ed73ba4673857e080c7629bee915d3aafaa64c7cfe24c6f86ca2b7d3b8ec078d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed73ba4673857e080c7629bee915d3aafaa64c7cfe24c6f86ca2b7d3b8ec078d
Size

160KB
MD5

70196ff972e0de36996093d99c1a1ea0
SHA1

f2f3e266f6c374e87257a15cf22acb3cf82d4e0f
SHA256

ed73ba4673857e080c7629bee915d3aafaa64c7cfe24c6f86ca2b7d3b8ec078d
SHA512

d85097ce4af6c9645aa2731c007bf2f08093bbceb87c64259b57f6bec161a60ac26ed2211555927ff69854354e0717bc974ab99579250a936e6601276b4d8582
SSDEEP

3072:86jI9XJy7rqAolpnyhn6jI9XJy7rqAolpnyhK:fUZyLolpnyh6UZyLolpnyhK

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

ed73ba4673857e080c7629bee915d3aafaa64c7cfe24c6f86ca2b7d3b8ec078d
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 22KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE