General

Malware Config

Signatures

Files

• 8136f8c683cdfebb012eb0d0130125689beacd54d79937536d20cba9ea7c567d

  .ace
• out.ace

  .ace
• TNT Original Invoice.scr

  .exe windows x86

  deae9a82cfd4adcc24725eb2c9c37e25

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  msvbvm60

  _CIcos

  _adj_fptan

  __vbaFreeVar

  __vbaFreeVarList

  _adj_fdiv_m64

  _adj_fprem1

  __vbaStrCat

  __vbaHresultCheckObj

  _adj_fdiv_m32

  __vbaAryVar

  __vbaAryDestruct

  ord669

  __vbaLateMemSt

  ord593

  _adj_fdiv_m16i

  __vbaObjSetAddref

  _adj_fdivr_m16i

  ord523

  ord708

  _CIsin

  __vbaChkstk

  EVENT_SINK_AddRef

  __vbaGenerateBoundsError

  __vbaStrCmp

  __vbaAryConstruct2

  __vbaVarTstEq

  __vbaObjVar

  __vbaVarLateMemSt

  _adj_fpatan

  __vbaLateIdCallLd

  ord677

  EVENT_SINK_Release

  _CIsqrt

  EVENT_SINK_QueryInterface

  ord710

  __vbaExceptHandler

  _adj_fprem

  _adj_fdivr_m64

  ord531

  __vbaFPException

  _CIlog

  __vbaNew2

  ord648

  _adj_fdiv_m32i

  _adj_fdivr_m32i

  __vbaStrCopy

  __vbaFreeStrList

  ord575

  _adj_fdivr_m32

  _adj_fdiv_r

  ord100

  __vbaVarTstNe

  __vbaVarSetVar

  __vbaI4Var

  __vbaVarDup

  __vbaVarLateMemCallLd

  __vbaLateMemCallLd

  _CIatan

  __vbaStrMove

  __vbaAryCopy

  ord543

  _allmul

  _CItan

  _CIexp

  __vbaFreeStr

  __vbaFreeObj

  Sections

  .text

  Size: 36KB - Virtual size: 32KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 4KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 4KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ