70149a8f70787e10bc05b94812282dfa61bb5740ef7575485df1183d39ab5ccc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70149a8f70787e10bc05b94812282dfa61bb5740ef7575485df1183d39ab5ccc
Size

40KB
MD5

91911e1ea7680b5fc2e2f4e90b8b4780
SHA1

8902c5229f64611e8276b3629162fb082de9d0ce
SHA256

70149a8f70787e10bc05b94812282dfa61bb5740ef7575485df1183d39ab5ccc
SHA512

5bb9cfef631a23b0dc9c362bbe3dcbd9aefbdb26bb3cedfcd1693d45534302ae12db1c10cf693afc00a4b878569ce2c196a6dd85e144769d7a9f6c8e25e5d475
SSDEEP

768:aX5Vz4m7QeHQx4EHbCuTk4rSjaiDbrx3nRX+cd2S:aXL4m7zQlHbCuTk4Wjaq

Score

N/A

Malware Config

Signatures

Files

70149a8f70787e10bc05b94812282dfa61bb5740ef7575485df1183d39ab5ccc
.exe windows x86

d80cc578cbae1f5f403fe68c24142745

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

netshell

DllCanUnloadNow

msvbvm60

ord552
ord669
ord598
ord520
__vbaExceptHandler
ord717
ProcCallEngine
ord644
ord570
ord100
ord432
ord652
ord545

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ