3df75b5c5e1f76deb6786e7b160ffa1bef2c093b8d0f956a3bf65b1d01ec4b9c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3df75b5c5e1f76deb6786e7b160ffa1bef2c093b8d0f956a3bf65b1d01ec4b9c
Size

602KB
MD5

04f8840d423db784dd1ad3f9006dace2
SHA1

7860085e0f2eef3d2ca4cb7bed7fa33394b8f010
SHA256

3df75b5c5e1f76deb6786e7b160ffa1bef2c093b8d0f956a3bf65b1d01ec4b9c
SHA512

e6c85770c931d2a801a70e3041053e047997c4562d35994c96b20fedcd520b2620d1bb084dbeeb762830c69b594f7465da726f9b2d64d4c729ac3d34ca9ed658
SSDEEP

12288:c3TdtLW5WIj1YSSdFxsBSXOGqM7JnVZVM7Ra4Ea9Z6C3q1d:GDsj1dEcBcOzM7BPVMFuo6tr

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

3df75b5c5e1f76deb6786e7b160ffa1bef2c093b8d0f956a3bf65b1d01ec4b9c
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 193KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 17KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vc++
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE