ad52075e149879e6be96d3761c1a58a60f4e6071da3e4c52c039ab6d1c5bd494

Sharing

Copy URL Twitter E-mail

General

Target

ad52075e149879e6be96d3761c1a58a60f4e6071da3e4c52c039ab6d1c5bd494
Size

2.8MB
MD5

45a28156d9b882717d90860f35ee848f
SHA1

32a8ce41913c43ea2e399d2c4acda694dae5cb61
SHA256

ad52075e149879e6be96d3761c1a58a60f4e6071da3e4c52c039ab6d1c5bd494
SHA512

2c4b2b8b0bba8d6bbd01f2de5e5266f4182ff271758577ddfcc1b8371ed499b5318b6224299db05ff1ba5553618c7612a9463239802c6dd2cd113fac02e79d32
SSDEEP

6144:y7TFV4tbLI8VpyVpAaZAdWki3LhSCo/OZjco6/dH/wsgkcYg:yI5nIxSdj/wsgkcYg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad52075e149879e6be96d3761c1a58a60f4e6071da3e4c52c039ab6d1c5bd494

Files

ad52075e149879e6be96d3761c1a58a60f4e6071da3e4c52c039ab6d1c5bd494
.dll windows:5 windows x86 arch:x86

125ccbaa39aa876851d77eb136e53425

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\01_code\productlinetools20231113\productlinetools\00_TPSTester_Release - 副本\Release\Objects\MTKLibCalFtObj00.pdb

Imports

virtualobject

?ExecFunc@CVirtualObject@@UAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@0AAV23@@Z
??0CVirtualObject@@QAE@V?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@0@Z
??1CVirtualObject@@UAE@XZ

mfc100

ord3167
ord9475
ord4345
ord5777
ord8222
ord2742
ord3738
ord5784
ord8224
ord2744
ord3741
ord7861
ord2613
ord3429
ord12433
ord7206
ord300
ord12865
ord3390
ord7211
ord968
ord12868
ord12344
ord1479
ord1313
ord13304
ord11882
ord12720
ord2061
ord5821
ord2626
ord5207
ord13045
ord305
ord5242
ord869
ord1267
ord1316
ord1483
ord4464
ord12962
ord4499
ord5175
ord6970
ord2611
ord4782
ord8465
ord12096
ord1929
ord266
ord4144
ord3404
ord13125
ord7487
ord7876
ord2050
ord408
ord1948
ord4785
ord6010
ord1317
ord13135
ord13137
ord13131
ord11513
ord1294
ord1854
ord3977
ord4498
ord11627
ord2067
ord2063
ord4267
ord13312
ord11781
ord2524
ord11277
ord10906
ord977
ord421
ord12095
ord11744
ord1012
ord5858
ord8228
ord3744
ord6694
ord11297
ord13329
ord4317
ord265
ord2818
ord5302
ord13310
ord2056
ord11274
ord7322
ord1004
ord457
ord5141
ord3426
ord12440
ord301
ord4143
ord5007
ord2777
ord6213
ord7892
ord7889
ord4554
ord12430
ord2770
ord2759
ord12170
ord12438
ord4341
ord7933
ord306
ord7581
ord4343
ord13219
ord3970
ord6678
ord3254
ord3253
ord11067
ord8137
ord10007
ord10360
ord3620
ord2974
ord2973
ord2752
ord5532
ord12531
ord2416
ord8235
ord11107
ord8305
ord381
ord946
ord915
ord919
ord6314
ord310
ord5444
ord895
ord5830
ord2184
ord316
ord4283
ord1448
ord1982
ord901
ord5837
ord5776
ord3488
ord8554
ord6836
ord3439
ord3755
ord2838
ord5534
ord12535
ord2881
ord2878
ord7349
ord2417
ord14059
ord14061
ord14060
ord14058
ord14062
ord14045
ord13972
ord13973
ord8231
ord11025
ord3395
ord10883
ord13294
ord8070
ord11154
ord6217
ord9994
ord8351
ord2847
ord12644
ord11190
ord11188
ord1496
ord1503
ord1509
ord1507
ord1514
ord4373
ord4410
ord4381
ord4393
ord4389
ord4385
ord4415
ord4406
ord4377
ord4419
ord4398
ord4364
ord4368
ord4401
ord3991
ord13980
ord3984
ord2661
ord13302
ord7074
ord13300
ord6128
ord10672
ord12482
ord5253
ord2338
ord11060
ord3484
ord2945
ord2944
ord2846
ord11103
ord4622
ord4903
ord5095
ord8439
ord4881
ord5123
ord4625
ord4774
ord4606
ord6897
ord6898
ord6888
ord4772
ord7357
ord9286
ord8304
ord6090
ord1263
ord1296
ord1709

msvcr100

_initterm
memset
strcpy
strcmp
strtol
sprintf
atoi
atof
strncpy
strlen
strrchr
strtok
_access
rename
_time64
_localtime64_s
_mkdir
fabs
sscanf
_CxxThrowException
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
ldiv
strtod
strtoul
_strdup
memcpy
memmove_s
ceil
_resetstkoflw
malloc
free
memcpy_s
_unlock
__dllonexit
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__CppXcptFilter
_amsg_exit
_initterm_e
__CxxFrameHandler3
_encoded_null
_malloc_crt
_except_handler4_common
?terminate@@YAXXZ
_onexit
_lock

kernel32

GetLastError
GetSystemTimeAsFileTime
GetCurrentProcessId
LoadLibraryExA
SetDllDirectoryA
GetProcAddress
GetModuleHandleA
FreeLibrary
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
lstrcpyA
GetModuleFileNameA
CopyFileA
TerminateThread
GetFileAttributesA
GetCurrentThreadId
GetPrivateProfileSectionA
Sleep
DeleteFileA
GetPrivateProfileSectionNamesA
lstrlenA
MultiByteToWideChar
EncodePointer
DecodePointer
InterlockedExchange
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
QueryPerformanceCounter
GetTickCount

user32

SendMessageA
GetMessageA
InvalidateRect
RedrawWindow
LockWindowUpdate
CopyRect
GetWindowLongA
SetWindowLongA
UpdateWindow
GetSysColor
TranslateMessage
DispatchMessageA
GetParent
GetCursorPos
ShowCursor
SetCursorPos
mouse_event
KillTimer
SetTimer
GetSystemMetrics
GetClientRect
GetWindowRect
GetTopWindow
GetWindow
EnableWindow

gdi32

CreateSolidBrush
CreateFontA

shell32

ShellExecuteA

shlwapi

PathFileExistsA

oleaut32

SysFreeString
VarDateFromStr
VarBstrFromDate

msvcp100

?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z

Exports

Exports

??0?$CFuncInfo@P8CMTKLibCalFtObj00@@AEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z@@QAE@V?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@000IP8CMTKLibCalFtObj00@@AEHV12@AAV12@@Z@Z
??0CMTKLibCalFtObj00@@QAE@V?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@0@Z
??1?$CFuncInfo@P8CMTKLibCalFtObj00@@AEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z@@UAE@XZ
??1CMTKLibCalFtObj00@@UAE@XZ
??4CBasic@@QAEAAV0@ABV0@@Z
??_7?$CFuncInfo@P8CMTKLibCalFtObj00@@AEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z@@6B@
??_7CMTKLibCalFtObj00@@6B@
?DEFAULT_COMMAND_TIMEOUT@CMTKLibCalFtObj00@@1HB
?GetObjectInfo@CGeneralObj00@@UAE?AV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@XZ
?GetObjectInfo@CMTKLibCalFtObj00@@UAE?AV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@XZ
?SetCableLoss@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@00@Z
?ViewObjectInfo@CGeneralObj00@@UAEXXZ
?ViewObjectInfo@CMTKLibCalFtObj00@@UAEXXZ
?_Check_CFTFile@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_DlgTest@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_Dlg_CFTConfig@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_Dlg_CablelossConfig@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_Dlg_RfSwitchConfig@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_Dlg_ShowErrorLog@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_GetBPMetaHandle@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_GetCFTCommonSetup@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_GetCalFtCSVFileName@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_GetCalFtResult@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_GetCalFt_DetailTxtLogFileName@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_GetCalFt_ErrorCode@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_GetControlParameter@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_GetInstrumentTester@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_GetInstrumentTester_Extra@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_Get_MtkCFG_CableLoss@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_Get_MultiATE_MtkCFG_CableLoss@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_METACalibrationLibrary_DeInit@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_METACalibrationLibrary_GetLastError@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_METACalibrationLibrary_Init@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_METACalibrationLibrary_Init_ForMultiThread@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_METACalibrationLibrary_Start@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_METACalibrationLibrary_Start_ForMultiThread@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_MultiATE_Enable_DPDCal@CMTKLibCalFtObj00@@AAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@HHAAV23@@Z
?_MultiATE_Enable_LTEDivCFT@CMTKLibCalFtObj00@@AAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@HAAV23@@Z
?_ReadATECustomer_SetupTxt@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_ReadMTK_SETUP_LTE_ini@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_ReadMultiATE_ini@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
?_ReadMultiATE_ini_extra@CMTKLibCalFtObj00@@QAEHV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAV23@@Z
CreateObject
GetObjectInfo

Sections

.text
Size: 271KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.4MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

125ccbaa39aa876851d77eb136e53425

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

virtualobject

mfc100

msvcr100

kernel32

user32

gdi32

shell32

shlwapi

oleaut32

msvcp100

Exports

Exports

Sections

.text Size: 271KB - Virtual size: 270KB

.rdata Size: 80KB - Virtual size: 79KB

.data Size: 2.4MB - Virtual size: 3.6MB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 36KB - Virtual size: 35KB

.text
Size: 271KB - Virtual size: 270KB

.rdata
Size: 80KB - Virtual size: 79KB

.data
Size: 2.4MB - Virtual size: 3.6MB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 36KB - Virtual size: 35KB