f5534d7091673c0b364ce9ded562b0f5e04fc673caee526cf1c277da068905ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5534d7091673c0b364ce9ded562b0f5e04fc673caee526cf1c277da068905ae
Size

588KB
MD5

4f4cc7af4395bd1b04c2197f1502e504
SHA1

f3efa22e48f2037e5e1787ffef8817a1f3d3be12
SHA256

f5534d7091673c0b364ce9ded562b0f5e04fc673caee526cf1c277da068905ae
SHA512

8cd26c1797b2e4d5673ca1522fe8d6444218f3f0a1c2144e26145f53c2a50ad55a0fe6ed1e658bc6b53bacef6fd9d119c427f08c50cdf3687926519b6bc05bba
SSDEEP

12288:5S2nGQVyvOC25PsiajkLiz4WqL02cAex:5V2vOCW/QxqHcf

Score

N/A

Malware Config

Signatures

Files

f5534d7091673c0b364ce9ded562b0f5e04fc673caee526cf1c277da068905ae
.exe windows x86

369ad48d2123599db7e63d247ecf9094

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlMoveMemory

msvbvm60

MethCallEngine
ord598
ord631
EVENT_SINK_AddRef
ord527
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord608
ord717
ProcCallEngine
ord644
ord572
ord100
ord616
ord619

Sections

.text
Size: 324KB - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 260KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ