91b00c9a5dcb20597929d8d4676c4a875498f9d9329ea1ae7ca0c6841614954c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

91b00c9a5dcb20597929d8d4676c4a875498f9d9329ea1ae7ca0c6841614954c
Size

331KB
MD5

5d8c18154c2b0c3e96550e06b2b9255c
SHA1

9f93225295a69371e8ec5ad33ff9ff7201c3b93f
SHA256

91b00c9a5dcb20597929d8d4676c4a875498f9d9329ea1ae7ca0c6841614954c
SHA512

832f91e00aee53cf4bf84a2b3fc64a90c6fa8eb004c4d965bf13663065b8ca2642e07e5ff04fcdd88ecfb301e038d2e58ff14790993acad8e64fe1e165cdd794
SSDEEP

6144:VNd0+ihxi1z4+q/Lyn/JYAo6tmR1zi7DTl2F6esZ1/haRRIjuqGsGxs:VrAhxi1h2ynGAo6tma7HlweT4BNsG

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

91b00c9a5dcb20597929d8d4676c4a875498f9d9329ea1ae7ca0c6841614954c
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.data
Size: 312KB - Virtual size: 664KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ex_cod
Size: 3KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ex_rsc
Size: 10KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE