a245ab6d156e8403c3c06c71df519184762faaac0a31e960cb930c53abe7e619

Sharing

Copy URL Twitter E-mail

General

Target

a245ab6d156e8403c3c06c71df519184762faaac0a31e960cb930c53abe7e619
Size

24KB
MD5

a9a853d3bbb18702d21559a5ef17e10c
SHA1

b5c9ce8024480bbb059c27d35ffc1e9aede7e54b
SHA256

a245ab6d156e8403c3c06c71df519184762faaac0a31e960cb930c53abe7e619
SHA512

932749f587d776b16976fb9366e8c6fa679e01673c8c68c379f9ec964308e75a87c00d9195ac048d8a35eaf1d5466edac05e0c54668030895fef4c63a41d121d
SSDEEP

384:jiqpi0O+FXFopHD4w/VZcXZ/lbkU9viSSoobpSQzURK:jDJyVeXZ/viS5dQ

Score

N/A

Malware Config

Signatures

Files

a245ab6d156e8403c3c06c71df519184762faaac0a31e960cb930c53abe7e619
.exe windows x86

6a570cd60dd7ef1e6d88693bea72be23

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

pr0base

?GetSettings@CATDbImpConnection@@SAPAVCATDbSettings@@XZ

js0group

?SetImpl@CATBaseUnknown@@UAGPAV1@PAV1@@Z
?GetImpl@CATBaseUnknown@@UBGPAV1@H@Z
?QueryInterface@CATBaseUnknown@@UBEPAV1@PBD@Z
?Invoke@CATBaseUnknown@@UAGJJABU_GUID@@KGPAUtagDISPPARAMS@@PAUtagVARIANT@@PAUtagEXCEPINFO@@PAI@Z
?GetIDsOfNames@CATBaseUnknown@@UAGJABU_GUID@@PAPAGIKPAJ@Z
?GetTypeInfo@CATBaseUnknown@@UAGJIKPAPAUITypeInfo@@@Z
?GetTypeInfoCount@CATBaseUnknown@@UAGJPAI@Z
?Release@CATBaseUnknown@@UAGKXZ
?AddRef@CATBaseUnknown@@UAGKXZ
?QueryInterface@CATBaseUnknown@@UAGJABU_GUID@@PAPAX@Z
??3CATBaseUnknown@@SAXPAX@Z
??1CATUnicodeString@@QAE@XZ
?SaveRepository@CATSettingRepository@@QAEJPBD@Z
?WriteSetting@CATSettingRepository@@QAEJPBDPAVCATBaseUnknown@@H@Z
??0CATSettingRepository@@QAE@PBDHW4AccessType@0@PAVCATISysSettingController@@@Z
?Append@CATRawCollPV@@QAEHPAX@Z
??4CATUnicodeString@@QAEAAV0@PBD@Z
??2CATBaseUnknown@@SAPAXI@Z
??0CATUnicodeString@@QAE@XZ
?RemoveAll@CATRawCollPV@@QAEXW4MemoryHandling@CATCollec@@@Z
??1CATSettingRepository@@UAE@XZ
??ACATRawCollPV@@QAEAAPAXH@Z
?CastToCharPtr@CATUnicodeString@@QBEPBDXZ
??4CATUnicodeString@@QAEAAV0@ABV0@@Z
?ReadSetting@CATSettingRepository@@QAEJPBDPAVCATBaseUnknown@@@Z
?IsNull@CATBaseUnknown@@UBEHXZ
?IsEqual@CATBaseUnknown@@UBEHPBV1@@Z
?ChangeComponentState@CATBaseUnknown@@UAEJW4ComponentState@1@0PBVCATSysChangeComponentStateContext@@@Z
?GetMetaObject@CATSettingRepository@@UBGPAVCATMetaClass@@XZ
?IsA@CATSettingRepository@@UBEPBDXZ
?IsAKindOf@CATSettingRepository@@UBEHPBD@Z
?AddCallback@CATEventSubscriber@@UAEJPAVCATBaseUnknown@@PBDP82@AEX1PAXPAVCATNotification@@2J@Z2@Z
?RemoveCallback@CATEventSubscriber@@UAEXPAVCATBaseUnknown@@J@Z
?RemoveCallbacksOn@CATEventSubscriber@@UAEXPAVCATBaseUnknown@@PBDPAX@Z
?RemoveSubscriberCallbacks@CATEventSubscriber@@UAEXPAVCATBaseUnknown@@@Z
?GetCallbackManager@CATSettingRepository@@MAEPAVCATCallbackManager@@XZ
?AddSubscription@CATEventSubscriber@@UAEJPAVCATBaseUnknown@@PBDP82@AEX1PAXPAVCATNotification@@2J@ZABU_GUID@@2@Z
?AddSubscription@CATEventSubscriber@@UAEJPAVCATBaseUnknown@@PBDP82@AEX1PAXPAVCATNotification@@2J@ZPAD2@Z
?RemoveSubscriptionsOn@CATEventSubscriber@@UAEXPAVCATBaseUnknown@@PBDABU_GUID@@PAX@Z
?RemoveInterfaceSubscriptions@CATEventSubscriber@@UAEXPAVCATBaseUnknown@@ABU_GUID@@@Z
?RemoveSubscriptionsOn@CATEventSubscriber@@UAEXPAVCATBaseUnknown@@PBDPADPAX@Z
?RemoveInterfaceSubscriptions@CATEventSubscriber@@UAEXPAVCATBaseUnknown@@PAD@Z

catsysdbsettings

?GetAuthenticationType@CATDbServer@@QBE?AW4Authent@1@XZ
?GetName@CATDbServer@@QBEABVCATUnicodeString@@XZ
?GetConnectionString@CATDbServer@@QBEABVCATUnicodeString@@XZ
?GetDatabaseVendor@CATDbServer@@QBE?AW4CATDbDatabaseVendor@1@XZ
?GetSingleUser@CATDbServer@@QBEABVCATUnicodeString@@XZ
?GetSinglePass@CATDbServer@@QBEABVCATUnicodeString@@XZ
??1CATDbServer@@UAE@XZ
?GetListOfServer@CATDbSettings@@QBEPAVCATListPtrCATDbServer@@XZ
??0CATDbServer@@QAE@XZ
?SetName@CATDbServer@@QAEXABVCATUnicodeString@@@Z
?SetConnectionString@CATDbServer@@QAEXABVCATUnicodeString@@@Z
?SetDatabaseVendor@CATDbServer@@QAEXW4CATDbDatabaseVendor@1@@Z
?SetAuthenticationType@CATDbServer@@QAEXW4Authent@1@@Z
?SetSingleUser@CATDbServer@@QAEXABVCATUnicodeString@@@Z
?SetSinglePass@CATDbServer@@QAEXABVCATUnicodeString@@@Z
?GetMetaObject@CATDbServer@@UBGPAVCATMetaClass@@XZ
?IsA@CATDbServer@@UBEPBDXZ
?IsAKindOf@CATDbServer@@UBEHPBD@Z

kernel32

GetModuleHandleA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
GetFileAttributesA

mfc70u

ord703
ord705

msvcr70

_amsg_exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p___initenv
__p__fmode
__set_app_type
?terminate@@YAXXZ
__dllonexit
_onexit
_controlfp
_except_handler3
exit
_cexit
_XcptFilter
_exit
_c_exit
sprintf
malloc
strncmp
strncpy
realloc
free
__CxxFrameHandler
__p__commode
_strdup

msvci70

??0fstream@@QAE@XZ
?openprot@filebuf@@2HB
?open@fstream@@QAEXPBDHH@Z
?close@fstream@@QAEXXZ
??1fstream@@UAE@XZ
??1ios@@UAE@XZ
??_Dfstream@@QAEXXZ
?cout@@3Vostream_withassign@@A
?cerr@@3Vostream_withassign@@A
??6ostream@@QAEAAV0@PBD@Z
?endl@@YAAAVostream@@AAV1@@Z
??6ostream@@QAEAAV0@P6AAAV0@AAV0@@Z@Z
?read@istream@@QAEAAV1@PADH@Z

oleaut32

SysFreeString

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6a570cd60dd7ef1e6d88693bea72be23

Headers

File Characteristics

Imports

pr0base

js0group

catsysdbsettings

kernel32

mfc70u

msvcr70

msvci70

oleaut32

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 1024B - Virtual size: 604B

.rsrc Size: 1024B - Virtual size: 904B

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 1024B - Virtual size: 604B

.rsrc
Size: 1024B - Virtual size: 904B

.reloc
Size: 5KB - Virtual size: 4KB