e200e43e566ce8bc6dba6ba919e287c6be7c2ef6ee653ed7a75b0ad52283c206

General

Target

e200e43e566ce8bc6dba6ba919e287c6be7c2ef6ee653ed7a75b0ad52283c206
Size

88KB
MD5

f208d8c26793ac0ee9bf2d3cdbdec8a4
SHA1

e5da4aee1cbc54dc9d62041cc33c41cff4ffc2f7
SHA256

e200e43e566ce8bc6dba6ba919e287c6be7c2ef6ee653ed7a75b0ad52283c206
SHA512

fa13f47f507f7b401da339c25787ba8bc631c5b4ad563c80d82300dab8ff4b03f28ff5acce722b02a25a8d513662c3409abd636d0ad8f93efc781757d4a4d6f7
SSDEEP

1536:oqgQACHYOzQ2LsIde9RtUif3yVsFxhCcx5XZZsJ3t8CG2VGYWWEMQ:oqrHbsUif3yVWxvZZsQCGMe7

Score

8^/10

aspackv2 upx

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Files

e200e43e566ce8bc6dba6ba919e287c6be7c2ef6ee653ed7a75b0ad52283c206
.dll windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 21KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.UPX0
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.UPX1
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 21KB - Virtual size: 52KB

.rdata Size: 4KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 16KB

.rsrc Size: 12KB - Virtual size: 12KB

.UPX0 Size: 3KB - Virtual size: 4KB

.UPX1 Size: 29KB - Virtual size: 32KB

.reloc Size: 3KB - Virtual size: 4KB

.aspack Size: 5KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

.text
Size: 21KB - Virtual size: 52KB

.rdata
Size: 4KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 16KB

.rsrc
Size: 12KB - Virtual size: 12KB

.UPX0
Size: 3KB - Virtual size: 4KB

.UPX1
Size: 29KB - Virtual size: 32KB

.reloc
Size: 3KB - Virtual size: 4KB

.aspack
Size: 5KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB