9285406d37264fb33c72f890db4dc56e2c20525902142a28536682da10859c51

Sharing

Copy URL

Twitter E-mail

General

Target

9285406d37264fb33c72f890db4dc56e2c20525902142a28536682da10859c51
Size

60KB
MD5

6ba94478847a34406ada28276bc704b0
SHA1

cf8c881ad9108d56978ca26cfcf19a1ce2b8b6ef
SHA256

9285406d37264fb33c72f890db4dc56e2c20525902142a28536682da10859c51
SHA512

0ea503d1bf37559ff743043e15b67cdf8eb6e680ab831adf7d8d50e688c242dec5f522ac1c72417458d73a252601353b94c7b04144af3c86f4b98a8e294fcd56
SSDEEP

1536:iOh4i9aUSoCRM03V/wjJOuhu1nnthtPSmzJ+VwNK:iOh4i9XSoKM03Vo9enp8VwM

Score

N/A

Malware Config

Signatures

Files

9285406d37264fb33c72f890db4dc56e2c20525902142a28536682da10859c51
.exe windows x86

adcd4f241f80fb9dcb0a174d784bc0bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

clusapi

ClusterRegDeleteKey
ClusterNodeOpenEnum
BackupClusterDatabase
GetClusterResourceKey
GetNodeClusterState
ClusterRegQueryInfoKey
OnlineClusterResource
GetClusterNodeKey
RemoveClusterResourceDependency
ClusterGroupControl
ClusterGroupOpenEnum
SetClusterNetworkPriorityOrder
CloseClusterGroup
ClusterNetworkOpenEnum
ClusterResourceTypeOpenEnum
AddClusterResourceDependency
SetClusterNetworkName
ClusterNetworkCloseEnum
ClusterResourceTypeEnum
ClusterRegCreateKey
SetClusterName
ClusterResourceCloseEnum
CloseClusterNotifyPort
ClusterCloseEnum
GetClusterNodeState
GetClusterNotify
GetClusterNodeId
OfflineClusterGroup
OnlineClusterGroup
OfflineClusterResource
GetClusterGroupState
OpenClusterNetwork
GetClusterFromNetInterface
ClusterResourceTypeCloseEnum
ClusterGroupCloseEnum
ClusterNodeCloseEnum
ClusterRegDeleteValue
GetClusterResourceTypeKey
ClusterResourceTypeControl
MoveClusterGroup
CanResourceBeDependent
ClusterResourceEnum
OpenCluster
GetClusterResourceState
ClusterResourceOpenEnum
ClusterRegEnumKey
GetClusterNetInterfaceKey
ClusterRegEnumValue
CreateClusterResource
ResumeClusterNode
GetClusterFromNode
DeleteClusterResource
ClusterResourceControl
GetClusterFromResource
DeleteClusterGroup
GetClusterNetInterfaceState
OpenClusterGroup
RegisterClusterNotify
RestoreClusterDatabase
ClusterNodeEnum

resutils

ResUtilEnumPrivateProperties
ResUtilFindMultiSzProperty
ResUtilGetEnvironmentWithNetName
ResUtilFindSzProperty
ResUtilSetPropertyParameterBlockEx
ClusWorkerCreate
ResUtilAddUnknownProperties
ResUtilSetSzValue
ResUtilFindDependentDiskResourceDriveLetter
ResUtilVerifyPrivatePropertyList
ResUtilGetSzProperty
ResUtilFindExpandedSzProperty
ClusWorkerTerminate
ResUtilFindExpandSzProperty
ResUtilGetMultiSzProperty
ResUtilGetProperty
ResUtilIsPathValid
ResUtilFindBinaryProperty
ClusWorkerCheckTerminate
ResUtilGetDwordValue
ResUtilDupParameterBlock
ResUtilGetPropertiesToParameterBlock
ResUtilGetBinaryValue
ResUtilSetBinaryValue
ResUtilSetUnknownProperties
ResUtilGetResourceDependencyByClass
ResUtilEnumResources
ResUtilGetResourceDependencyByName
ResUtilGetAllProperties
ResUtilGetSzValue
ResUtilSetResourceServiceStartParameters

user32

DialogBoxParamW
SendMessageW

kernel32

GetProcAddress
CreateDirectoryA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adcd4f241f80fb9dcb0a174d784bc0bb

Headers

File Characteristics

Imports

clusapi

resutils

user32

kernel32

Sections

.text Size: 30KB - Virtual size: 30KB

.data Size: 12KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 3KB

.bss Size: 1KB - Virtual size: 3KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 30KB - Virtual size: 30KB

.data
Size: 12KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 3KB

.bss
Size: 1KB - Virtual size: 3KB

.rsrc
Size: 12KB - Virtual size: 12KB