fb8e469a6ddd827ccd322697da9e17e0a82aff76f7cfe22fda1dc73bb9329643 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb8e469a6ddd827ccd322697da9e17e0a82aff76f7cfe22fda1dc73bb9329643
Size

36KB
MD5

0ac03043c78c617bacc796d9b96ed7a2
SHA1

5a1b74e004d3225e4a9bfdfa93626a9c3cecc281
SHA256

fb8e469a6ddd827ccd322697da9e17e0a82aff76f7cfe22fda1dc73bb9329643
SHA512

1f278ff7491e608017fba651cdef2a76556e9ccb612ca47a6045a3a66ca5873a0911c15fc0545f3dcb092315b8ea9de2179e427bca1d8ec7c8eec3612c273ea3
SSDEEP

768:SBJ6iO7aHJDvulz3vQpSqlBfw+lJYCyZv:SztOopv+z/Qwqlu+lJ8

Score

N/A

Malware Config

Signatures

Files

fb8e469a6ddd827ccd322697da9e17e0a82aff76f7cfe22fda1dc73bb9329643
.exe windows x86

01d2bd638f0a976b01a69b7fb5b85b2b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AreAllAccessesGranted

kernel32

MulDiv

msvbvm60

ord183
ord669
EVENT_SINK_AddRef
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord714
ord717
ProcCallEngine
ord644
ord570
ord649
ord100
ord432

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ