8e950e28680e02ca2e784988934d3258f38c90167655ee0c5e07205538f2b326 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e950e28680e02ca2e784988934d3258f38c90167655ee0c5e07205538f2b326
Size

171KB
MD5

4d87856ea98b5c9874034913afa4b70a
SHA1

7670e7321a9fa48a9dfa18255c08741cfb70dba8
SHA256

8e950e28680e02ca2e784988934d3258f38c90167655ee0c5e07205538f2b326
SHA512

7afeed7638b0fae28d9f15ceb7e6985e828be96b582dafb70118372cc7c032474419532330646631588cca263679cb3c9eef06a6a29872627711a4efab091313
SSDEEP

3072:dZuYa5EwYYZPqrD9vUh6L3zFFOfQ/MksqCsiIPIqyUHhr0I3xapFRMPqWUxsrgi:dZFa5BHrwL3zFFOfM7iIP+UH53Apjaqn

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

8e950e28680e02ca2e784988934d3258f38c90167655ee0c5e07205538f2b326
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 11KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 151KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE