2096757236935a97e62961e210a54827df0085c30a4fe31fcd3091d16610c8f0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2096757236935a97e62961e210a54827df0085c30a4fe31fcd3091d16610c8f0
Size

1.5MB
MD5

82b321256dd49d0f29fb72ee188d87c1
SHA1

df8c22fa7a49485b9866772810b9e393c6341c47
SHA256

2096757236935a97e62961e210a54827df0085c30a4fe31fcd3091d16610c8f0
SHA512

30d588edfaa451ab7c2ada64c73c1d403a18c0b56b78ac108c499174a1252c0e05c29fdbb59d177aa645bfd8a46c71d5f2a6a5caafee7d2ebb5f1fcb657c7e8e
SSDEEP

49152:ajW0n5E+wT1vk1CUF4+y1ePeSBfpAIuMeBsSU4:e41vk1CBcjBCIlb

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

2096757236935a97e62961e210a54827df0085c30a4fe31fcd3091d16610c8f0
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.2MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 145KB - Virtual size: 652KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 95KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE