6dbad2d5c0cbc6e86e12b00a7b9706c9f46d20e08c7961e10b27701f6c04e35d

Sharing

Copy URL Twitter E-mail

General

Target

6dbad2d5c0cbc6e86e12b00a7b9706c9f46d20e08c7961e10b27701f6c04e35d
Size

60KB
MD5

30f89c988e2340122b47752c2aa5dbd0
SHA1

037482f177cd660711acbae505274af634cfac99
SHA256

6dbad2d5c0cbc6e86e12b00a7b9706c9f46d20e08c7961e10b27701f6c04e35d
SHA512

4400e40a540e743608044dc661f99c803b80701d387d837fce421db6014d3d559d43aaa5d464e53fc338d487e14876f9f542d310c2c70e7ef9f31a8d066633bd
SSDEEP

1536:rOh4i9aUSoCRM03V/wjJOuhu1nnthtPSmzJ+VwNK:rOh4i9XSoKM03Vo9enp8VwM

Score

N/A

Malware Config

Signatures

Files

6dbad2d5c0cbc6e86e12b00a7b9706c9f46d20e08c7961e10b27701f6c04e35d
.exe windows x86

adcd4f241f80fb9dcb0a174d784bc0bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

clusapi

ClusterRegDeleteKey
ClusterNodeOpenEnum
BackupClusterDatabase
GetClusterResourceKey
GetNodeClusterState
ClusterRegQueryInfoKey
OnlineClusterResource
GetClusterNodeKey
RemoveClusterResourceDependency
ClusterGroupControl
ClusterGroupOpenEnum
SetClusterNetworkPriorityOrder
CloseClusterGroup
ClusterNetworkOpenEnum
ClusterResourceTypeOpenEnum
AddClusterResourceDependency
SetClusterNetworkName
ClusterNetworkCloseEnum
ClusterResourceTypeEnum
ClusterRegCreateKey
SetClusterName
ClusterResourceCloseEnum
CloseClusterNotifyPort
ClusterCloseEnum
GetClusterNodeState
GetClusterNotify
GetClusterNodeId
OfflineClusterGroup
OnlineClusterGroup
OfflineClusterResource
GetClusterGroupState
OpenClusterNetwork
GetClusterFromNetInterface
ClusterResourceTypeCloseEnum
ClusterGroupCloseEnum
ClusterNodeCloseEnum
ClusterRegDeleteValue
GetClusterResourceTypeKey
ClusterResourceTypeControl
MoveClusterGroup
CanResourceBeDependent
ClusterResourceEnum
OpenCluster
GetClusterResourceState
ClusterResourceOpenEnum
ClusterRegEnumKey
GetClusterNetInterfaceKey
ClusterRegEnumValue
CreateClusterResource
ResumeClusterNode
GetClusterFromNode
DeleteClusterResource
ClusterResourceControl
GetClusterFromResource
DeleteClusterGroup
GetClusterNetInterfaceState
OpenClusterGroup
RegisterClusterNotify
RestoreClusterDatabase
ClusterNodeEnum

resutils

ResUtilEnumPrivateProperties
ResUtilFindMultiSzProperty
ResUtilGetEnvironmentWithNetName
ResUtilFindSzProperty
ResUtilSetPropertyParameterBlockEx
ClusWorkerCreate
ResUtilAddUnknownProperties
ResUtilSetSzValue
ResUtilFindDependentDiskResourceDriveLetter
ResUtilVerifyPrivatePropertyList
ResUtilGetSzProperty
ResUtilFindExpandedSzProperty
ClusWorkerTerminate
ResUtilFindExpandSzProperty
ResUtilGetMultiSzProperty
ResUtilGetProperty
ResUtilIsPathValid
ResUtilFindBinaryProperty
ClusWorkerCheckTerminate
ResUtilGetDwordValue
ResUtilDupParameterBlock
ResUtilGetPropertiesToParameterBlock
ResUtilGetBinaryValue
ResUtilSetBinaryValue
ResUtilSetUnknownProperties
ResUtilGetResourceDependencyByClass
ResUtilEnumResources
ResUtilGetResourceDependencyByName
ResUtilGetAllProperties
ResUtilGetSzValue
ResUtilSetResourceServiceStartParameters

user32

DialogBoxParamW
SendMessageW

kernel32

GetProcAddress
CreateDirectoryA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adcd4f241f80fb9dcb0a174d784bc0bb

Headers

File Characteristics

Imports

clusapi

resutils

user32

kernel32

Sections

.text Size: 30KB - Virtual size: 30KB

.data Size: 12KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 3KB

.bss Size: 1KB - Virtual size: 3KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 30KB - Virtual size: 30KB

.data
Size: 12KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 3KB

.bss
Size: 1KB - Virtual size: 3KB

.rsrc
Size: 12KB - Virtual size: 12KB