c41022b0df9772430ac4c919e9065ba12c5caa1783c5803f3554adf024707c7e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c41022b0df9772430ac4c919e9065ba12c5caa1783c5803f3554adf024707c7e
Size

324KB
MD5

a27781fc962fdf73afaab1e14f7049df
SHA1

b6efcac2e777aff1b8f1d063de716ff9475b2395
SHA256

c41022b0df9772430ac4c919e9065ba12c5caa1783c5803f3554adf024707c7e
SHA512

05dd9ecba8c1c66870df64c9b4da69e1ca2ba95c6a0a2d4b7ceb33f0317ed361e3eca9bcd2c36a9d6433dd64d13614a9472de4aa20bd1082cdf292b39543e350
SSDEEP

3072:10Bpg+zdj8RNfnucYqKD/1sImOM9/nc9iJeuM6UxM9:u1pj8TWPqwNsSbnZi9

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

c41022b0df9772430ac4c919e9065ba12c5caa1783c5803f3554adf024707c7e
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 94KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE