94347884ee1887e2d29e243e9136e6b63da3178daa5e5ddbcf533e8897a9e4f5 | Triage

Sharing

General

Target

94347884ee1887e2d29e243e9136e6b63da3178daa5e5ddbcf533e8897a9e4f5
Size

4.5MB
MD5

702c31ebb60e92d867c2dca14c2d59f8
SHA1

bae7d1c97bc27ffd0f59c733f306163535cfcc9b
SHA256

94347884ee1887e2d29e243e9136e6b63da3178daa5e5ddbcf533e8897a9e4f5
SHA512

3383aa196a78c04733fd103292ae6641abee3168797826c6a66bf292750929feb145f80fb68466a7f066bbfc63254b7ca7eff775013037c9e2507ed3194404e2
SSDEEP

98304:NfPIhn1jKUO7H/ZjoRPKf8MKQ2e2IVvbWEsPCLFPzLNFpsptX:NIhhKH/mR28o2I1bWEsqRPH/psX

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs
Detects executables packed with ASPack v2.12-2.42
aspackv2

Processes:

resource yara_rule

sample aspack_v212_v242

Files

94347884ee1887e2d29e243e9136e6b63da3178daa5e5ddbcf533e8897a9e4f5
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 876KB - Virtual size: 4.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 85KB - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 199KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE