988557b09c1ab0658d0b25dc68ed31111ba8318130cd08e7c6b608e441b8af49 | Triage

Sharing

General

Target

988557b09c1ab0658d0b25dc68ed31111ba8318130cd08e7c6b608e441b8af49
Size

1.1MB
MD5

4948d81dd1c73ead291179515a0edd39
SHA1

ad4567d68ba896ee628599b4b6429492f3b0ba45
SHA256

988557b09c1ab0658d0b25dc68ed31111ba8318130cd08e7c6b608e441b8af49
SHA512

aa3f3dbe383055975e8ce728ddb159bce75d0dcd1eb876433d0690454c899c3c30fdc4207ba8109783347a521fa6dc40df61e50ec92234ed843e719a8f4f1959
SSDEEP

24576:G5JSDhQjpTNAf9XXpAPlyemoHsI79jvc4RhaTSUSDf+HJG:c4DCjEf9X50yeJMetc4ST9Y+H0

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

988557b09c1ab0658d0b25dc68ed31111ba8318130cd08e7c6b608e441b8af49
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 204KB - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 567KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 37KB - Virtual size: 668KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 217KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE