c8a1f36760747324c45b872eecdebfe9f587c1bfd06ff9525e7c783d89e7bceb | Triage

Sharing

General

Target

c8a1f36760747324c45b872eecdebfe9f587c1bfd06ff9525e7c783d89e7bceb
Size

722KB
MD5

06c9856213493aeee94c0dda60ecf0a2
SHA1

fd9523931face263edf7db134b79467f27206732
SHA256

c8a1f36760747324c45b872eecdebfe9f587c1bfd06ff9525e7c783d89e7bceb
SHA512

599c2fa7183a630e46fd1f2b48561604146947aedbc829952b50b1f3678c36a151aab27068b4d53b373b9209c64acf3e85444fe6fe2ce25594f68a0fdbc7bf33
SSDEEP

12288:y3TdtLW5WIj1YSSdFxCBZBzBSXyMzBUWb9lx/9AgHLo8OW+rBj:MDsj1dESBZBzBcJ9nPx/igrp+1

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

c8a1f36760747324c45b872eecdebfe9f587c1bfd06ff9525e7c783d89e7bceb
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 193KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 17KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vc++
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE