e19a4be142a457a35e69472dede65872294ee317b510024b80e6d89bee3c2758 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e19a4be142a457a35e69472dede65872294ee317b510024b80e6d89bee3c2758
Size

36KB
MD5

22d4f807864d605a9db7f4908dbfa4e3
SHA1

09b0b10c90cf0eebb522348f27980652635bc0b7
SHA256

e19a4be142a457a35e69472dede65872294ee317b510024b80e6d89bee3c2758
SHA512

27089686b24f6f256d325ac9b750aa1980b6490fc2273cd409d2a2deb823fa2d9e518d90ca629bf72a818469ef8c44391cbcc6f5deb4e71789e0ba72f2e0e4a9
SSDEEP

768:IItVesHxTtrUwav8G2N2kdKCHR4RoXTPO6LN00LJGUJxjLoI:hVLRRUwaxkdhYoX7JS0LJ3

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

e19a4be142a457a35e69472dede65872294ee317b510024b80e6d89bee3c2758
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.scpack
Size: - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE