2b48ae5b560bf3e023b69862de6efc8a62b52b641c10ca1b1d2bf3e45456aa88 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b48ae5b560bf3e023b69862de6efc8a62b52b641c10ca1b1d2bf3e45456aa88
Size

485KB
MD5

e6b2b52a097fb1d7d0b962d815291c4e
SHA1

9d179d8c6bc9883545c4b6191556694a4303c8d1
SHA256

2b48ae5b560bf3e023b69862de6efc8a62b52b641c10ca1b1d2bf3e45456aa88
SHA512

dc47ad90c793d86e1658ba1571c5abba4a9d27bac167be57d012966e3531b1f9b28453062cefb110da9c9846b50d9b18d4bb2b0f0d9fcec7f2508444572fb79f
SSDEEP

12288:QVqxc3H5zOcC5lPsQV1h+JKaXBP++5nK1:QVqXcCX91QJbXF++

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

2b48ae5b560bf3e023b69862de6efc8a62b52b641c10ca1b1d2bf3e45456aa88
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 276KB - Virtual size: 608KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 74KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 26KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 99KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE