1997878f6cefd137ad2a4507e7973f5773e3d883671e054f653fe111f215b0a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1997878f6cefd137ad2a4507e7973f5773e3d883671e054f653fe111f215b0a5
Size

196KB
MD5

e012318b3f5e1c98abcc32edc680da2e
SHA1

941c78e330faabd3e15e4466ba20fc8223630588
SHA256

1997878f6cefd137ad2a4507e7973f5773e3d883671e054f653fe111f215b0a5
SHA512

f92847cb71df812d4b852f8e3a3524b0a487ec6da9f4713324796a72651118c1fb05651b2484f44b0e1d097158fdd2607b29916c4444a26d9b7327a6d0535b66
SSDEEP

3072:XX3u27GM9+t+x+SxLsbFN5LLK458+1f1Advz2IlaYqW1OnX6MTcnc:e/tsGXxh6vzWHdqMTcnc

Score

N/A

Malware Config

Signatures

Files

1997878f6cefd137ad2a4507e7973f5773e3d883671e054f653fe111f215b0a5
.exe windows x86

54813c954a7dd0af0dffaf2fca1a2a8f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord588
ord589
ord697
MethCallEngine
ord516
ord517
ord519
ord669
ord595
ord598
ord523
ord709
ord631
ord525
EVENT_SINK_AddRef
ord527
ord529
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord606
ord531
ord717
ord532
ord534
ProcCallEngine
ord536
ord644
ord537
ord645
ord646
ord648
ord571
ord572
ord576
ord577
ord578
ord685
ord100
ord579
ord616
ord618
ord650
ord546
ord580
ord581

Sections

.text
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.1data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE