General

Malware Config

Signatures

Files

• 7d4894ffd94436d898439854368ff21236586204f800017f046a9ebbb4e16f15

  .zip
• informationen_zum_transaktions_02JS_2820_JWIOU_29MQ_2001_KA21.pdf.exe

  .exe windows x86

  328fdcda55996419f0e7ac9a4a8ec4a6

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  msdtcprx

  DTC_XaCommit

  mydocs

  DllGetClassObject

  msvbvm60

  rtcEnvironBstr

  __vbaAptOffset

  __vbaObjVar

  __vbaFileOpen

  __vbaCyFix

  __vbaI2Str

  rtcInputCharCount

  rtcCommandBstr

  kernel32

  GetProcAddress

  AddAtomW

  lstrcmpW

  lstrlenA

  VirtualAlloc

  LoadLibraryA

  GetVersion

  GetFileAttributesW

  CopyFileA

  AddAtomA

  Sections

  .text

  Size: 3KB - Virtual size: 3KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 1024B - Virtual size: 660B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 2KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 275KB - Virtual size: 274KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 1024B - Virtual size: 940B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ