61ce8bc9663ed8e25806581e6f9a3a4ca828adc63ead44974227b115c07978c7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

61ce8bc9663ed8e25806581e6f9a3a4ca828adc63ead44974227b115c07978c7
Size

276KB
MD5

564183d138088db68f40cba93bc29298
SHA1

be011dee7bb2338bcf0e000f686aab4491fefab4
SHA256

61ce8bc9663ed8e25806581e6f9a3a4ca828adc63ead44974227b115c07978c7
SHA512

64e8d63d8a800da845f95bcfe673b704ec6cee73bac2fe28bfa8cf340fb970b56e5bbe277a3e7a81d949f84e5c34e16a42981247d5da7362a2e0e2763b6086c8
SSDEEP

1536:zCAKmzOqhSYqs+8u2LY/04Ha91beOqV1Vdno:ZLca+56U04HM1e3n

Score

N/A

Malware Config

Signatures

Files

61ce8bc9663ed8e25806581e6f9a3a4ca828adc63ead44974227b115c07978c7
.exe windows x86

38c6c9906e13b5fa57c6eb76a09296d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord665
ord597
ord599
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ProcCallEngine
ord644
ord681
ord100

Sections

Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PUNiSHER
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE