5b75db9d337373d2d222aa83a256ef0bd9244801f5ca8543df9b0b163d258d18 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b75db9d337373d2d222aa83a256ef0bd9244801f5ca8543df9b0b163d258d18
Size

40KB
MD5

7eac1bc38c22b68fa8f4ed2613764530
SHA1

eb3469dcb1a3a108142e81b065684baafc91c7f4
SHA256

5b75db9d337373d2d222aa83a256ef0bd9244801f5ca8543df9b0b163d258d18
SHA512

10994d44d221820f4d630949682b10f116c215b1942eaaaf35a13a9a146b11b00fcd022b163481765c2afb787e38459135af68d2fa4561639180a59b9847dbf7
SSDEEP

768:xtrGiGA09dcddqEp0c+lRX0T+74d4GEnLjFCito0:xtrGiGl9dCLpMX++M6FN

Score

N/A

Malware Config

Signatures

Files

5b75db9d337373d2d222aa83a256ef0bd9244801f5ca8543df9b0b163d258d18
.exe windows x86

ed386606ce4d607aa8fb494574360765

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

netshell

DllCanUnloadNow

msvbvm60

ord587
ord589
MethCallEngine
ord522
EVENT_SINK_AddRef
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord717
ProcCallEngine
ord644
ord570
ord575
ord100
ord432

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ