d080c1c55167c967cdec66d1d2e6e74feb334c9b8f600dc1cf5d80872bf8ae20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d080c1c55167c967cdec66d1d2e6e74feb334c9b8f600dc1cf5d80872bf8ae20
Size

683KB
MD5

b1dfd34b6166139bf7448547db646531
SHA1

e8e2ab699c62a5d17d693c5c04810dcab2d63cbd
SHA256

d080c1c55167c967cdec66d1d2e6e74feb334c9b8f600dc1cf5d80872bf8ae20
SHA512

ab3c450d1321c27b8ce9716f515e3db774df8ffcacfca8bd3f935996425249ca2cdd9f64cd18b09815a83601db5e08b3a96117643b7bce167a6c14f9e832b521
SSDEEP

12288:2ydz7gETIgaQ4hzeuj2rhx0Hr3UBMV9NObiLz5SYGANeRII+IYe4:tzI/hzezX4r6MNQSlSYh+da

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

d080c1c55167c967cdec66d1d2e6e74feb334c9b8f600dc1cf5d80872bf8ae20
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 505KB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 170KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE