4dc4378ea04ec252effdee05eb1a06c3408d9729b2a5f1a5a3026c34ccf575dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4dc4378ea04ec252effdee05eb1a06c3408d9729b2a5f1a5a3026c34ccf575dd
Size

133KB
MD5

0c6c64ee1bd307bed4425fe9e4a14f96
SHA1

078105ebb19548a2f9eced5e7eae722cdda92f1d
SHA256

4dc4378ea04ec252effdee05eb1a06c3408d9729b2a5f1a5a3026c34ccf575dd
SHA512

e9f50e4f7b6327bc2749a1f93608f6588922d8da12473db47a6c66bc0eb4763eded429c59dc8b5b8f3948c8cce9efd122c046684f1805f03a275f4ccb56b68c8
SSDEEP

3072:JHVlJMfmln0oTCiCpJjNy85Vxb5WS3ibUE:J1lpB0oTCZpJw89E

Score

N/A

Malware Config

Signatures

Files

4dc4378ea04ec252effdee05eb1a06c3408d9729b2a5f1a5a3026c34ccf575dd
.exe windows x86

9535d1185518a1812a3cd665d0ef5ee2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RevertToSelf

msvbvm60

Zombie_QueryInterface
ord702
ord678
__vbaExceptHandler
ProcCallEngine
ord644
ord100
ord544

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ