e41052d0e372f593a740ce62c923b2a5b586b40a48259329bc6d323f6c719365 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e41052d0e372f593a740ce62c923b2a5b586b40a48259329bc6d323f6c719365
Size

128KB
MD5

b09ffae441f2440b835f159c67d294ca
SHA1

1421e3c6d96615577e4ef46ae6f6adee88799c84
SHA256

e41052d0e372f593a740ce62c923b2a5b586b40a48259329bc6d323f6c719365
SHA512

6d3f52ec443e30a502616eb51478105ddd67eadda4945b27b7f1e51ac290ef30f0f6a09bf64e37e4791fe9f93457238113d39c3d1a6ec593806710b926ec4591
SSDEEP

1536:EwfGGqeMlivDqHotKSqkedZIaL22xvgwDsvUs2vUzXD3KCqf3:FqenuHanqke922xvgjz7dqv

Score

N/A

Malware Config

Signatures

Files

e41052d0e372f593a740ce62c923b2a5b586b40a48259329bc6d323f6c719365
.exe windows x86

d94b48c9eb7c53c545edc9689259a027

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord582
ord583
ord187
ord587
ord697
ord698
MethCallEngine
ord516
ord553
ord300
ord301
ord595
ord702
ord598
ord704
ord306
ord307
ord709
ord631
ord632
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord675
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ord717
ProcCallEngine
ord536
ord537
ord644
ord648
ord577
ord685
ord100
ord613
ord614
ord616
ord546
ord581

Sections

.text
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ