ed67ad9a3c18b65c42865cb6e011ea57d24f1f3cad0bd95031debce7396bbea4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed67ad9a3c18b65c42865cb6e011ea57d24f1f3cad0bd95031debce7396bbea4
Size

325KB
MD5

44c1baab58d0c90fb6e7e4195cf2f68e
SHA1

80ad70caeaca476ba523d96404a164abc8760428
SHA256

ed67ad9a3c18b65c42865cb6e011ea57d24f1f3cad0bd95031debce7396bbea4
SHA512

d35c4ba3ec1eee4e52323e8330969fc8db30de9419cf900fc8054ebeda93b5169efa0f6a020ed03a317f255720af77577a3d25d6d9ce6d0504738898eadd8521
SSDEEP

6144:XkZILgM2u+nmzK6QgSuHL5vj6pNAwEbJ9WONn42oQBLJEt2H/IHLREG5EzN5tSh:XkZIEGpzK6FSkFvcEbJ9Ws4fQct2H/IN

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

ed67ad9a3c18b65c42865cb6e011ea57d24f1f3cad0bd95031debce7396bbea4
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 14KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 301KB - Virtual size: 304KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE