52a41b1ccb2a084d27bb3dbc3aa8a83f1034b2c4dc0197d50abfc0fe135ed3e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

52a41b1ccb2a084d27bb3dbc3aa8a83f1034b2c4dc0197d50abfc0fe135ed3e4
Size

813KB
MD5

06b210689b2f5d5ee09f7b09c7726e66
SHA1

18c2a486407d9c5b71eaecb3212ebaf8f8f78a56
SHA256

52a41b1ccb2a084d27bb3dbc3aa8a83f1034b2c4dc0197d50abfc0fe135ed3e4
SHA512

06490f0c22f52c32b6f47527d6fc42387e486c375f82b54d09b8d6cf94c620e7d5577b4d39badb0035418a341ffd30426d44c7247a2cdfbeb716b464d7de83c3
SSDEEP

24576:77PyV8tek04liUOePAmAqTsyjOEkNdmhr:7byV8tek0E2eZAA0y

Score

N/A

Malware Config

Signatures

Files

52a41b1ccb2a084d27bb3dbc3aa8a83f1034b2c4dc0197d50abfc0fe135ed3e4
.exe windows x86

b1af0bcd649e8f1fefa7c7c10a5a4158

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
GetCurrentProcess
SetEnvironmentVariableA
GetShortPathNameW
GetConsoleTitleA
GetPrivateProfileIntW
GetVolumePathNameW
HeapFree
WriteConsoleW
SetCurrentDirectoryA
LoadLibraryA
GetTickCount
GetStringTypeA
SetVolumeLabelA
lstrcpyA
WriteConsoleA
SetStdHandle
CreateMutexW
CreateEventW

aaclient

OpenKeyReaderWriter
LoadClientAdapter
g_fnStartTransport
OpenKeyReader

Sections

.CODE
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kdata
Size: 1024B - Virtual size: 710B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 801KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ