0dcaf9fffbb0295ab780a3c67b73b0fa4e724498ca76fcb091e5260a9a43d48f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0dcaf9fffbb0295ab780a3c67b73b0fa4e724498ca76fcb091e5260a9a43d48f
Size

48KB
MD5

6f8351100f1ef51c7f6ed6d81e3bf2f0
SHA1

90654eded454a342906c3b4e28a881ba3545670c
SHA256

0dcaf9fffbb0295ab780a3c67b73b0fa4e724498ca76fcb091e5260a9a43d48f
SHA512

fe00428f5dd06b96b345f152a89592b29a1d22c2b43084f95316928798b17dc5c2000cf6c13f07d97a951b0d0e6034f8fef6cfbaa6a8107e77c5ef12d2e257a4
SSDEEP

768:BL1JqcBnOU7NTgL92UHYaZH6yDC9VavyOAXYV:BLF7VgzFCWvDWYV

Score

N/A

Malware Config

Signatures

Files

0dcaf9fffbb0295ab780a3c67b73b0fa4e724498ca76fcb091e5260a9a43d48f
.exe windows x86

03db0db89ac800a2a306c3c0d9424652

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZSeek

gdi32

CombineRgn

msvbvm60

ord183
ord697
ord698
MethCallEngine
ord598
ord703
ord520
ord631
ord709
ord632
ord526
EVENT_SINK_AddRef
ord527
DllFunctionCall
ord563
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ord717
ProcCallEngine
ord644
ord647
ord570
ord681
ord100
ord616
ord432

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ