197681d2aa1a13afb41a2893fd6da7ad5d79c7198d74ffd72db0d8b258579e20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

197681d2aa1a13afb41a2893fd6da7ad5d79c7198d74ffd72db0d8b258579e20
Size

63KB
MD5

99359caa4cffd5120a8eea29f391aecc
SHA1

73beccb7764fd4199ba72f92208ec0833abbf73a
SHA256

197681d2aa1a13afb41a2893fd6da7ad5d79c7198d74ffd72db0d8b258579e20
SHA512

08571c1cea2c5f7c7c252a192180eab8bc1ab6c00eba9142042c53e3ae2ffa688844aa31f087ac0c259aab389d5a2f978b2384a5f2f917c6b750cb7453715f55
SSDEEP

1536:F8kswfTukthCffps9eazEp5DAhoWeX+WQN6l6E:71E3DAhmOWQA6E

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

197681d2aa1a13afb41a2893fd6da7ad5d79c7198d74ffd72db0d8b258579e20
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 33KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE