c09294e9e2d8d2257a1b297372d601c968e943acf8bd86649d90b766524516de | Triage

Sharing

General

Target

c09294e9e2d8d2257a1b297372d601c968e943acf8bd86649d90b766524516de
Size

335KB
MD5

6b43b8875678b9c5e41669d1b0d35918
SHA1

62ace48a2c2e09442fe8711be4cb3f99966ed130
SHA256

c09294e9e2d8d2257a1b297372d601c968e943acf8bd86649d90b766524516de
SHA512

0d4f9221fccdf8ef04883ff289cf57f8e2cb6201d6b0996fb42ace39b89118e3f8367d9a6dd87982f3fd83acd094165fdf8c0175f0b9eaf858fa955b4bbd325d
SSDEEP

6144:bKYkWkZDX2PRBIC+rSBVS86Iq4drH7+Yeo5d5qApJNBt7E4xLw3Jd:bK/ZDGpB+SHS86IfH7+45uApJnyCs3Jd

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

c09294e9e2d8d2257a1b297372d601c968e943acf8bd86649d90b766524516de
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 11KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 310KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE