d95536bd00bd6267dcf3167dc9cd5d2c532b4b43e6fc3fb2079aace0fe2be084 | Triage

Sharing

General

Target

d95536bd00bd6267dcf3167dc9cd5d2c532b4b43e6fc3fb2079aace0fe2be084
Size

389KB
MD5

3a932a11856ebbaec98648121ccbb9f4
SHA1

9cccb3a675b761db6eb2d26e1b8a213dbe58b6bd
SHA256

d95536bd00bd6267dcf3167dc9cd5d2c532b4b43e6fc3fb2079aace0fe2be084
SHA512

67a3b6aef42b36ddea5cd521febff77f9caac8467bca48bb4f2ebd3c10587cff8b5c2e88ed82987e45ed4bde5d7febb0a5b9e777926f38fe5458d2f82f39b1ca
SSDEEP

6144:FpTq0HxoW9JblvFrUSLpdIhfVHLQqdBR5BTBuCqObbOpb48iA:FBq0HxzJxVUSLpC1LtRnTVqEG4P

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

d95536bd00bd6267dcf3167dc9cd5d2c532b4b43e6fc3fb2079aace0fe2be084
.dll regsvr32 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

BA39E0F773AB44e8B54
C6F72B80C5D394d3c8573
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
_NotifyShutdown@4
_NotifyStartup@4

Sections

.text
Size: 254KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 85KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 23KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfs
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE