ac32ca5bcc367833540f2c05d25fffd46a838270a909e084c967ad6e082d06bc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac32ca5bcc367833540f2c05d25fffd46a838270a909e084c967ad6e082d06bc
Size

829KB
MD5

f52287dcc432b41b06ebd8c7f6bc7bbf
SHA1

426b1533b361929d34da3024a02ccd690cf1e128
SHA256

ac32ca5bcc367833540f2c05d25fffd46a838270a909e084c967ad6e082d06bc
SHA512

a6f7916f1590d81fa519317cb89c29df1de79520cc3ce3cf82623fa1b5352170c6e57ce08e7a127973e81750808d530c03666cd04b3a5daf2a8f6b4a1e09332c
SSDEEP

12288:kmCI+NSb+HHBJ28WAZmzeB53umqHKmcljWYmEBy8eJKOn1+7h+Ivqa0ZvnOIK:XCJNDnBEAZ02JumqHKtgVme8O2nIOI

Score

N/A

Malware Config

Signatures

Files

ac32ca5bcc367833540f2c05d25fffd46a838270a909e084c967ad6e082d06bc
.exe windows x86

911e9487a0c02a69c087ae997d921eaf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapCreate
GetCurrentProcess
GetTickCount
HeapFree
lstrcpyA
lstrcatW
SetCurrentDirectoryA
GetStringTypeA
LoadLibraryA
SetStdHandle
GetVolumeInformationW
SetEnvironmentVariableA
GetVolumePathNameW
CreateEventA
WriteConsoleW
GetShortPathNameW
SetVolumeLabelA
CreateMutexW
GetPrivateProfileIntW

aaclient

OpenKeyReader
OpenKeyReaderWriter
LoadClientAdapter
g_fnStartTransport

Sections

.text
Size: 23KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata
Size: 4KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.odata
Size: 800KB - Virtual size: 800KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ