ed56eb3f29eb536c45aa781396d4726746410be56299f94c7d1aebca2f2cbd9f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed56eb3f29eb536c45aa781396d4726746410be56299f94c7d1aebca2f2cbd9f
Size

149KB
MD5

2f2d422d83d63e9543c48da6a2980c96
SHA1

5ff20538cd321a3127ac73932037f88884e8a8b0
SHA256

ed56eb3f29eb536c45aa781396d4726746410be56299f94c7d1aebca2f2cbd9f
SHA512

12760949ed706986c0da5228acb817e6756ae2710bab06c94ed428d2de6247f2eda34114542d47824ccad11f0ff9f25f3074cd74d8c123bc162332a29c4f5462
SSDEEP

1536:/Q74pgQ74pK5NmtV24Ox/o5wuAmF2XjxShZCjz980T+ETOyXKz+Kc2:pWK5NmAHZawyIzIhkjzG0TPyyX2lc

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

ed56eb3f29eb536c45aa781396d4726746410be56299f94c7d1aebca2f2cbd9f
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 7KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE