c6fbcfdd8b3ec33a8e53ad7d6f54711f9605dadd6e3926879cfef7d1fd093df5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6fbcfdd8b3ec33a8e53ad7d6f54711f9605dadd6e3926879cfef7d1fd093df5
Size

188KB
MD5

73aef5143f392a1a6775b498f133f55f
SHA1

50e4c247bebfa21a436c29d9e73f52d7d2f83ac9
SHA256

c6fbcfdd8b3ec33a8e53ad7d6f54711f9605dadd6e3926879cfef7d1fd093df5
SHA512

0efa4b2de9d111495b19af07f6fa61082df136fe959ec39656e8c3356c2a81c3499c1fc36c4a4ad476d2f4674a36ad81ec9b34981012ef2121ad11062d780124
SSDEEP

768:yRPH6ETzFAIsFuePaiTvRk6GQjBiZJc+3UQI:yloIsoe49Jc+3UQI

Score

N/A

Malware Config

Signatures

Files

c6fbcfdd8b3ec33a8e53ad7d6f54711f9605dadd6e3926879cfef7d1fd093df5
.exe windows x86

1fa7a413c26a6764d047c7b47a099c76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CallWindowProcW

kernel32

MulDiv
lstrlenW

msvbvm60

ord582
ord583
ord584
ord696
ord516
ord628
ord660
ord593
ord520
ord632
DllFunctionCall
ord601
__vbaExceptHandler
ord606
ord608
ord716
ProcCallEngine
ord644
ord537
ord572
ord573
ord575
ord100
ord546
ord581

Sections

.text
Size: 180KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ