e646e1a53f95aa58209ce5414d307a76ef5cb890a13d6203958b34d19a5bca9f | Triage

Sharing

General

Target

e646e1a53f95aa58209ce5414d307a76ef5cb890a13d6203958b34d19a5bca9f
Size

194KB
MD5

e042a091d667584f70d517ef9e13113e
SHA1

42f23bfed05424aba314836ec7b4de696c5c7b51
SHA256

e646e1a53f95aa58209ce5414d307a76ef5cb890a13d6203958b34d19a5bca9f
SHA512

7adc43d4f75f8a095e08cbf9ba1f7ef03590978846bad35fd3fb82062f003df22ee25242ee178ebe02fbb9aaa4d87f132f7a3bf12a03c5dcc24fcb6c1faeb00e
SSDEEP

3072:t9i2/+Mz7z0yLgCxQycNBweGZ8GKyZ1tTJzW7Pdqz2WjOZBUl5W4kroOT78Dx:/iTPZRNBweYtTJzKTW6ZBQM4hO2x

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

e646e1a53f95aa58209ce5414d307a76ef5cb890a13d6203958b34d19a5bca9f
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 134KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 18KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE