b42ff390389b9c3fe83cdadadcfe96ca2f316e1388b8b07a54120838bd1fec28 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b42ff390389b9c3fe83cdadadcfe96ca2f316e1388b8b07a54120838bd1fec28
Size

28KB
MD5

4823511b2815f8ca7b0b5701fedeaa3d
SHA1

06184a0008ad5b57458d918aecf5299b19d00389
SHA256

b42ff390389b9c3fe83cdadadcfe96ca2f316e1388b8b07a54120838bd1fec28
SHA512

9bd93056cfd1547128bf2dd9f3a92d6ea1cabde506595dc118fe6e4a3f82b1c1dd9e499634ad5f62ae46e621d419b0d2363418307e9f344660114ab6bab17587
SSDEEP

384:nAgonYlahJyoKuknnzLEuaLLzxtPlCsEEcuQNn:AgoYlaK/u0zL+tPI4G

Score

N/A

Malware Config

Signatures

Files

b42ff390389b9c3fe83cdadadcfe96ca2f316e1388b8b07a54120838bd1fec28
.exe windows x86

e97c424d67f2bf12126aa087a68b8c5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord621
ord516
ord598
ord631
ord632
DllFunctionCall
ord601
__vbaExceptHandler
ord712
ord607
ord608
ord716
ord717
ProcCallEngine
ord644
ord573
ord681
ord100
ord618

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ