472a0061b6983911649d448e2fd30322a2292f1f64f302fcf41a3cd0c1ad9916 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

472a0061b6983911649d448e2fd30322a2292f1f64f302fcf41a3cd0c1ad9916
Size

100KB
MD5

3c8351e5d649106ab803bfc633b96174
SHA1

1fe603b186ebca70ffbdec441e19768838cbffa3
SHA256

472a0061b6983911649d448e2fd30322a2292f1f64f302fcf41a3cd0c1ad9916
SHA512

d3fbfb0fc4f38fc58bca439b7c630a5ddcc8d7342c9c73cd3eaefc00010e2c05be143ad8ea4821ac5cbc96bc99c53fbc9f0911611304a231529b95e4c8b8ae43
SSDEEP

3072:VMzgV84GM8MJG6ovdSjlETC0sZdZwZzvrvHbK:VMzgYMfGdlSJETQaBG

Score

N/A

Malware Config

Signatures

Files

472a0061b6983911649d448e2fd30322a2292f1f64f302fcf41a3cd0c1ad9916
.exe windows x86

3dc449eeea38098547e9a4996f55b8d2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

netshell

DllGetClassObject

msvbvm60

ord669
ord703
ord522
__vbaExceptHandler
ord717
ProcCallEngine
ord644
ord570
ord100
ord432
ord540

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ