b40de333cf4effe25899613e5a5b5e32245a38ce18aac10333b104372eab8339 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b40de333cf4effe25899613e5a5b5e32245a38ce18aac10333b104372eab8339
Size

307KB
MD5

4202da8e697e2f3be35a49436bab5219
SHA1

22031c3ae99db1cf5e893ea70983cd5af2aec3d8
SHA256

b40de333cf4effe25899613e5a5b5e32245a38ce18aac10333b104372eab8339
SHA512

6073546c6839caf90213c4b4441c21b37df59c6a067a16ff1d0ad4e967818cd061da855fe6e71bcb47c69a7957c96c88561eb95d498d8cd32e8bb1b9ee537499
SSDEEP

6144:GZDMF8a1rkqg27RzXWt1wFDvWe0WcnlZKa/qZn3Eh/7s25MCMHEhYGW7Vu03iUWE:yWvtk/MXYwFD+eLcHn/Ewo25LMiW7Vlb

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

b40de333cf4effe25899613e5a5b5e32245a38ce18aac10333b104372eab8339
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 19KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PEPACK!!
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newimp
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE