ece60db15fe88a4961e12415fed75d4d8672878da4cbd1c28b82651c8cd7b162

Sharing

Copy URL Twitter E-mail

General

Target

ece60db15fe88a4961e12415fed75d4d8672878da4cbd1c28b82651c8cd7b162
Size

90KB
MD5

c1838f7a7304fafb7da6131cebbf0061
SHA1

492e2faf4393dfbd078ed88a3e14f8e72715a45c
SHA256

ece60db15fe88a4961e12415fed75d4d8672878da4cbd1c28b82651c8cd7b162
SHA512

76b05b47c11e1c285fc01aff552194fdf7bfe813daa38266b58f57ac84427f23b8ace5fcff4e50e3c45f849a03bdd1a55cb7470727906422b628b20ffc53c310
SSDEEP

1536:MzNUgiJCVvt+O819ydg7zJ0SvUPdOAWIfUqz6tbzPu05PLuDNuwLR3LD:iNUgzt8nWg7zJRvUPdOAZR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ece60db15fe88a4961e12415fed75d4d8672878da4cbd1c28b82651c8cd7b162

Files

ece60db15fe88a4961e12415fed75d4d8672878da4cbd1c28b82651c8cd7b162
.dll windows:6 windows x64 arch:x64

4c15961e4e4b92baf02b60b1f8bb08da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\MatConvert\8.0.0.2\build_x64\Binaries\Release\MatSDK.Common.Logging.pdb

Imports

kernel32

OutputDebugStringW
TerminateThread
SetThreadPriority
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
EncodePointer

msvcp120

?uncaught_exception@std@@YA_NXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@I@Z
?put@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@_W@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAA_JPEB_W_J@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBA_WD@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAG_W@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAXAEBVlocale@2@@Z
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAHXZ
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAPEAV12@PEA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEB_W_J@Z
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEA_W_J@Z
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAGXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?_Throw_C_error@std@@YAXH@Z
_Mtx_init
_Mtx_lock
_Mtx_unlock
_Mtx_destroy
_Xtime_get_ticks
_Thrd_join
_Cnd_init
_Cnd_wait
_Cnd_broadcast
_Cnd_signal
_Cnd_destroy
?_Throw_Cpp_error@std@@YAXH@Z
xtime_get
_Xtime_diff_to_millis2
_Thrd_sleep
_Thrd_current
_Thrd_equal
?_Internal_throw_exception@_Concurrent_queue_base_v4@details@Concurrency@@IEBAXXZ
??0_Concurrent_queue_base_v4@details@Concurrency@@IEAA@_K@Z
??1_Concurrent_queue_base_v4@details@Concurrency@@MEAA@XZ
?_Internal_move_push@_Concurrent_queue_base_v4@details@Concurrency@@IEAAXPEAX@Z
?_Internal_pop_if_present@_Concurrent_queue_base_v4@details@Concurrency@@IEAA_NPEAX@Z
?_Internal_size@_Concurrent_queue_base_v4@details@Concurrency@@IEBA_KXZ
?_Internal_empty@_Concurrent_queue_base_v4@details@Concurrency@@IEBA_NXZ
?_Xbad_function_call@std@@YAXXZ
?_Internal_finish_clear@_Concurrent_queue_base_v4@details@Concurrency@@IEAAXXZ
?_Launch@_Pad@std@@QEAAXPEAU_Thrd_imp_t@@@Z
??1_Pad@std@@QEAA@XZ
?_Release@_Pad@std@@QEAAXXZ
??0_Pad@std@@QEAA@XZ
?_BADOFF@std@@3_JB
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPEBD@Z
?_Xout_of_range@std@@YAXPEBD@Z
?_Winerror_map@std@@YAPEBDH@Z
?_Syserror_map@std@@YAPEBDH@Z
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ

msvcr120

fwrite
fflush
_wfopen
?terminate@@YAXXZ
?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ
?wait@Concurrency@@YAXI@Z
??8type_info@@QEBA_NAEBV0@@Z
_lock
_unlock
_calloc_crt
__dllonexit
__C_specific_handler
_onexit
__CppXcptFilter
_amsg_exit
free
_malloc_crt
_initterm
_initterm_e
__crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__crtCapturePreviousContext
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
__clean_type_info_names_internal
fclose
wcsftime
_localtime64
??_V@YAXPEAX@Z
_purecall
??2@YAPEAX_K@Z
??3@YAXPEAX@Z
memmove
_CxxThrowException
__CxxFrameHandler3
memcpy

Exports

Exports

??0DebugOutputHandler@Logging@Common@MatSDK@@QEAA@V?$shared_ptr@UILogInfoFormatter@Logging@Common@MatSDK@@@std@@@Z
??0DebugOutputHandler@Logging@Common@MatSDK@@QEAA@XZ
??0DefaultFormatter@Logging@Common@MatSDK@@QEAA@AEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
??0FileOutputHandler@Logging@Common@MatSDK@@QEAA@$$QEAU0123@@Z
??0FileOutputHandler@Logging@Common@MatSDK@@QEAA@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$shared_ptr@UILogInfoFormatter@Logging@Common@MatSDK@@@5@_N2@Z
??0FileOutputHandler@Logging@Common@MatSDK@@QEAA@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@_N1@Z
??0LogMessage@Logging@Common@MatSDK@@QEAA@AEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
??0LogMessage@Logging@Common@MatSDK@@QEAA@PEB_W@Z
??0LogMessage@Logging@Common@MatSDK@@QEAA@XZ
??1DefaultFormatter@Logging@Common@MatSDK@@UEAA@XZ
??1FileOutputHandler@Logging@Common@MatSDK@@QEAA@XZ
??4FileOutputHandler@Logging@Common@MatSDK@@QEAAAEAU0123@$$QEAU0123@@Z
??RDebugOutputHandler@Logging@Common@MatSDK@@QEAAXAEBULogInfo@123@@Z
??RFileOutputHandler@Logging@Common@MatSDK@@QEAAXAEBULogInfo@123@@Z
?ClearLoggers@Logging@Common@MatSDK@@YAXXZ
?FormatLogInfo@DefaultFormatter@Logging@Common@MatSDK@@UEAA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBULogInfo@234@@Z
?GetDefaultLoggerId@Logging@Common@MatSDK@@YAAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?GetLogTypeString@Logging@Common@MatSDK@@YAAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@W4LogType@ILoggerConfiguration@123@@Z
?GetLogger@Logging@Common@MatSDK@@YAAEAUILogger@123@AEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetLogger@Logging@Common@MatSDK@@YAAEAUILogger@123@XZ
?GetLoggerConfiguration@Logging@Common@MatSDK@@YAAEAUILoggerConfiguration@123@AEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetLoggerConfiguration@Logging@Common@MatSDK@@YAAEAUILoggerConfiguration@123@XZ
?SetDefaultLoggerId@Logging@Common@MatSDK@@YAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?ToString@LogMessage@Logging@Common@MatSDK@@QEBA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c15961e4e4b92baf02b60b1f8bb08da

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

msvcp120

msvcr120

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 2KB - Virtual size: 3KB

.pdata Size: 4KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 512B - Virtual size: 296B

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 2KB - Virtual size: 3KB

.pdata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 296B