b96563b0ee70d25a1dfb40ee9812ee3e2066eb7a0f4e9930d3683fcacc0f64f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b96563b0ee70d25a1dfb40ee9812ee3e2066eb7a0f4e9930d3683fcacc0f64f8
Size

169KB
MD5

3a915192e5a3a3b56d45000b9077d45b
SHA1

71534dfd704aff2b244a94ef1e42ca7e61bf431a
SHA256

b96563b0ee70d25a1dfb40ee9812ee3e2066eb7a0f4e9930d3683fcacc0f64f8
SHA512

c1df3fbdd549d5ce592adc35c1f462991189cff7248c4ab6164bc3d7a7e8043307d3a4e4e2e5e356443b579449dc0f97433190572ec46ce5a46c0050d1d77e4c
SSDEEP

3072:6zmA7z1WEfPSHbO7+11JqBlSv/YOdf+/xENyr3/7+Ov+8vAet:6zmA7z1W3HY+M8oOdWacb/vp

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

b96563b0ee70d25a1dfb40ee9812ee3e2066eb7a0f4e9930d3683fcacc0f64f8
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 129KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE