169cb0594367f5922fe53787cb99fdf6a2abe94fd2c3a58c752392e2455fa81a | Triage

Sharing

General

Target

169cb0594367f5922fe53787cb99fdf6a2abe94fd2c3a58c752392e2455fa81a
Size

3.8MB
MD5

99b7b2593358c42cdc633d6a70a71066
SHA1

d7cfc159aa46271931e5a02b12962f6f95e7e19b
SHA256

169cb0594367f5922fe53787cb99fdf6a2abe94fd2c3a58c752392e2455fa81a
SHA512

5ee45bbe48c01c44543bfaddc6fcf5ea6dd60a8bcf10cf88065f57ac5c2562b3ecbfbd2f8587fc0981deb04564cb73b9724b7a51485f28b54bfab7293d48fed1
SSDEEP

98304:TOMjfGlzxGgG/nER2NTmtY622Fs9Ve4KF:TOYulzxGoUBMYFne4K

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

169cb0594367f5922fe53787cb99fdf6a2abe94fd2c3a58c752392e2455fa81a
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 3.5MB - Virtual size: 21.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 520KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 337KB - Virtual size: 340KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE