965dfbaa0abc6ed9497c0adf6dc61327a4623f76cfc6fda819a02ca4f1e04efc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

965dfbaa0abc6ed9497c0adf6dc61327a4623f76cfc6fda819a02ca4f1e04efc
Size

396KB
MD5

05c69a5e4242a1af50aa07853fc85d40
SHA1

2d7f7f79d66669e4ebee9560d65952505a94b455
SHA256

965dfbaa0abc6ed9497c0adf6dc61327a4623f76cfc6fda819a02ca4f1e04efc
SHA512

e4965db21567c43b2f1aad43a243f79d6cceeb302c7dd8b2a3ef93ea9f7763072c607a2cfdbf5057249f3e4505294bbfa938050183b6c22e2c9c9da13f843601
SSDEEP

3072:6RMiMDcyj5IFVwAZlwys9ldN/i4+0ZhuW+mP34s5SGr+culS9F9xrj69:6RMiE79KwAZlVs9/smu2AVuKS9FH6

Score

N/A

Malware Config

Signatures

Files

965dfbaa0abc6ed9497c0adf6dc61327a4623f76cfc6fda819a02ca4f1e04efc
.exe windows x86

57aec85b8994baa395f873f824332fb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlMoveMemory

msvbvm60

MethCallEngine
ord516
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord608
ProcCallEngine
ord644
ord100
ord616

Sections

.text
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE