69c96bbe50385db846771f0aad158be5b455dad373d3d3b99833cad69534488a | Triage

Sharing

General

Target

69c96bbe50385db846771f0aad158be5b455dad373d3d3b99833cad69534488a
Size

71KB
MD5

a3e8061101f58d4564c8ca5fde69ab4e
SHA1

3c411ed5deb88f59cb706dc897abb89aa1d56b98
SHA256

69c96bbe50385db846771f0aad158be5b455dad373d3d3b99833cad69534488a
SHA512

fc4f22afc6acefe922d480dd6d0cf3e3ca82ebd13fe6db001614199a1609d885f682a2c41ba8652e99a9b51152f3d4e4ab6bee99e85513372e5a6a737205d320
SSDEEP

1536:aNUTKAK5b+m6OAlzxve5RSKrj43gYquXUW69mbjmfayRgQ:aafeb+mzADwRuQYqfcbCfaG

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs
Detects executables packed with ASPack v2.12-2.42
aspackv2

Processes:

resource yara_rule

sample aspack_v212_v242

Files

69c96bbe50385db846771f0aad158be5b455dad373d3d3b99833cad69534488a
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 23KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE