002727017c8d35a409e92745678ca6b7efe15141380c527e0b510572dd080dc4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

002727017c8d35a409e92745678ca6b7efe15141380c527e0b510572dd080dc4
Size

1.7MB
MD5

c4d8364ce811139af6c3ba57be60aa17
SHA1

8219c15b419b414ea03de5b5b83401bb594ec0ec
SHA256

002727017c8d35a409e92745678ca6b7efe15141380c527e0b510572dd080dc4
SHA512

013746e158d4acf6740e1bd6bf70624c25e4f6bc5be0a5d894490b9a2d1855d027c6e0defdb300e4e1366ce46d582833b279e0a2e01815f1b616ca03323d57d1
SSDEEP

24576:S/mbUA9U7GJEKVGmbiXhczod8ywouBxce+gk1dBnDgFk7eBhhbf+VZxyjAIb:S2ZnEKUmixczwNJuBqezydlAcYb23xR

Score

N/A

Malware Config

Signatures

Files

002727017c8d35a409e92745678ca6b7efe15141380c527e0b510572dd080dc4
.dll regsvr32 windows x86

fb0c5d8a39e29b54043c1c26f370e095

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord626
ord666
ord598
ord631
ord632
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord531
ProcCallEngine
ord645
ord648
ord685
ord578
ord101
ord102
ord103
ord104
ord105
ord617
ord619

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ