dadf39046b3109528c9e6c44a309f18019aa002e715b1d04be89043968fafd8d

Sharing

Copy URL Twitter E-mail

General

Target

dadf39046b3109528c9e6c44a309f18019aa002e715b1d04be89043968fafd8d
Size

1.1MB
MD5

0519d0f6b710d664de4e782903fb1640
SHA1

db426bf2d924882af7edc1b9d3fc0f7fabe8e235
SHA256

dadf39046b3109528c9e6c44a309f18019aa002e715b1d04be89043968fafd8d
SHA512

f79bd44c13bf3e64859e84c48ef0d449c87de58dfe4bc44f005f778f0c108df171e1fc46a196c5524ab12cfd62a24d6a15fbb6e1ba8d318a2a0868fe7e343556
SSDEEP

24576:IuaD/3OY5CogQBKcrkZ7yuuX9So8kaKYoH3G:HO35rBdr6Xw9lHaZo2

Score

N/A

Malware Config

Signatures

Files

dadf39046b3109528c9e6c44a309f18019aa002e715b1d04be89043968fafd8d
.exe windows x86

65684dd0e944ad79e908b4dd2037354f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

clusapi

ClusterResourceTypeOpenEnum
ClusterRegQueryInfoKey
ClusterRegGetKeySecurity
GetClusterNetworkId
GetClusterKey
AddClusterResourceNode
EvictClusterNode
CreateClusterResource
ClusterGetEnumCount
ClusterRegCreateKey
GetClusterNetworkState
GetClusterNetInterfaceState
GetClusterResourceNetworkName
ClusterNetworkGetEnumCount
AddClusterResourceDependency
ClusterResourceTypeCloseEnum
GetClusterNodeKey
ClusterRegEnumKey
ClusterNetworkCloseEnum
ClusterResourceCloseEnum
ClusterNodeOpenEnum
ClusterResourceControl
GetClusterNetInterfaceKey
GetClusterQuorumResource
ClusterNetworkEnum
GetClusterFromGroup
ClusterRegQueryValue
ClusterRegDeleteValue
DeleteClusterResource
CreateClusterResourceType
ClusterRegCloseKey
ClusterGroupCloseEnum
ClusterRegDeleteKey
GetClusterGroupKey
GetClusterFromNetwork
ClusterResourceTypeEnum
CloseClusterResource
CloseClusterNetInterface
ClusterResourceTypeGetEnumCount
GetClusterResourceKey
ClusterResourceTypeControl
FailClusterResource
GetClusterFromNetInterface
ChangeClusterResourceGroup
GetClusterNetworkKey
ClusterResourceEnum
ClusterRegEnumValue
CloseClusterNode
ClusterNetworkOpenEnum
CloseClusterNotifyPort
ClusterCloseEnum
ClusterGroupEnum
ClusterNodeCloseEnum
GetClusterGroupState
GetClusterNodeId
ClusterNetworkControl
GetClusterFromResource
ClusterGroupGetEnumCount
ClusterOpenEnum
ClusterGroupOpenEnum
ClusterNodeControl
ClusterEnum
ClusterRegSetKeySecurity
CreateClusterNotifyPort
GetClusterNodeState
GetClusterNetInterface
GetClusterInformation
ClusterResourceGetEnumCount
ClusterRegOpenKey
GetClusterFromNode
ClusterControl
CanResourceBeDependent
CloseCluster
ClusterNodeEnum
ClusterRegSetValue
ClusterNodeGetEnumCount
GetClusterNotify
CloseClusterNetwork
DeleteClusterResourceType
ClusterGroupControl
ClusterResourceOpenEnum
BackupClusterDatabase
DeleteClusterGroup
ClusterNetInterfaceControl
CreateClusterGroup
EvictClusterNodeEx
CloseClusterGroup

kernel32

SetTapeParameters
VirtualProtect
GetLastError
HeapFree
HeapAlloc
HeapReAlloc
GetVersionExA
GetProcessHeap
GetStartupInfoW
RaiseException
RtlUnwind
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetModuleFileNameW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSection
Sleep
LoadLibraryA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize

Sections

.text
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024KB - Virtual size: 98.1MB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65684dd0e944ad79e908b4dd2037354f

Headers

File Characteristics

Imports

clusapi

kernel32

Sections

.text Size: 72KB - Virtual size: 68KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 20KB - Virtual size: 61KB

.rsrc Size: 1024KB - Virtual size: 98.1MB

.text
Size: 72KB - Virtual size: 68KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 20KB - Virtual size: 61KB

.rsrc
Size: 1024KB - Virtual size: 98.1MB