ca69738572aa67c147f5c1cfe41e74e4150a9b5df46e6c99493b659bb9007b8e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca69738572aa67c147f5c1cfe41e74e4150a9b5df46e6c99493b659bb9007b8e
Size

124KB
MD5

06c4874de7ae1af22bd663f9134f4ef1
SHA1

aab726cd76c78cf7ac7bae8971163752b3efd40c
SHA256

ca69738572aa67c147f5c1cfe41e74e4150a9b5df46e6c99493b659bb9007b8e
SHA512

266d723a92eeea59c2bb8392261a7b0c9fc4459726065d978e28865435f22bbfadf824546d15a874469018a9f058ac17e157e8a0c85d283c5dcf6d6b39d19dfc
SSDEEP

3072:mrCAXGbZL87VMeitcWpsU4OOnEStPYhFye3sWgZ2gXqqV:w/Gt9eqcMsfNHPMyeW2gXqqV

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

ca69738572aa67c147f5c1cfe41e74e4150a9b5df46e6c99493b659bb9007b8e
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 3KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 103KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE