28ef27c46d36c932d30885e94434da033a8417de278ccdcf5c5995936db80572 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28ef27c46d36c932d30885e94434da033a8417de278ccdcf5c5995936db80572
Size

503KB
MD5

9ccab98ea4aff5a8197f791dbcfd05e2
SHA1

ebdd0e81923028a498d02310fe24d9de0b3e31b6
SHA256

28ef27c46d36c932d30885e94434da033a8417de278ccdcf5c5995936db80572
SHA512

9ce05cb5ce7d67baa0b24f356d05e7aba9bfe41a7486a440b39383e321f1de8df5be6d31fbc547be9896b14467fa372efe9fa14ac28ff87ad3ba7c4cfafb1a76
SSDEEP

12288:hUyUdZO+DxasWBE/+77yBHh/+Z/cfFZCIbIzLJoV:hOdZO+DxasWG/nBHh/aIjIuV

Score

N/A

Malware Config

Signatures

Files

28ef27c46d36c932d30885e94434da033a8417de278ccdcf5c5995936db80572
.exe windows x86

14ada2d2a1bb6dacde6da12394a194c2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetVolumeLabelA
CreateMutexW
LeaveCriticalSection
lstrcpyA
GetTickCount
DeleteFileA
HeapFree
GetCurrentProcess
SetCurrentDirectoryA
SetEnvironmentVariableA
GetShortPathNameW
GetVolumePathNameW
LoadLibraryA
GetPrivateProfileIntW
GetStringTypeA
SetStdHandle
EnterCriticalSection
GetConsoleTitleA
HeapCreate

aaclient

g_fnStartTransport
OpenKeyReader
LoadClientAdapter
OpenKeyReaderWriter

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 491KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ