fa2107850f2d25e58916ed149003488add53bc436dbd5526d9035bd88fb12505 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa2107850f2d25e58916ed149003488add53bc436dbd5526d9035bd88fb12505
Size

124KB
MD5

6145aae639bf3cf25bfa33a3d96fda19
SHA1

6c9166baa05816e1dd97ea21948911046fdc165c
SHA256

fa2107850f2d25e58916ed149003488add53bc436dbd5526d9035bd88fb12505
SHA512

e5b257eeb96c1eccc128787e7d9b10db4e7821c7ae61a6b828f6cc292b113920144a044e19f0c16d5bf1b212ab0c02bcefa5e093ab333c8d130ce07cba10e900
SSDEEP

1536:jOCA+dRKvNYtO/AcGGMp0ogxvmI0wJ5rOx+iaX90vZiQxZAJXilI/44Tmn/aK:qL+dcvi3pFEmI0wvO0iaN0hVIg4G/T

Score

N/A

Malware Config

Signatures

Files

fa2107850f2d25e58916ed149003488add53bc436dbd5526d9035bd88fb12505
.exe windows x86

3492a8301691d4fbe7460652ec0d11b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ord607
ord608
ord717
ProcCallEngine
ord644
ord100

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ