96b49d13483670cb69ba130e1405141053d4e4fa60da2021afa1974100b9fd4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96b49d13483670cb69ba130e1405141053d4e4fa60da2021afa1974100b9fd4b
Size

21KB
MD5

8a63f6f0e71214b55eaef82491ca3334
SHA1

15164467ff8431e1bb3b9428b541b2f46696b1ad
SHA256

96b49d13483670cb69ba130e1405141053d4e4fa60da2021afa1974100b9fd4b
SHA512

9561ae29a6a0bf15c5659e7f3ae7f52cd5690527be7b9063c94c2bc29d14eaf6d2e020bb9ee4b9652dc81a991e40a134a2f7475ff2a97e6f6a024b846f4ef3ab
SSDEEP

384:1OBG6scHini/2YEh8/1gg6mg2OY+lbs5hpoLT00eUwAxvr6+e9Pfqbn1:wYcCQ2YEh8P5WsNN017x+ha5

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

96b49d13483670cb69ba130e1405141053d4e4fa60da2021afa1974100b9fd4b
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 10KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE