9326c25392e4166e063941239edb7215f3be5408ed087729e2ed6754e2acb4cf | Triage

Sharing

General

Target

9326c25392e4166e063941239edb7215f3be5408ed087729e2ed6754e2acb4cf
Size

798KB
MD5

2ebd7822200ba26b4dd3f5f21ff09b75
SHA1

f51fee1a0a588c9ffbeffbceadb029e016e8d6f4
SHA256

9326c25392e4166e063941239edb7215f3be5408ed087729e2ed6754e2acb4cf
SHA512

d41cf32db5d37d7f78898baa35f8995c51426db7777f1e934e03eb61361411fde75a02e510067f452c65801dfbb9e5e5ff567043bf3c4d9e2f979d6ab24d5214
SSDEEP

12288:yZV1L7/obSYYL7zb4HuCrwOboSYE/omghqy7lQ0xA0k9GcC4rXtEDDjqRy:kV1sbQbZYTERE/ofTlvA/Qc5buHw

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs
Detects executables packed with ASPack v2.12-2.42
aspackv2

Processes:

resource yara_rule

sample aspack_v212_v242

Files

9326c25392e4166e063941239edb7215f3be5408ed087729e2ed6754e2acb4cf
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 331KB - Virtual size: 764KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 91KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 348KB - Virtual size: 980KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE