4e2ba4c508ddf95ac817ba7ee870b914766773a37fbd51459c526942ecc03a2e | Triage

Sharing

General

Target

4e2ba4c508ddf95ac817ba7ee870b914766773a37fbd51459c526942ecc03a2e
Size

1.4MB
MD5

6b552c0b92952618df10746fff306279
SHA1

3c00062d442215db07d641e1a43a6fcbf36636b7
SHA256

4e2ba4c508ddf95ac817ba7ee870b914766773a37fbd51459c526942ecc03a2e
SHA512

55bafda05af18e72ed6d023d2ee5b357fd3fe2ee25b943fa6c6d7dc3fec3807f4ea0a048588e5f84f8c7f9bfed2f381eb680f5e941fef0a27e9062e39bc6f3a7
SSDEEP

24576:/qNCMZX9rnMjeN+n92P8n+weWdoJG2xHCad7jRbHHUNA5juXF9hAWbDXyAUdFo+H:/qZZXB+n988n+goc2hCY7jRDUS5qlbn9

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

4e2ba4c508ddf95ac817ba7ee870b914766773a37fbd51459c526942ecc03a2e
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.1MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 136KB - Virtual size: 616KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 88KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 73KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE