566ddc62429279dcecea983a6e86fd47b854e3ee09555e4cc023a2b7733a111d

Sharing

Copy URL

Twitter E-mail

General

Target

566ddc62429279dcecea983a6e86fd47b854e3ee09555e4cc023a2b7733a111d
Size

1.6MB
MD5

ef1ef76cb0fbd2eb18a728daf7585888
SHA1

e78ad6ad410f8cabf0336be832a6efbde580cebe
SHA256

566ddc62429279dcecea983a6e86fd47b854e3ee09555e4cc023a2b7733a111d
SHA512

836054b864c9d3bb27e3334ea4fc1eec9ffaa6196447bb39e459a6d680c38c4d7d5abb762eeedbfa39c2a4de679ec9403442a365412d911e4dcf1630e83bfaf5
SSDEEP

24576:V7HbEgxpCFOuBaiUsJH5+6U3JD/G8pjsyYNK6rdvOUEqcAK5Cvt3jUd17gnj:V7HbETQMCi46UZTiNK6rdDACVjKZy

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs
Detects executables packed with ASPack v2.12-2.42
aspackv2

Processes:

resource yara_rule

sample aspack_v212_v242

resource	yara_rule
sample	aspack_v212_v242

Files

566ddc62429279dcecea983a6e86fd47b854e3ee09555e4cc023a2b7733a111d
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

BeforeOpenBill
setup

Sections

Size: 217KB - Virtual size: 628KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 23KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 992KB - Virtual size: 4.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 324KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 217KB - Virtual size: 628KB

Size: 5KB - Virtual size: 12KB

Size: - Virtual size: 4KB

Size: 8KB - Virtual size: 12KB

Size: 512B - Virtual size: 4KB

Size: 23KB - Virtual size: 48KB

.rsrc Size: 50KB - Virtual size: 264KB

Size: 992KB - Virtual size: 4.2MB

.data Size: 324KB - Virtual size: 324KB

.adata Size: - Virtual size: 4KB

.rsrc
Size: 50KB - Virtual size: 264KB

.data
Size: 324KB - Virtual size: 324KB

.adata
Size: - Virtual size: 4KB