZ

Score

8^/10

aspackv2 upx

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Files

de03eeb7889e4523dfe3bed8a8a9d0eb6489045311f77cea5b0d4268bfa90c32
.dll windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 21KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 145KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.UPX0
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.UPX1
Size: 34KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 21KB - Virtual size: 48KB

.rdata Size: 4KB - Virtual size: 12KB

.data Size: 11KB - Virtual size: 20KB

.rsrc Size: 145KB - Virtual size: 156KB

.UPX0 Size: 2KB - Virtual size: 8KB

.UPX1 Size: 34KB - Virtual size: 40KB

.reloc Size: 3KB - Virtual size: 4KB

.aspack Size: 15KB - Virtual size: 16KB

.adata Size: - Virtual size: 4KB

.text
Size: 21KB - Virtual size: 48KB

.rdata
Size: 4KB - Virtual size: 12KB

.data
Size: 11KB - Virtual size: 20KB

.rsrc
Size: 145KB - Virtual size: 156KB

.UPX0
Size: 2KB - Virtual size: 8KB

.UPX1
Size: 34KB - Virtual size: 40KB

.reloc
Size: 3KB - Virtual size: 4KB

.aspack
Size: 15KB - Virtual size: 16KB

.adata
Size: - Virtual size: 4KB