5193f3b7ea38fd1849119d5f8ca82c646e00d8480922499457fae9dcf91cf352 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5193f3b7ea38fd1849119d5f8ca82c646e00d8480922499457fae9dcf91cf352
Size

227KB
MD5

e01c4b3601f5d8a7361a3a11fed66fc4
SHA1

7c91cbb35479ac46d1b8092839dd6b12a6497e15
SHA256

5193f3b7ea38fd1849119d5f8ca82c646e00d8480922499457fae9dcf91cf352
SHA512

567711493a6f8db48b3698663de8590898b2ad83fc8b4d9c29c2827835367016ad58bf332fc85e5c143f53b1635227fe69241d1e9cc656b66450f8a968c7dd3a
SSDEEP

6144:HrzbWUOgmQ0dJisO7qJcMkYl0zqkw1iXSrvW92JTgrDLfE/iFQk:HrzbWNxQ0dh1UpXSW9+Tgr8/iX

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

5193f3b7ea38fd1849119d5f8ca82c646e00d8480922499457fae9dcf91cf352
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 63KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pxwrrly
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE