ad9519227e6cfde51a42957a302acce50ca1b97d7f4a2ae4de22e0bb49479490 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad9519227e6cfde51a42957a302acce50ca1b97d7f4a2ae4de22e0bb49479490
Size

3.5MB
MD5

8ba1ba6be666d492d65801782c982f39
SHA1

76e88652314b6df382f21d972a21a13f84eae513
SHA256

ad9519227e6cfde51a42957a302acce50ca1b97d7f4a2ae4de22e0bb49479490
SHA512

d87e677cfc7e333bb62469d6ddfec7c71ed81238fd8675a51e35d1a986b709220b28657c248f6f3958378c549502f2ba37631d1436216318e98c7fb4e8e6feb6
SSDEEP

49152:hs4VF6cAyNdsnygJiIfy7PvwunZ2ts4VF6cAyN:hs4VF6cVNqFts4VF6cVN

Score

1^/10

Malware Config

Signatures

Files

ad9519227e6cfde51a42957a302acce50ca1b97d7f4a2ae4de22e0bb49479490
.exe windows x86

daa3906ce171a0e62903ebe3cf48ebfb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord660
ord300
ord595
ord599
ord306
ord520
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord314
ord315
ord316
ord716
ProcCallEngine
ord100
ord617
ord546

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ