aed540be002aea2f93fd5ece5c9b8644d0cbca907781b498324e7b390297fff1

General

Target

aed540be002aea2f93fd5ece5c9b8644d0cbca907781b498324e7b390297fff1
Size

93KB
MD5

0d2f18a2bf53633e3088a37273600560
SHA1

89c2c129bacde04ea39af73f30e60fda51d687bd
SHA256

aed540be002aea2f93fd5ece5c9b8644d0cbca907781b498324e7b390297fff1
SHA512

0f548fc4eda53dc854de6c8eb2c35c78e5d1773450ff37a92064d6f043cfe8cb46ca20ad1e6109216099cc770c7e74d6b8322948f153cc5e8974504c25d71c1f
SSDEEP

1536:BeUT2DnlbyWGCt/B6copkUDslZObxnoEJ/SDSkiAExX3ztg+XGbbpr7OSKzsHHIy:B6DSG/s9kUDsOx1JaDSlXnzVqprS5zs9

Score

8^/10

vmprotect aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

VMProtect packed file 1 IoCs

Detects executables packed with VMProtect commercial packer.

vmprotect

resource	yara_rule
sample	vmprotect

Files

aed540be002aea2f93fd5ece5c9b8644d0cbca907781b498324e7b390297fff1
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 21KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp1
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 21KB - Virtual size: 36KB

.rdata Size: 4KB - Virtual size: 8KB

.data Size: 18KB - Virtual size: 100KB

.rsrc Size: 10KB - Virtual size: 12KB

.vmp0 Size: 2KB - Virtual size: 4KB

.vmp1 Size: 29KB - Virtual size: 32KB

.reloc Size: 2KB - Virtual size: 4KB

.aspack Size: 5KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

.text
Size: 21KB - Virtual size: 36KB

.rdata
Size: 4KB - Virtual size: 8KB

.data
Size: 18KB - Virtual size: 100KB

.rsrc
Size: 10KB - Virtual size: 12KB

.vmp0
Size: 2KB - Virtual size: 4KB

.vmp1
Size: 29KB - Virtual size: 32KB

.reloc
Size: 2KB - Virtual size: 4KB

.aspack
Size: 5KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB