5d137cbfc61221e32c4bf040e7f9fee0174c5dce49edc8b604734c250a7a1ccf

Sharing

Copy URL Twitter E-mail

General

Target

5d137cbfc61221e32c4bf040e7f9fee0174c5dce49edc8b604734c250a7a1ccf
Size

552KB
MD5

40f66494af10239c58a1e42c57055899
SHA1

2f244c1ca97ea978631b6bfe4dbccb9430586f79
SHA256

5d137cbfc61221e32c4bf040e7f9fee0174c5dce49edc8b604734c250a7a1ccf
SHA512

6957d864e13e6160be160d70f9344dbb32206e6308c1dd6e0593b274d19f06b4fcd6e5342108e50d029cba5088bad50bc772def18b4c5c4693ec6a4df934ddb6
SSDEEP

12288:LtL7K+Vq847nUWUyW10DBg18IwmMvMFpKIeVbDs6RI43qBmyIXVa9RTFN:5qeAby14C1imM0bM1o6RI4PIJN

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Files

5d137cbfc61221e32c4bf040e7f9fee0174c5dce49edc8b604734c250a7a1ccf
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

HookOff
HookOn

Sections

Size: 157KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 334KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 157KB - Virtual size: 376KB

Size: 1KB - Virtual size: 4KB

Size: 3KB - Virtual size: 8KB

Size: - Virtual size: 16KB

Size: 9KB - Virtual size: 12KB

Size: 512B - Virtual size: 4KB

Size: 16KB - Virtual size: 28KB

.rsrc Size: 30KB - Virtual size: 108KB

. Size: 334KB - Virtual size: 336KB

.adata Size: - Virtual size: 4KB

.rsrc
Size: 30KB - Virtual size: 108KB

.
Size: 334KB - Virtual size: 336KB

.adata
Size: - Virtual size: 4KB