732b5abd1764036c119e6114ea06967c4dec5f68ea3165fa0e973d5c494682bb

Sharing

Copy URL Twitter E-mail

General

Target

732b5abd1764036c119e6114ea06967c4dec5f68ea3165fa0e973d5c494682bb
Size

672KB
MD5

f89dfe5865a56bf266d3346048803e15
SHA1

20f634961fc6ceca74c8b978b4a2a793d4126d62
SHA256

732b5abd1764036c119e6114ea06967c4dec5f68ea3165fa0e973d5c494682bb
SHA512

c54bd395773759c3b8fffc9093ff90749c8cf07f437f98e1a3c914bda26dc627195174f5906e898d52e71d91ed19d73df046f84198a4a8cb04c7a4f79282cda2
SSDEEP

12288:00kmJjFlD6pggii+wPEmJ9pFKtFGXSerD3TK9HlJ3zTELbfFU:00zjFrgXppF0saH/3zcfK

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
sample	aspack_v212_v242

Files

732b5abd1764036c119e6114ea06967c4dec5f68ea3165fa0e973d5c494682bb
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 350KB - Virtual size: 940KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 149KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 103KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 350KB - Virtual size: 940KB

DATA Size: 4KB - Virtual size: 12KB

BSS Size: - Virtual size: 8KB

.idata Size: 4KB - Virtual size: 12KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 68KB

.rsrc Size: 149KB - Virtual size: 352KB

.aspack Size: 103KB - Virtual size: 104KB

.adata Size: - Virtual size: 4KB

Size: 56KB - Virtual size: 60KB

CODE
Size: 350KB - Virtual size: 940KB

DATA
Size: 4KB - Virtual size: 12KB

BSS
Size: - Virtual size: 8KB

.idata
Size: 4KB - Virtual size: 12KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 68KB

.rsrc
Size: 149KB - Virtual size: 352KB

.aspack
Size: 103KB - Virtual size: 104KB

.adata
Size: - Virtual size: 4KB