c7afbb212f5e4c2030f080d96c01c1d7aa20b6f9b15e7b27b535ecc855143783 | Triage

Sharing

General

Target

c7afbb212f5e4c2030f080d96c01c1d7aa20b6f9b15e7b27b535ecc855143783
Size

297KB
MD5

c7c94ee4383f14ef916e2b8ca6b65b8d
SHA1

18f2ffb0b4838d22997d4b5a354de6cbe68ef44a
SHA256

c7afbb212f5e4c2030f080d96c01c1d7aa20b6f9b15e7b27b535ecc855143783
SHA512

478b6340d4c3d5c6d4996b263b382be1000342632930f46ee1a0ac1645854c5ee0fecc22569f2adccb51f902bb85b3bfc90bb5705b50eedbf3697c0865a90aef
SSDEEP

6144:Vkzf2Hl+y3rqgWFYjQ8k+CDCl1ge5qIdQPy3R:Wf2HdkYj7rl1ge5qIcyB

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

c7afbb212f5e4c2030f080d96c01c1d7aa20b6f9b15e7b27b535ecc855143783
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 15KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 19KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE