0c2dd010baafacb41a94ac6fedf8028806e7a7759aba85b1c7bce73fe2057acc | Triage

Sharing

General

Target

0c2dd010baafacb41a94ac6fedf8028806e7a7759aba85b1c7bce73fe2057acc
Size

4.9MB
MD5

bf48744a6bac091b0638e1bacdefb35f
SHA1

d90f5a09ccd5a549260302c2d709509771d7cf1a
SHA256

0c2dd010baafacb41a94ac6fedf8028806e7a7759aba85b1c7bce73fe2057acc
SHA512

3a42c8b51ddeabf75f1a1fdfd0b87a00395db4c4d317317a8cb4f4c1287898e31f98c12a8db77ed2b0a1b68fbf86b4ddc907bf00f6c03753ee5e26df1aa55741
SSDEEP

98304:9NkOCHCOB9wtb4pauslDbKqixxUYXt0xFWsV0if6KFd/UppTiLg/:kVHCuaDvq7cit03jV0if6KFd/F4

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs
Detects executables packed with ASPack v2.12-2.42
aspackv2

Processes:

resource yara_rule

sample aspack_v212_v242

Files

0c2dd010baafacb41a94ac6fedf8028806e7a7759aba85b1c7bce73fe2057acc
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 842KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 109KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 23KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.XF0
Size: 1024KB - Virtual size: 8.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.XF1
Size: 1.7MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 269KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE