2aa280423ede7e4f24f6cc29bc48829577d5fa4e0d0cc64b8e1373d7746c03c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2aa280423ede7e4f24f6cc29bc48829577d5fa4e0d0cc64b8e1373d7746c03c8
Size

74KB
MD5

6d5b865edcdae51082be1e0ef88eb170
SHA1

98f66cdfb9ac5dcb754dc9ec63b65fa6a6324d33
SHA256

2aa280423ede7e4f24f6cc29bc48829577d5fa4e0d0cc64b8e1373d7746c03c8
SHA512

cca006fea0098b094f93d2fc16332e8f8d2fe7a554cd5b36d14ca04fb6cd7144b1fa1a2094208080de6b41c2a57b901e5922f4fe1e66b1865a1372f23284916c
SSDEEP

768:qLLJK56ExBuVtOoCrIXo6BjZDpx0pcTV6oI+DUbJKRRmWNp:aLE5YtOoCZ6B1p6GDUoRR/p

Score

N/A

Malware Config

Signatures

Files

2aa280423ede7e4f24f6cc29bc48829577d5fa4e0d0cc64b8e1373d7746c03c8
.exe windows x86

6384e81459d9316fcb0e41873c1ca2f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AreAnyAccessesGranted

msvbvm60

ord183
ord589
ord698
MethCallEngine
ord518
ord558
ord631
ord632
ord526
EVENT_SINK_AddRef
ord527
ord528
ord562
DllFunctionCall
ord563
ord678
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord717
ProcCallEngine
ord644
ord647
ord570
ord681
ord100
ord432

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ