d1f609e10224c6acf4bc8938f755ab0999f7f1c016462cf2303b801c5ed4ac3f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1f609e10224c6acf4bc8938f755ab0999f7f1c016462cf2303b801c5ed4ac3f
Size

30KB
MD5

335eafde4fb2dd6acd4aa4aad60ef2d8
SHA1

aa0ba80fdcdac2ae008e7b629e6e1b3bde141401
SHA256

d1f609e10224c6acf4bc8938f755ab0999f7f1c016462cf2303b801c5ed4ac3f
SHA512

d0c126684b28f44bb48aa236bb27ace76128ee6749484de742863b8c27508eab2547b3b30acaa799ce98dee6e0c895c5996f02a75258ec2ee01a427a5f2cf418
SSDEEP

384:pf+RHIl4rQ/0ZJhGc4zGsrcXE96cYJLW7HbP6j1:pf+K0ZPGc4qGEEsRLobPm1

Score

N/A

Malware Config

Signatures

Files

d1f609e10224c6acf4bc8938f755ab0999f7f1c016462cf2303b801c5ed4ac3f
.exe windows x86

51fb1a94ba10a88b203b9a38f8839c75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord518
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord645
ord648
ord100
ord617

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ