38c53f666c204a09099d4171e4d5eb34b432ca0a39da756185bd53efd2116341

General

Target

38c53f666c204a09099d4171e4d5eb34b432ca0a39da756185bd53efd2116341
Size

408KB
MD5

fcd31204d22c089995b042aa55d0ba27
SHA1

042bf85c8187d1a01d57ebb8be0f68001e2376ff
SHA256

38c53f666c204a09099d4171e4d5eb34b432ca0a39da756185bd53efd2116341
SHA512

4d0368a9b87ad2586492f0e3a817843f1578b4371c435c3098dd2e14966adaf5f06c7773dcbddba53317dae35ff11a9cdccd21616901ca862f6097b8df311a27
SSDEEP

6144:9xczgl8pUVUi3IiA0PCc+rxtcfA3yyTJABZ+RRUQFJK7odAIol+L3s1fp4VPi4Vm:csCpHAgmf6yyVdRRUAIq8+MfC7+ui

Score

N/A

Malware Config

Signatures

Files

38c53f666c204a09099d4171e4d5eb34b432ca0a39da756185bd53efd2116341
.exe windows x86

a86734f6b094da7b19aaef4a66d31633

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
RtlZeroMemory
GetCommMask
DeleteFileA
FlushConsoleInputBuffer
GetConsoleFontSize
SetupComm
lstrcmpiW
LoadLibraryA
HeapWalk
GetConsoleCommandHistoryLengthA
GetEnvironmentStringsW
GetSystemTimeAsFileTime

msdart

?_IsLocked@CSpinLock@@ABE_NXZ
?TryReadLock@CCritSec@@QAE_NXZ
?sm_lpOSVERSIONINFO@CMdVersionInfo@@0PAU_OSVERSIONINFOW@@A
??4CSpinLock@@QAEAAV0@ABV0@@Z
?_WriteLockSpin@CReaderWriterLock@@AAEXXZ
?ReadUnlock@CReaderWriterLock2@@QAEXXZ
?IsWriteLocked@CReaderWriterLock@@QBE_NXZ
?IsReadUnlocked@CLKRHashTable@@QBE_NXZ
?IsReadUnlocked@CLKRLinearHashTable@@QBE_NXZ
?_TryLock@CSmallSpinLock@@AAE_NXZ
?GetDefaultSpinAdjustmentFactor@CReaderWriterLock@@SGNXZ
?ReadLock@CReaderWriterLock@@QAEXXZ

clusapi

GetClusterNetInterface
CreateClusterGroup
GetClusterResourceNetworkName
GetClusterNetInterfaceState
GetClusterInformation
OpenCluster
CanResourceBeDependent
ClusterNetworkControl
ClusterRegQueryInfoKey
GetClusterNetInterfaceKey

batmeter

PowerCapabilities

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a86734f6b094da7b19aaef4a66d31633

Headers

File Characteristics

Imports

kernel32

msdart

clusapi

batmeter

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 125KB - Virtual size: 124KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 101KB - Virtual size: 100KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 125KB - Virtual size: 124KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 101KB - Virtual size: 100KB