b6859c0f5a9125842da0a8bcb615a2fd22b2b9aac9f844f7b80f2516fd5d7f59 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6859c0f5a9125842da0a8bcb615a2fd22b2b9aac9f844f7b80f2516fd5d7f59
Size

92KB
MD5

125708c46b94c5e5a20b13506d54a60a
SHA1

f49cb0faba198ab6c701d81541e6789bbedd972c
SHA256

b6859c0f5a9125842da0a8bcb615a2fd22b2b9aac9f844f7b80f2516fd5d7f59
SHA512

fd9f208e10df467f298a22da442b4cf19ca589b95df6eb02d12de57f82ef1b16d48214b51e140811f513a7ab31213ec497271cfd7683315bdf3e8e0f49b3b1c2
SSDEEP

1536:MSY2K2r0977/aYuT1kr8LwXuqSQD9T1lWAdROZ7NNgjL8f0p8SsHmqSjuVf06PB7:Mv2/rG7/aYF8LwXuVQA7KEf0SHuuVf04

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

b6859c0f5a9125842da0a8bcb615a2fd22b2b9aac9f844f7b80f2516fd5d7f59
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 40KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 38KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.asp
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE