dd6675b89a467e724fd489c926b42f1750cfc88a8646363e2a341e868698690d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd6675b89a467e724fd489c926b42f1750cfc88a8646363e2a341e868698690d
Size

51KB
MD5

70f703aacfe9d51f5b03b74ae43543f2
SHA1

ec43dd22d0f25496bbc8ee1a895bf83df54f85ab
SHA256

dd6675b89a467e724fd489c926b42f1750cfc88a8646363e2a341e868698690d
SHA512

a37dcb582375fdc44835906c9c3babf36cf8c02556d8e453aed08c1c868f47aa8a8985c6ef597f0cd1ba2a22d394238f3def2d432086a24160b56130f6a536d7
SSDEEP

768:hBcF+PV97LjforlKcAqIifOyTe+sfGABYB/2MzK5MEsfOs0vJGyJxMLoIZ:XrnjEKcA4fOlfG0Y4M+5Sfv0vJkn

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

dd6675b89a467e724fd489c926b42f1750cfc88a8646363e2a341e868698690d
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.e df
Size: 7KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wdw2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.f244
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ooo
Size: 36KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE