2d2352b84b73ce322457c78b7e902a46b6f6d53b3c1e02066e8735c6e1d87b7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d2352b84b73ce322457c78b7e902a46b6f6d53b3c1e02066e8735c6e1d87b7c
Size

893KB
MD5

c0a53ca0aa9f783ee12def6313dea86d
SHA1

3ea89c3b3b2e7e9d841589dc0e959aa4ce27738e
SHA256

2d2352b84b73ce322457c78b7e902a46b6f6d53b3c1e02066e8735c6e1d87b7c
SHA512

66d21f7f6a8d7b66def63acaf786fe46a7c195ceb3aeccb9550880b360ec13214e0e0faafc517b72a7375a5fce662e9e3681dfcc4fcf547c10cc30ca29d4756b
SSDEEP

24576:aIgwT+SGQBbCn6+yvS7gE2ciRzsPyb+f6gymaEp0YL:ZgwTBG8bd+yK7kjRgPDkEp

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

2d2352b84b73ce322457c78b7e902a46b6f6d53b3c1e02066e8735c6e1d87b7c
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 205KB - Virtual size: 628KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 673KB - Virtual size: 844KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE