bb249040706ebccdbb4cfb6092d4353213cfca40595ffb509e2bc28aa5178d9f

Sharing

Copy URL Twitter E-mail

General

Target

bb249040706ebccdbb4cfb6092d4353213cfca40595ffb509e2bc28aa5178d9f
Size

60KB
MD5

a1bbe6f6a5c2a4bb47a55e2476df3640
SHA1

2c8f217e791e9612e1bd7505f31227551e9908c1
SHA256

bb249040706ebccdbb4cfb6092d4353213cfca40595ffb509e2bc28aa5178d9f
SHA512

b19e14014ec0c701c92b957152c76c97b5b638a3e45e0554002e8da9fc78283aa25d55a25c015ab7243f2e604966928ffb875096501f8cfd6362b4ad12e54814
SSDEEP

1536:8Oh4i9aUSoCRM03V/wjJOuhu1nnthtPSmzJ+VwNK:8Oh4i9XSoKM03Vo9enp8VwM

Score

N/A

Malware Config

Signatures

Files

bb249040706ebccdbb4cfb6092d4353213cfca40595ffb509e2bc28aa5178d9f
.exe windows x86

adcd4f241f80fb9dcb0a174d784bc0bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

clusapi

ClusterRegDeleteKey
ClusterNodeOpenEnum
BackupClusterDatabase
GetClusterResourceKey
GetNodeClusterState
ClusterRegQueryInfoKey
OnlineClusterResource
GetClusterNodeKey
RemoveClusterResourceDependency
ClusterGroupControl
ClusterGroupOpenEnum
SetClusterNetworkPriorityOrder
CloseClusterGroup
ClusterNetworkOpenEnum
ClusterResourceTypeOpenEnum
AddClusterResourceDependency
SetClusterNetworkName
ClusterNetworkCloseEnum
ClusterResourceTypeEnum
ClusterRegCreateKey
SetClusterName
ClusterResourceCloseEnum
CloseClusterNotifyPort
ClusterCloseEnum
GetClusterNodeState
GetClusterNotify
GetClusterNodeId
OfflineClusterGroup
OnlineClusterGroup
OfflineClusterResource
GetClusterGroupState
OpenClusterNetwork
GetClusterFromNetInterface
ClusterResourceTypeCloseEnum
ClusterGroupCloseEnum
ClusterNodeCloseEnum
ClusterRegDeleteValue
GetClusterResourceTypeKey
ClusterResourceTypeControl
MoveClusterGroup
CanResourceBeDependent
ClusterResourceEnum
OpenCluster
GetClusterResourceState
ClusterResourceOpenEnum
ClusterRegEnumKey
GetClusterNetInterfaceKey
ClusterRegEnumValue
CreateClusterResource
ResumeClusterNode
GetClusterFromNode
DeleteClusterResource
ClusterResourceControl
GetClusterFromResource
DeleteClusterGroup
GetClusterNetInterfaceState
OpenClusterGroup
RegisterClusterNotify
RestoreClusterDatabase
ClusterNodeEnum

resutils

ResUtilEnumPrivateProperties
ResUtilFindMultiSzProperty
ResUtilGetEnvironmentWithNetName
ResUtilFindSzProperty
ResUtilSetPropertyParameterBlockEx
ClusWorkerCreate
ResUtilAddUnknownProperties
ResUtilSetSzValue
ResUtilFindDependentDiskResourceDriveLetter
ResUtilVerifyPrivatePropertyList
ResUtilGetSzProperty
ResUtilFindExpandedSzProperty
ClusWorkerTerminate
ResUtilFindExpandSzProperty
ResUtilGetMultiSzProperty
ResUtilGetProperty
ResUtilIsPathValid
ResUtilFindBinaryProperty
ClusWorkerCheckTerminate
ResUtilGetDwordValue
ResUtilDupParameterBlock
ResUtilGetPropertiesToParameterBlock
ResUtilGetBinaryValue
ResUtilSetBinaryValue
ResUtilSetUnknownProperties
ResUtilGetResourceDependencyByClass
ResUtilEnumResources
ResUtilGetResourceDependencyByName
ResUtilGetAllProperties
ResUtilGetSzValue
ResUtilSetResourceServiceStartParameters

user32

DialogBoxParamW
SendMessageW

kernel32

GetProcAddress
CreateDirectoryA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adcd4f241f80fb9dcb0a174d784bc0bb

Headers

File Characteristics

Imports

clusapi

resutils

user32

kernel32

Sections

.text Size: 30KB - Virtual size: 30KB

.data Size: 12KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 3KB

.bss Size: 1KB - Virtual size: 3KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 30KB - Virtual size: 30KB

.data
Size: 12KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 3KB

.bss
Size: 1KB - Virtual size: 3KB

.rsrc
Size: 12KB - Virtual size: 12KB