98d1cf785847dc68675aee172f00faadb36172ef9f3de74e2d1574713e2bf8be | Triage

Sharing

General

Target

98d1cf785847dc68675aee172f00faadb36172ef9f3de74e2d1574713e2bf8be
Size

719KB
MD5

166066b41777e2f7404caf822b43f828
SHA1

6887a536737d5492a8d80e57571256640bdecf32
SHA256

98d1cf785847dc68675aee172f00faadb36172ef9f3de74e2d1574713e2bf8be
SHA512

46896ce21580f43be4a3149d54c1de6be28b2070663e00f2b87dcc79bbe99bb7215923e28adb357480a6f4dcfcebe8fd0b6b0eab4cd516c4bb516381d1e52038
SSDEEP

12288:/nopq8C7019FYMDrv+lLp98LoqafMoEyniqojjR4xxoghbXpt9HzT/2cIhr:/YfCY1fZTwLb8EkoEmtYFypxXpv/ec

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

98d1cf785847dc68675aee172f00faadb36172ef9f3de74e2d1574713e2bf8be
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 464KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 211KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 27KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE