2f28094210bd0ed83ba587203a6d3c5cce2dfb58490ed12885dba571b3c4ee47 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f28094210bd0ed83ba587203a6d3c5cce2dfb58490ed12885dba571b3c4ee47
Size

642KB
MD5

61400fae81f5c038c792289500a45ba5
SHA1

343ff68716ce5d54b4a5caf077daae84b0949054
SHA256

2f28094210bd0ed83ba587203a6d3c5cce2dfb58490ed12885dba571b3c4ee47
SHA512

0ce5d680dd62f920990aa8c704f54b5d2831b4101985d215e2eb654ae8cf3d3f10d1d82c760e1d97bc3707f1c1ef7bc401dbcdf6da78a94f21f448852edcb2a7
SSDEEP

12288:9OYfK4At9yLwWy51k1wifib/qTjEOBXcorB7EHcCMSzTOO:ZVwW6kNib/0EOBXTtocCVmO

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

2f28094210bd0ed83ba587203a6d3c5cce2dfb58490ed12885dba571b3c4ee47
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 335KB - Virtual size: 804KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 35KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 21KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 90KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE