6ad0b69633c8625a4ab97d95fade4336d63a56d8463c6bdb6003b27607816fc4 | Triage

Sharing

General

Target

6ad0b69633c8625a4ab97d95fade4336d63a56d8463c6bdb6003b27607816fc4
Size

14KB
MD5

e2aa3751d4139a35ec1e3cf35904c710
SHA1

7676fc767e58b8319a028805c750ef4b7378ae38
SHA256

6ad0b69633c8625a4ab97d95fade4336d63a56d8463c6bdb6003b27607816fc4
SHA512

d1e9539ccb4ab9cc091b9100d66a6c428c11929718b02389f50872a587b5f48d95146b9d959a1a829404cce1b0327c584b83e46e51814869fd4587f669aac379
SSDEEP

384:7wAWtNpJwJ0/Ov2DMRWHGcAxar6+Y9PffPzM:767yVKqWHGPxFbPrM

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

6ad0b69633c8625a4ab97d95fade4336d63a56d8463c6bdb6003b27607816fc4
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

ServiceMain

Sections

.text
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.codex
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE