5cd3fdb3e28d047e8357faa6fa80a92029c26f231155a95e1135e3a77869c3e6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5cd3fdb3e28d047e8357faa6fa80a92029c26f231155a95e1135e3a77869c3e6
Size

143KB
MD5

63482ff03d52004d2a2766b9eae77c48
SHA1

103eb02301ce44eba54144b6c7c746b3fd481bf6
SHA256

5cd3fdb3e28d047e8357faa6fa80a92029c26f231155a95e1135e3a77869c3e6
SHA512

9d0e8cce557f0d54590bf2bb6b8115ba684e8fdc032bc3b6c212bcbeb000a9982a8c1a260de160f48dcfa5d538b81c44801d6ba39896d92b31e723b59a8ecae9
SSDEEP

3072:OTsgjNFlEVhAvp4pHxGTsOkz7Dk7xvIb13abOFXHdKYGng4:O4ghjEVhrH1z7evMlaUP

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

5cd3fdb3e28d047e8357faa6fa80a92029c26f231155a95e1135e3a77869c3e6
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 130KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE