311d7cac28e7d0560698a1b4f825226a4b6993bf7f096517c90339c3196c0bb2 | Triage

Sharing

General

Target

311d7cac28e7d0560698a1b4f825226a4b6993bf7f096517c90339c3196c0bb2
Size

798KB
MD5

c86aae6b1ca1cb96cbd840434cd62c3f
SHA1

907f5e4c7f617ca9786d882f2dae7052f7e25dda
SHA256

311d7cac28e7d0560698a1b4f825226a4b6993bf7f096517c90339c3196c0bb2
SHA512

7e111330e6cec8e137c4f47bab179792a1106ca716db02449dd0084174c1c10777f16a51b96f4743842170b645fb95c978f40ca4b20c34003f9954b799b4e4f6
SSDEEP

24576:f9lGXzwZ6yoQLCw84iQgRE/ofTlvA/Qc5buY5Zy8sgi:1gUV9ri6/MS/QwykR

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs
Detects executables packed with ASPack v2.12-2.42
aspackv2

Processes:

resource yara_rule

sample aspack_v212_v242

Files

311d7cac28e7d0560698a1b4f825226a4b6993bf7f096517c90339c3196c0bb2
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 331KB - Virtual size: 764KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 91KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 348KB - Virtual size: 980KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE