97e98a2f9babb64e495ebb57307084e644e004dad5058e19a748ca2b7cd43ad6

General

Target

97e98a2f9babb64e495ebb57307084e644e004dad5058e19a748ca2b7cd43ad6
Size

408KB
MD5

b1fc94cf3866fb181c965c5b6c97875b
SHA1

7c12808729ab17996787658f0f4ef6789e2569ac
SHA256

97e98a2f9babb64e495ebb57307084e644e004dad5058e19a748ca2b7cd43ad6
SHA512

037cff3918e5cb92715469b584ffdd5fcb0fc3bab6d9ba20f5056014353809f475ebf54d86321bba0e4dcf85e45f8a791b8ad215fb880d800838eff7302b476d
SSDEEP

6144:9xczgl8pUVUi3IiA0PCc+rxtcfA3yyTJABZ+RRUQFJK7odAIol+L3s1fp4VPi4VW:csCpHAgmf6yyVdRRUAIq8+MfC7+uq

Score

N/A

Malware Config

Signatures

Files

97e98a2f9babb64e495ebb57307084e644e004dad5058e19a748ca2b7cd43ad6
.exe windows x86

a86734f6b094da7b19aaef4a66d31633

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
RtlZeroMemory
GetCommMask
DeleteFileA
FlushConsoleInputBuffer
GetConsoleFontSize
SetupComm
lstrcmpiW
LoadLibraryA
HeapWalk
GetConsoleCommandHistoryLengthA
GetEnvironmentStringsW
GetSystemTimeAsFileTime

msdart

?_IsLocked@CSpinLock@@ABE_NXZ
?TryReadLock@CCritSec@@QAE_NXZ
?sm_lpOSVERSIONINFO@CMdVersionInfo@@0PAU_OSVERSIONINFOW@@A
??4CSpinLock@@QAEAAV0@ABV0@@Z
?_WriteLockSpin@CReaderWriterLock@@AAEXXZ
?ReadUnlock@CReaderWriterLock2@@QAEXXZ
?IsWriteLocked@CReaderWriterLock@@QBE_NXZ
?IsReadUnlocked@CLKRHashTable@@QBE_NXZ
?IsReadUnlocked@CLKRLinearHashTable@@QBE_NXZ
?_TryLock@CSmallSpinLock@@AAE_NXZ
?GetDefaultSpinAdjustmentFactor@CReaderWriterLock@@SGNXZ
?ReadLock@CReaderWriterLock@@QAEXXZ

clusapi

GetClusterNetInterface
CreateClusterGroup
GetClusterResourceNetworkName
GetClusterNetInterfaceState
GetClusterInformation
OpenCluster
CanResourceBeDependent
ClusterNetworkControl
ClusterRegQueryInfoKey
GetClusterNetInterfaceKey

batmeter

PowerCapabilities

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a86734f6b094da7b19aaef4a66d31633

Headers

File Characteristics

Imports

kernel32

msdart

clusapi

batmeter

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 125KB - Virtual size: 124KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 101KB - Virtual size: 100KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 125KB - Virtual size: 124KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 101KB - Virtual size: 100KB