f40c36ce3077e108552f069551206c895e6eb57209ecc98f0761c3fab501ddc2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f40c36ce3077e108552f069551206c895e6eb57209ecc98f0761c3fab501ddc2
Size

95KB
MD5

6a8db9e7f03d8d42451c931544a395be
SHA1

9b99a33157eda66707ba88903c1a45cee4924628
SHA256

f40c36ce3077e108552f069551206c895e6eb57209ecc98f0761c3fab501ddc2
SHA512

00f2c9d0e47b2a11be9ff15ff59b7f4b986dfce1993700948469c4f6feee673eac731b618ad43bbac1dd5402e5db04dfbaa689ab2a502b61ebf913c38990c420
SSDEEP

1536:kfYqx6u1dBVpaQUjYUFrS3utkFX56M0jlFXvuq7hG6vFr5Yb:i9N1d0YUFrS3utkFh2D/RG6vFr5Yb

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

f40c36ce3077e108552f069551206c895e6eb57209ecc98f0761c3fab501ddc2
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 7KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE