4feaf286110ab8ff2b86aa586efba44a8f952df3305600fa8da092842e49a074 | Triage

Sharing

General

Target

4feaf286110ab8ff2b86aa586efba44a8f952df3305600fa8da092842e49a074
Size

2.6MB
MD5

cc0eafd6e58325be06fc22f6527b9f57
SHA1

033fe54a1a818ccdf98b1dee70d9fea9a0586d1d
SHA256

4feaf286110ab8ff2b86aa586efba44a8f952df3305600fa8da092842e49a074
SHA512

1f7476d3f76dc6c97abdb2514c85730f227fc12c138460a7e3015bf0a275f81a7fd25dae8673dd3321388f217ee37f0191bd7b4b44701a70b48e9ad2613bf6dd
SSDEEP

49152:F241vRWsooU8xsK5ef0mf9xFGuO/CpypRV67hEM7B45jxvByPvO4cMA:ImyoU8GK5eF9xFGbC/hRuxZmvtcMA

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

4feaf286110ab8ff2b86aa586efba44a8f952df3305600fa8da092842e49a074
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 354KB - Virtual size: 908KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2.1MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 62KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE