38901dc3b814c14fee56eaadb7019b9dc116e983ce958bc0f8fd338bc5f493fb

General

Target

38901dc3b814c14fee56eaadb7019b9dc116e983ce958bc0f8fd338bc5f493fb
Size

408KB
MD5

1fdfad2002af5c1a7d2b62dc6643da35
SHA1

781e11498c9fbe8011f6e001be9e096474420316
SHA256

38901dc3b814c14fee56eaadb7019b9dc116e983ce958bc0f8fd338bc5f493fb
SHA512

35bc2cd79285abd1e0aeefe0df61a3e32986cff1065c55cc24465652f2d6ce7c89d6f571ef0307a4fd47ebe0dfe80b38413db5fd03cb5321af2e27f2640feb35
SSDEEP

6144:9xczgl8pUVUi3IiA0PCc+rxtcfA3yyTJABZ+RRUQFJK7odAIol+L3s1fp4VPi4Vz:csCpHAgmf6yyVdRRUAIq8+MfC7+un

Score

N/A

Malware Config

Signatures

Files

38901dc3b814c14fee56eaadb7019b9dc116e983ce958bc0f8fd338bc5f493fb
.exe windows x86

a86734f6b094da7b19aaef4a66d31633

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
RtlZeroMemory
GetCommMask
DeleteFileA
FlushConsoleInputBuffer
GetConsoleFontSize
SetupComm
lstrcmpiW
LoadLibraryA
HeapWalk
GetConsoleCommandHistoryLengthA
GetEnvironmentStringsW
GetSystemTimeAsFileTime

msdart

?_IsLocked@CSpinLock@@ABE_NXZ
?TryReadLock@CCritSec@@QAE_NXZ
?sm_lpOSVERSIONINFO@CMdVersionInfo@@0PAU_OSVERSIONINFOW@@A
??4CSpinLock@@QAEAAV0@ABV0@@Z
?_WriteLockSpin@CReaderWriterLock@@AAEXXZ
?ReadUnlock@CReaderWriterLock2@@QAEXXZ
?IsWriteLocked@CReaderWriterLock@@QBE_NXZ
?IsReadUnlocked@CLKRHashTable@@QBE_NXZ
?IsReadUnlocked@CLKRLinearHashTable@@QBE_NXZ
?_TryLock@CSmallSpinLock@@AAE_NXZ
?GetDefaultSpinAdjustmentFactor@CReaderWriterLock@@SGNXZ
?ReadLock@CReaderWriterLock@@QAEXXZ

clusapi

GetClusterNetInterface
CreateClusterGroup
GetClusterResourceNetworkName
GetClusterNetInterfaceState
GetClusterInformation
OpenCluster
CanResourceBeDependent
ClusterNetworkControl
ClusterRegQueryInfoKey
GetClusterNetInterfaceKey

batmeter

PowerCapabilities

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a86734f6b094da7b19aaef4a66d31633

Headers

File Characteristics

Imports

kernel32

msdart

clusapi

batmeter

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 125KB - Virtual size: 124KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 101KB - Virtual size: 100KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 125KB - Virtual size: 124KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 101KB - Virtual size: 100KB