General

Malware Config

Signatures

Files

• df16c889e128e3c308328af7cfb8f888d1fd4cdd26de73fcf97491352c43813a

  .exe windows x86

  3979f2adf38ea7e869858887a40350e4

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  msvbvm60

  ord582

  ord585

  ord693

  ord586

  ord589

  ord697

  MethCallEngine

  ord513

  ord517

  ord518

  ord519

  ord628

  ord629

  ord552

  ord660

  ord553

  ord662

  ord557

  ord665

  ord668

  ord669

  ord591

  ord592

  ord593

  ord594

  ord702

  ord520

  ord522

  EVENT_SINK_AddRef

  ord527

  ord528

  ord560

  ord562

  DllFunctionCall

  ord670

  ord672

  ord673

  ord674

  ord675

  ord677

  ord678

  EVENT_SINK_Release

  ord679

  EVENT_SINK_QueryInterface

  __vbaExceptHandler

  ord710

  ord711

  ord606

  ord713

  ord607

  ord714

  ord609

  ord534

  ord641

  ord535

  ord537

  ord538

  ord539

  ord572

  ord680

  ord682

  ord575

  ord685

  ord100

  ord687

  ord610

  ord612

  ord615

  ord616

  ord618

  ord540

  ord542

  ord544

  ord652

  ord545

  ord546

  Sections

  .text

  Size: 520KB - Virtual size: 518KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: - Virtual size: 5KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 8KB - Virtual size: 6KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ