70bd0df588f875711fc70c839dda911f45afe4fd1037d8b6d458d6c9612e1c71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70bd0df588f875711fc70c839dda911f45afe4fd1037d8b6d458d6c9612e1c71
Size

388KB
MD5

81850696af2d36b2ea08db81c27c8760
SHA1

3ff033f6fd0de25fb603ceca4e90f917f56d67af
SHA256

70bd0df588f875711fc70c839dda911f45afe4fd1037d8b6d458d6c9612e1c71
SHA512

f55899e554c2f6f8894daf3bef9af799d2bcaa308f087a041782d1a3761a250ecc6df53489d58b09a00274b2834124ef8b4c67e04aa2c3cf10b3e5f422fce840
SSDEEP

3072:nRMiMDcyj5IFVwAZlwys9ldN/i4+0ZhuW+mP34s5SGr+culS9F9xrj69:nRMiE79KwAZlVs9/smu2AVuKS9FH6

Score

N/A

Malware Config

Signatures

Files

70bd0df588f875711fc70c839dda911f45afe4fd1037d8b6d458d6c9612e1c71
.exe windows x86

57aec85b8994baa395f873f824332fb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlMoveMemory

msvbvm60

MethCallEngine
ord516
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord608
ProcCallEngine
ord644
ord100
ord616

Sections

.text
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ