2b1ffa06ff33acc618e2b570c3c5a40970a1731b1cc8443549177978359dd805

Sharing

Copy URL

Twitter E-mail

General

Target

2b1ffa06ff33acc618e2b570c3c5a40970a1731b1cc8443549177978359dd805
Size

60KB
MD5

a22a7abe33e843cbe6f78f3f0ebe1080
SHA1

17e2c84563018ec5ea23244f2d4b32553d112c6d
SHA256

2b1ffa06ff33acc618e2b570c3c5a40970a1731b1cc8443549177978359dd805
SHA512

4ccdc3a7703a9740db78cd27f66e98f3aa2cdb59362f3dc5b3170ef1a8d451bf33f6ff5d7f8cb726fae0a3bc1ece4c0d1e21f324fc40702ebc9fbe9e2b154a88
SSDEEP

1536:rOh4i9aUSoCRM03V/wjJOuhu1nnthtPSmzJ+VwNK:rOh4i9XSoKM03Vo9enp8VwM

Score

N/A

Malware Config

Signatures

Files

2b1ffa06ff33acc618e2b570c3c5a40970a1731b1cc8443549177978359dd805
.exe windows x86

adcd4f241f80fb9dcb0a174d784bc0bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

clusapi

ClusterRegDeleteKey
ClusterNodeOpenEnum
BackupClusterDatabase
GetClusterResourceKey
GetNodeClusterState
ClusterRegQueryInfoKey
OnlineClusterResource
GetClusterNodeKey
RemoveClusterResourceDependency
ClusterGroupControl
ClusterGroupOpenEnum
SetClusterNetworkPriorityOrder
CloseClusterGroup
ClusterNetworkOpenEnum
ClusterResourceTypeOpenEnum
AddClusterResourceDependency
SetClusterNetworkName
ClusterNetworkCloseEnum
ClusterResourceTypeEnum
ClusterRegCreateKey
SetClusterName
ClusterResourceCloseEnum
CloseClusterNotifyPort
ClusterCloseEnum
GetClusterNodeState
GetClusterNotify
GetClusterNodeId
OfflineClusterGroup
OnlineClusterGroup
OfflineClusterResource
GetClusterGroupState
OpenClusterNetwork
GetClusterFromNetInterface
ClusterResourceTypeCloseEnum
ClusterGroupCloseEnum
ClusterNodeCloseEnum
ClusterRegDeleteValue
GetClusterResourceTypeKey
ClusterResourceTypeControl
MoveClusterGroup
CanResourceBeDependent
ClusterResourceEnum
OpenCluster
GetClusterResourceState
ClusterResourceOpenEnum
ClusterRegEnumKey
GetClusterNetInterfaceKey
ClusterRegEnumValue
CreateClusterResource
ResumeClusterNode
GetClusterFromNode
DeleteClusterResource
ClusterResourceControl
GetClusterFromResource
DeleteClusterGroup
GetClusterNetInterfaceState
OpenClusterGroup
RegisterClusterNotify
RestoreClusterDatabase
ClusterNodeEnum

resutils

ResUtilEnumPrivateProperties
ResUtilFindMultiSzProperty
ResUtilGetEnvironmentWithNetName
ResUtilFindSzProperty
ResUtilSetPropertyParameterBlockEx
ClusWorkerCreate
ResUtilAddUnknownProperties
ResUtilSetSzValue
ResUtilFindDependentDiskResourceDriveLetter
ResUtilVerifyPrivatePropertyList
ResUtilGetSzProperty
ResUtilFindExpandedSzProperty
ClusWorkerTerminate
ResUtilFindExpandSzProperty
ResUtilGetMultiSzProperty
ResUtilGetProperty
ResUtilIsPathValid
ResUtilFindBinaryProperty
ClusWorkerCheckTerminate
ResUtilGetDwordValue
ResUtilDupParameterBlock
ResUtilGetPropertiesToParameterBlock
ResUtilGetBinaryValue
ResUtilSetBinaryValue
ResUtilSetUnknownProperties
ResUtilGetResourceDependencyByClass
ResUtilEnumResources
ResUtilGetResourceDependencyByName
ResUtilGetAllProperties
ResUtilGetSzValue
ResUtilSetResourceServiceStartParameters

user32

DialogBoxParamW
SendMessageW

kernel32

GetProcAddress
CreateDirectoryA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adcd4f241f80fb9dcb0a174d784bc0bb

Headers

File Characteristics

Imports

clusapi

resutils

user32

kernel32

Sections

.text Size: 30KB - Virtual size: 30KB

.data Size: 12KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 3KB

.bss Size: 1KB - Virtual size: 3KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 30KB - Virtual size: 30KB

.data
Size: 12KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 3KB

.bss
Size: 1KB - Virtual size: 3KB

.rsrc
Size: 12KB - Virtual size: 12KB