e1466652bd4ba5125aa102ad92f3d05f882503402f010f76a5784f72fb314f11 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1466652bd4ba5125aa102ad92f3d05f882503402f010f76a5784f72fb314f11
Size

3.3MB
MD5

a32d287f4f685d9ce7a48c8caebd757d
SHA1

338dd073894e7d9a03e90228af759f9b61725e6d
SHA256

e1466652bd4ba5125aa102ad92f3d05f882503402f010f76a5784f72fb314f11
SHA512

28055fa20f33e9e2dbf53f4f3a185c62745a853c1ec210b6cfd412a88bb88f797aa688b87d4d5d15f1e276e3bc81816334faf0e7e618f1b13c5a1d0f832dda60
SSDEEP

98304:rbype7lXfEXcwv/4+50W+J6rpRd+7rzivNN:Xyperwv/4+5m6rh+feVN

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

e1466652bd4ba5125aa102ad92f3d05f882503402f010f76a5784f72fb314f11
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 508KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE