Static task
static1
Behavioral task
behavioral1
Sample
af816754efdf790fbb5ff55481dcc2214cf816ef29f002150489ee2f9a1f8e2e.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
af816754efdf790fbb5ff55481dcc2214cf816ef29f002150489ee2f9a1f8e2e.exe
Resource
win10v2004-20221111-en
General
-
Target
af816754efdf790fbb5ff55481dcc2214cf816ef29f002150489ee2f9a1f8e2e
-
Size
264KB
-
MD5
46cc512af5106904166ca754718ea7df
-
SHA1
2a7e8eb52a8c947cd643ca31183ea00bb4343839
-
SHA256
af816754efdf790fbb5ff55481dcc2214cf816ef29f002150489ee2f9a1f8e2e
-
SHA512
95271a79f3c89e5acd7178ae57c6fec9869cf16dca197596ca596df8eb7ca1ca243c41687e7af7d64bcff6a29e2b89e51a8c1128e37b54656793e1036b7d32e0
-
SSDEEP
1536:5Du/k6pclz7zrSKy6yqildVNFNkMEcU8/nPn/HvGeWOGehZBpxJR4PiYm1nMjE4b:M/nmjPF99ViEZRdW1KcjFgD/
Malware Config
Signatures
Files
-
af816754efdf790fbb5ff55481dcc2214cf816ef29f002150489ee2f9a1f8e2e.exe windows x86
00516965540d6c560cf12837a0476b01
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
EVENT_SINK_GetIDsOfNames
MethCallEngine
EVENT_SINK_Invoke
ord621
ord519
ord666
Zombie_GetTypeInfo
ord591
EVENT_SINK2_Release
ord592
ord595
ord598
ord521
ord632
ord525
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord563
Zombie_GetTypeInfoCount
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord607
ord608
ord716
ProcCallEngine
ord536
ord644
ord537
ord570
ord572
ord573
EVENT_SINK2_AddRef
ord681
ord576
ord685
ord100
ord616
ord618
ord619
ord581
Sections
.text Size: 256KB - Virtual size: 254KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ