df3bf0eb5ecd260ee4e743259b482aa632249b4f051099d8559a7d499db10f8a

General

Target

df3bf0eb5ecd260ee4e743259b482aa632249b4f051099d8559a7d499db10f8a
Size

408KB
MD5

6dc77653c93795d3b59f0a02bc4eae25
SHA1

0677af08127815897093f0f731ef106ed398706f
SHA256

df3bf0eb5ecd260ee4e743259b482aa632249b4f051099d8559a7d499db10f8a
SHA512

da05ee073beed365e85c848bcba7d8bff970cddbb0af358c74ef3ad7af5624e61142c87cfa5d181a2e4b4f4ecdbca62c03564f87af333b3b3491f8b86932355d
SSDEEP

6144:9xczgl8pUVUi3IiA0PCc+rxtcfA3yyTJABZ+RRUQFJK7odAIol+L3s1fp4VPi4Va:csCpHAgmf6yyVdRRUAIq8+MfC7+u2

Score

N/A

Malware Config

Signatures

Files

df3bf0eb5ecd260ee4e743259b482aa632249b4f051099d8559a7d499db10f8a
.exe windows x86

a86734f6b094da7b19aaef4a66d31633

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
RtlZeroMemory
GetCommMask
DeleteFileA
FlushConsoleInputBuffer
GetConsoleFontSize
SetupComm
lstrcmpiW
LoadLibraryA
HeapWalk
GetConsoleCommandHistoryLengthA
GetEnvironmentStringsW
GetSystemTimeAsFileTime

msdart

?_IsLocked@CSpinLock@@ABE_NXZ
?TryReadLock@CCritSec@@QAE_NXZ
?sm_lpOSVERSIONINFO@CMdVersionInfo@@0PAU_OSVERSIONINFOW@@A
??4CSpinLock@@QAEAAV0@ABV0@@Z
?_WriteLockSpin@CReaderWriterLock@@AAEXXZ
?ReadUnlock@CReaderWriterLock2@@QAEXXZ
?IsWriteLocked@CReaderWriterLock@@QBE_NXZ
?IsReadUnlocked@CLKRHashTable@@QBE_NXZ
?IsReadUnlocked@CLKRLinearHashTable@@QBE_NXZ
?_TryLock@CSmallSpinLock@@AAE_NXZ
?GetDefaultSpinAdjustmentFactor@CReaderWriterLock@@SGNXZ
?ReadLock@CReaderWriterLock@@QAEXXZ

clusapi

GetClusterNetInterface
CreateClusterGroup
GetClusterResourceNetworkName
GetClusterNetInterfaceState
GetClusterInformation
OpenCluster
CanResourceBeDependent
ClusterNetworkControl
ClusterRegQueryInfoKey
GetClusterNetInterfaceKey

batmeter

PowerCapabilities

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a86734f6b094da7b19aaef4a66d31633

Headers

File Characteristics

Imports

kernel32

msdart

clusapi

batmeter

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 125KB - Virtual size: 124KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 101KB - Virtual size: 100KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 125KB - Virtual size: 124KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 101KB - Virtual size: 100KB