3afaa69af553a08e6a0d6a1f81472530274082e681163b9e71ded1dc832b9629 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3afaa69af553a08e6a0d6a1f81472530274082e681163b9e71ded1dc832b9629
Size

602KB
MD5

a389a7c19f743ab0095632d9032c47c6
SHA1

449a6a991e732eb44b0ea62ca092e44d2883ebf3
SHA256

3afaa69af553a08e6a0d6a1f81472530274082e681163b9e71ded1dc832b9629
SHA512

e8c2c9c802a5a41001f2edc6e438c6b8a6d614bb7c0644ec715614a7d79d3da799d5d2bb8017d833d55e7a0c846eec449f7f84b9d9a4f60b67aca9d6b4e0de61
SSDEEP

6144:c3i8X7pt4Oti0BWmKWIBtOcI9SSbA+cuXhLvBM7xXY:c3TdtLW5WIj1YSSdFxLvBSX

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

3afaa69af553a08e6a0d6a1f81472530274082e681163b9e71ded1dc832b9629
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 193KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 17KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.penask
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 302KB - Virtual size: 544KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE