a4bbc8ce6c7b07b259000be60ea54d4bfa2672c3929dba8827e80cc3737623c7 | Triage

Submit
Reports

Overview

overview

Static

static

a4bbc8ce6c...c7.exe

windows7-x64

a4bbc8ce6c...c7.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a4bbc8ce6c7b07b259000be60ea54d4bfa2672c3929dba8827e80cc3737623c7.exe

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

a4bbc8ce6c7b07b259000be60ea54d4bfa2672c3929dba8827e80cc3737623c7.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

a4bbc8ce6c7b07b259000be60ea54d4bfa2672c3929dba8827e80cc3737623c7
Size

210KB
MD5

60452c701cc0ab372dbe8c791b95ad60
SHA1

27d9b44165b13f5a7149989883c65ae094929f57
SHA256

a4bbc8ce6c7b07b259000be60ea54d4bfa2672c3929dba8827e80cc3737623c7
SHA512

3116033462d5c82f91b6e5a6b204e64d3862f1064eb5932329c150d558c953cf58a567459dff6fd1e85829afff1d74c69bd354cd913e941aad8d310f6dec1cd2
SSDEEP

3072:33OeY2P6yyMR4ccZBq8KI+SZbzde4AF/ij8ga+pdboy8Z8OBRff8fl4ZpuFB+TP:ubM4Jm8K6RdTTjvpdborol4ZpaBEP

Score

N/A

Malware Config

Signatures

Files

a4bbc8ce6c7b07b259000be60ea54d4bfa2672c3929dba8827e80cc3737623c7
.exe windows x86

c11add5eb942fd35acb2116a473a36a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowsHookExA
GetWindowLongA
UnhookWindowsHookEx
SetWindowLongA
CallWindowProcA

kernel32

GetProcAddress
RtlMoveMemory
GlobalFree
GetModuleHandleA
GetVersionExA
GlobalAlloc

msvbvm60

EVENT_SINK_GetIDsOfNames
ord694
MethCallEngine
EVENT_SINK_Invoke
ord516
ord519
Zombie_GetTypeInfo
EVENT_SINK2_Release
ord598
ord631
ord632
ord525
ord526
EVENT_SINK_AddRef
ord528
ord529
DllFunctionCall
Zombie_GetTypeInfoCount
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord710
ord711
ord607
ord608
ord716
ord319
ProcCallEngine
ord535
ord537
ord644
ord573
EVENT_SINK2_AddRef
ord681
ord100
ord579
ord610
ord320
ord612
ord321
ord616
ord617
ord618
ord546
ord580
ord581

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

resource
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy