322ae55abbf05e71b995420ef63dfe6be8671aecab42cfbfb1ccf0e9f33be663 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

322ae55abbf05e71b995420ef63dfe6be8671aecab42cfbfb1ccf0e9f33be663
Size

603KB
MD5

61cba7a1aafb235fd8f4aaa862990640
SHA1

35e219cecd035f28e7f631553e6788d8f15c7563
SHA256

322ae55abbf05e71b995420ef63dfe6be8671aecab42cfbfb1ccf0e9f33be663
SHA512

73f0e5b7bb32eec6b735b8b24713252b4731eb3def4a932aec3ce8c8be1785f9fd9c8e0a8da966e467813409f9e21165f97bd849a5c180c9bb7045560820835b
SSDEEP

12288:M3TdtLW5WIj1YSSdFxWBSXyOzBUWb9lx/9AgHLobOWnrB:2Dsj1dEmBcr9nPx/igrsn

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

322ae55abbf05e71b995420ef63dfe6be8671aecab42cfbfb1ccf0e9f33be663
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 193KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 17KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vc++
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.spm
Size: 4B - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE