06682a2604304793d82cdec2b188e669

Sharing

Copy URL Twitter E-mail

General

Target

06682a2604304793d82cdec2b188e669
Size

76KB
MD5

06682a2604304793d82cdec2b188e669
SHA1

c2997bd6b8b8f1d88658620f2b930f92a1a6c96b
SHA256

d3a065542ace6df3bb280e5c489d814655cfb167c551ee11ad00de959d7afe82
SHA512

d805d60cabac46a6be48ba24ed0067c162fffc7744eaf6f7f31e336f1113bd7eb56da530c317843c54e1f91ac7a2e7a5c779f2953307a280931149dbedcd07a7
SSDEEP

1536:gUBCqKwPBiXtHe7gVMsqgZWGTp74J7qfPq5W7H0/:gAPBa+7sMsqgLTWKPqO0/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06682a2604304793d82cdec2b188e669

Files

06682a2604304793d82cdec2b188e669
.exe windows:4 windows x86 arch:x86

3fe939ac011f5937ed15f5bffae19b43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

libstkutil

??0SU_LogMessageVar@@QAE@PBD@Z
?sLogMessage@@YAXPBDH0HHVSU_LogMessageVar@@@Z
sIsBlank
?sLogMessage@@YAXPBDH0HH@Z

libstkmeta

?Create@SU_Data@@QAEHPAXPAUsENTITY_struct@@@Z
?CreateBackup@SU_Data@@UAEHXZ
?Validate@SU_Data@@UAEHPAUErrorMessageList@@@Z
?Validate@SU_Data@@UAEHXZ
?Fill@SU_Data@@UAEHXZ
?Init@SU_Data@@UAEHW4sINITTYPE@@@Z
?calcPropSize@SU_Data@@UAEHXZ
?getPropertyList@SU_Data@@UAEPAVsProperty@@XZ
?clone@SU_Data@@UAEPAV1@XZ
?updateAllViews@SU_Object@@UAEXPAVSU_View@@HPAX@Z
?getAddress@SU_Data@@UAEPAXPAD@Z
?getAddress@SU_Data@@UAEPAXH@Z
?GetRuntimeClass@SU_Data@@UBEPAUSU_RuntimeClass@@XZ
?GetModel@SU_View@@QBEPAVSU_Object@@XZ
?GetData@SU_Data@@QAEPAXXZ
??1SU_Data@@UAE@XZ
??0SU_Data@@QAE@XZ
sGetEntityByName
?CreateAuditLog@SU_Data@@QAEHXZ
?ResetDerived@SU_Data@@UAEXXZ

libstksal

??1sCmdParser@@QAE@XZ
?DumpHelpMessage@sCmdParser@@QBEFXZ
?GetArgFromCmd@sCmdParser@@QAEFPBDPAPBD@Z
?GetArgFromCmd@sCmdParser@@QAEFPBD@Z
?DefineValidArg@sCmdParser@@QAEFPBD0@Z
?DefineValidArg@sCmdParser@@QAEFPBD000@Z
??0sCmdParser@@QAE@HPAPADW4sYORN@@@Z

kernel32

GetModuleHandleA
AllocConsole
GetStdHandle

tls71012d

??1RWCString@@QAE@XZ
??0RWCString@@QAE@PBD@Z
??8RWCString@@QBE_NABV0@@Z
?hash@RWCString@@SAIABV1@@Z

libsdisp

??0SU_EntityListWindow@@QAE@XZ
??1SU_EntityListWindow@@UAE@XZ
?CreateEntityList@SU_EntityListWindow@@QAEHPAVSU_SubScreen@@PAUsENTITY_struct@@PAD22W4sDATA_EDIT_TYPE@@W4sWINDOW_TYPE@@@Z
?Read@SU_EntSubScreen@@UAEHXZ
?Init@SU_EntityListWindow@@QAEXXZ
?SetModal@SU_SubScreen@@QAEXXZ
?AddSubWindow@SU_SubScreen@@QAEXPAV1@@Z
?Load@SU_EntityListWindow@@QAEXPADH@Z
?ClearData@SU_EntityListWindow@@QAEHXZ
?UpdateView@SU_EntityListWindow@@UAEXPAVSU_View@@HPAX@Z
?Show@SU_EntityListWindow@@UAEHXZ
?Create@SU_SubScreen@@UAEHPADPAV1@P6AXPAX@ZPAVSU_Data@@0W4sDATA_EDIT_TYPE@@W4sWINDOW_TYPE@@@Z
?Clone@SU_SubScreen@@UAEPAV1@PAV1@PAVSU_Data@@W4sWINDOW_TYPE@@@Z
?SetViewOnly@SU_SubScreen@@UAEXXZ
?createDataPopup@SU_EntityListWindow@@UAEPAVSU_EditSubScreen@@PAVSU_Data@@PAD@Z
?CreateButtons@SU_EntityListWindow@@MAEXXZ
?CreateSpr@SU_EntityListWindow@@MAEXXZ
?cancel_action@SU_EntityListWindow@@MAEHXZ
?GetID@SU_SubScreen@@QAEPADXZ
?CreateAction@SU_SubScreen@@QAEHPAVSU_Core@@PBD1P82@AEHXZW4sYORN@@@Z
?CreateAction@SU_SubScreen@@QAEHPAVSU_Core@@PBD1P82@AEH1PAX@ZW4sYORN@@@Z
?GetBackGroundColor@SU_SubScreen@@UAEJXZ
?CreateEntityScreen@SU_EntityScreen@@QAEHPAVSU_SubScreen@@PAVSU_Data@@W4sWINDOW_TYPE@@PAD3HW4sDATA_EDIT_TYPE@@@Z
?SaveUnderivedData@SU_SubScreen@@QAEXXZ
?LocationChanged@SU_SubScreen@@UAEXXZ
??0SU_EntityScreen@@QAE@XZ
??1SU_EntityScreen@@UAE@XZ
?UpdateView@SU_EntSubScreen@@UAEXPAVSU_View@@HPAX@Z
?Hide@SU_SubScreen@@UAEHXZ
?Show@SU_SubScreen@@UAEHXZ
?Create@SU_EntSubScreen@@UAEHPADPAVSU_SubScreen@@P6AXPAX@ZPAVSU_Data@@0W4sDATA_EDIT_TYPE@@W4sWINDOW_TYPE@@@Z
?SetCurrentControl@SU_SubScreen@@UAEXXZ
?UpdateDisplay@SU_SubScreen@@UAEXXZ
?ResetFields@SU_SubScreen@@UAEXXZ
?ShowDerived@SU_SubScreen@@UAEXH@Z
?RepaintDepFields@SU_SubScreen@@UAEXXZ
?Resize@SU_SubScreen@@UAEXVsDimension@@@Z
?WM_Close@SU_SubScreen@@UAEHXZ
?DeleteWindow@SU_SubScreen@@UAEXXZ
?SetTitle@SU_SubScreen@@UAEXPAD@Z
?New@SU_EntSubScreen@@UAEXXZ
?GetForeGroundColor@SU_SubScreen@@UAEJXZ
?GetPosition@SU_SubScreen@@UAE?AVsPosition@@XZ
?GetSize@SU_SubScreen@@UAE?AVsDimension@@XZ
?SetBackGroundColor@SU_SubScreen@@UAEXW4sCOLOR_TYPE@@@Z
?SetBackGroundColor@SU_SubScreen@@UAEXJ@Z
?SetForeGroundColor@SU_SubScreen@@UAEXW4sCOLOR_TYPE@@@Z
?SetForeGroundColor@SU_SubScreen@@UAEXJ@Z
?SetFont@SU_SubScreen@@UAEXW4sFONT_TYPE_enum@@@Z
?SetPosition@SU_SubScreen@@UAEXAAVsPosition@@@Z
?SetSize@SU_SubScreen@@UAEXAAVsDimension@@@Z
?GetMaxCtrlPosition@SU_SubScreen@@UAE?AVsPosition@@XZ
?SetHelpFileName@SU_SubScreen@@UAEXPAD@Z
?SetHelpEnable@SU_SubScreen@@UAEXH@Z
?SetViewOnly@SU_EntityScreen@@UAEXXZ
?ReadAttributes@SU_SubScreen@@UAEXPAVSU_Data@@@Z
?SetAttributes@SU_SubScreen@@UAEXPAVSU_Data@@@Z
?SaveProperties@SU_SubScreen@@UAEXPAVResourceFileLookup@@@Z
?ShowProperties@SU_SubScreen@@UAEXXZ
?OnSelected@SU_SubScreen@@UAEXJ@Z
?OnIPCToken@SU_SubScreen@@UAEHPAVSU_IpcToken@@@Z
?OnBuzz@SU_SubScreen@@UAEXXZ
?DLUToPixel@SU_SubScreen@@UAEXPAH000@Z
?PixelToDLU@SU_SubScreen@@UAEXPAH000@Z
?SetScreenFromConfig@SU_SubScreen@@UAEHXZ
?SetConfigFromScreen@SU_SubScreen@@UAEHXZ
?SetConfigOptions@SU_SubScreen@@UAEHPAVSU_EditSubScreen@@@Z
?ApplyConfigOptions@SU_SubScreen@@UAEHPAVSU_EditSubScreen@@@Z
?CancelConfigOptions@SU_SubScreen@@UAEHPAVSU_EditSubScreen@@@Z
?OnSize@SU_SubScreen@@UAEXHH@Z
?Validate@SU_EntSubScreen@@UAEHH@Z
?Derive@SU_EntSubScreen@@UAEHH@Z
?CreateWin@SU_EntSubScreen@@UAEXXZ
?SetData@SU_EntSubScreen@@UAEXPAVSU_Data@@@Z
?ShowSaveAs@SU_EntSubScreen@@UAEHXZ
?ShowLoad@SU_EntSubScreen@@UAEXXZ
?ShowSave@SU_EntSubScreen@@UAEXH@Z
?Delete@SU_EntSubScreen@@UAEHXZ
?Save@SU_EntSubScreen@@UAEHXZ
?SaveEntity@SU_EntSubScreen@@UAEHXZ
?AllKeyFieldsBlank@SU_EntSubScreen@@UAEHXZ
??0SU_Application@@QAE@XZ
?SetGuiConfigurable@SU_Application@@QAEXH@Z
?Create@SU_Application@@QAEHPADHPAPADH@Z
?MainLoop@SU_Application@@QAEXXZ
?GetResFileName@SU_SubScreen@@QAEPADXZ

msvcr71

_cexit
_controlfp
_onexit
__dllonexit
??1type_info@@UAE@XZ
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_amsg_exit
__p___initenv
_XcptFilter
_exit
_c_exit
??0exception@@QAE@XZ
??1exception@@UAE@XZ
sprintf
getenv
_open_osfhandle
_fdopen
_iob
setvbuf
??2@YAPAXI@Z
exit
??3@YAXPAX@Z
_CxxThrowException
??0bad_cast@@QAE@PBD@Z
??1bad_cast@@UAE@XZ
??0bad_cast@@QAE@ABV0@@Z
??0exception@@QAE@ABV0@@Z
__CxxFrameHandler
?terminate@@YAXXZ

msvcp71

?tie@?$basic_ios@GU?$char_traits@G@std@@@std@@QBEPAV?$basic_ostream@GU?$char_traits@G@std@@@2@XZ
?flush@?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV12@XZ
?fill@?$basic_ios@GU?$char_traits@G@std@@@std@@QBEGXZ
?sputc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEGG@Z
??A?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEABGI@Z
?to_int_type@?$char_traits@G@std@@SAGABG@Z
?sbumpc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEGXZ
?size@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIXZ
?widen@?$basic_ios@GU?$char_traits@G@std@@@std@@QBEGD@Z
?id@?$ctype@G@std@@2V0locale@2@A
?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@@Z
?_Lock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEXXZ
?_Unlock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEXXZ
?_Ipfx@?$basic_istream@GU?$char_traits@G@std@@@std@@QAE_N_N@Z
?_Osfx@?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ
?erase@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@II@Z
?max_size@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIXZ
?rdbuf@?$basic_ios@GU?$char_traits@G@std@@@std@@QBEPAV?$basic_streambuf@GU?$char_traits@G@std@@@2@XZ
?sgetc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEGXZ
?snextc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEGXZ
?eof@?$char_traits@G@std@@SAGXZ
?eq_int_type@?$char_traits@G@std@@SA_NABG0@Z
?to_char_type@?$char_traits@G@std@@SAGABG@Z
?is@?$ctype@G@std@@QBE_NFG@Z
?append@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@IG@Z
?setstate@?$basic_ios@GU?$char_traits@G@std@@@std@@QAEXH_N@Z
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?good@ios_base@std@@QBE_NXZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
?npos@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@2IB
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?flags@ios_base@std@@QBEHXZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
??0_Lockit@std@@QAE@H@Z
?id@?$ctype@D@std@@2V0locale@2@A
??Bid@locale@std@@QAEIXZ
?_Getfacet@locale@std@@QBEPBVfacet@12@I@Z
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@@Z
?_Incref@facet@locale@std@@QAEXXZ
?_Register@facet@locale@std@@QAEXXZ
??1_Lockit@std@@QAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
??1locale@std@@QAE@XZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?width@ios_base@std@@QBEHXZ
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?eof@?$char_traits@D@std@@SAHXZ
?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z
?to_char_type@?$char_traits@D@std@@SADABH@Z
?is@?$ctype@D@std@@QBE_NFD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?width@ios_base@std@@QAEHH@Z
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@G@Z
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?to_int_type@?$char_traits@D@std@@SAHABD@Z

Exports

Exports

??4SU_Interpolator@@QAEAAV0@ABV0@@Z
??4sSecCashMvts@@QAEAAV0@ABV0@@Z

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ucww
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3fe939ac011f5937ed15f5bffae19b43

Headers

File Characteristics

Imports

libstkutil

libstkmeta

libstksal

kernel32

tls71012d

libsdisp

msvcr71

msvcp71

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 25KB

.data Size: 20KB - Virtual size: 18KB

.rsrc Size: 4KB - Virtual size: 784B

.ucww Size: 20KB - Virtual size: 20KB

.text
Size: 28KB - Virtual size: 25KB

.data
Size: 20KB - Virtual size: 18KB

.rsrc
Size: 4KB - Virtual size: 784B

.ucww
Size: 20KB - Virtual size: 20KB