e4e78906584856a0d8edd180ba02f3f4dd64dec11421adabbf0a74be6f307328 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e4e78906584856a0d8edd180ba02f3f4dd64dec11421adabbf0a74be6f307328
Size

404KB
MD5

9e1dd1ed18779d8ad161a3c5b468d959
SHA1

c20305eaafeb45cfd1053aef6ab18d51d0b09a29
SHA256

e4e78906584856a0d8edd180ba02f3f4dd64dec11421adabbf0a74be6f307328
SHA512

d84bc0e0360e42c6210d367b0a2022157f8fed2e9b9fb2ab319ab0a82d0cc4ac92cb33477d9c9dd8a17ee89ead10ad7157b9bcf3d2b8bb40abceb2cfe50e80ee
SSDEEP

6144:rezDrZIcA7dffsjQkOzxJPj6IehgRQ+kJz6q06Q5W1BTYcvuJufhreRbL:riXiXZfMQkqTth1HqA5uBTXuyhSR

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

e4e78906584856a0d8edd180ba02f3f4dd64dec11421adabbf0a74be6f307328
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 66KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 307KB - Virtual size: 972KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE