e953ceafd23fc6d50ee685ba0dbe90257473e493f2858aa8a110fbcb3f212219 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e953ceafd23fc6d50ee685ba0dbe90257473e493f2858aa8a110fbcb3f212219
Size

151KB
MD5

2018f42b8fc178996b8e3c289b13eb10
SHA1

0dc660bb088db43856a7c3a637c1a9fbee9e6f8c
SHA256

e953ceafd23fc6d50ee685ba0dbe90257473e493f2858aa8a110fbcb3f212219
SHA512

eae7f4201c23e2aa4de40e7bdd4afa96376bbe6c0fe58181c8401d02f24b9584c038f3be18bb75740fc73663841c560d828903fa91f80e6f9da2848d09724f5d
SSDEEP

1536:kPmx+wJhKO9CI3BvM7t74jU2cYIWnZToVF47GXl7AMr0+XZBZkJkxiVkDZT:kMsp4PfdoyMYevZ

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

e953ceafd23fc6d50ee685ba0dbe90257473e493f2858aa8a110fbcb3f212219
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 139KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE