659b2911b05c88721a86641c01188cbbc430385391ef8f582951298e564cd61b

General

Target

659b2911b05c88721a86641c01188cbbc430385391ef8f582951298e564cd61b
Size

576KB
MD5

d5aefdb91d98d1c4d0aaa1b71a3494a0
SHA1

d5257f5f5f72692f7877ac362f3108972180e9f4
SHA256

659b2911b05c88721a86641c01188cbbc430385391ef8f582951298e564cd61b
SHA512

c6249c0c1deb637593bb6422e00fa174b5b797e3557d9d84851a95bb352c3ba4a323809493d42779cff19f4dc86075be7d5b5fee52fbc7b3bc77da85d2b3025c
SSDEEP

12288:YZR/tyVRCGZocEICN9uaJAzw7F+20z6W1meyUGpjV6lUvDJbzg:UR1yVej9uaJ8wj0z6W1HG2UvDRE

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Files

659b2911b05c88721a86641c01188cbbc430385391ef8f582951298e564cd61b
.dll regsvr32 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

Size: 50KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 75KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 42KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 195KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 204KB - Virtual size: 428KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 50KB - Virtual size: 172KB

Size: 75KB - Virtual size: 96KB

Size: - Virtual size: 4KB

Size: 42KB - Virtual size: 52KB

Size: 512B - Virtual size: 4KB

Size: 6KB - Virtual size: 12KB

.rsrc Size: 195KB - Virtual size: 196KB

.data Size: 204KB - Virtual size: 428KB

.adata Size: - Virtual size: 4KB

.rsrc
Size: 195KB - Virtual size: 196KB

.data
Size: 204KB - Virtual size: 428KB

.adata
Size: - Virtual size: 4KB