22d1d89d76e7d7283d6f073f84445dede39ae51ba9117af645136e728b1f0ae9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22d1d89d76e7d7283d6f073f84445dede39ae51ba9117af645136e728b1f0ae9
Size

308KB
MD5

e665a8c4dcb7483345d41daf1e3031ca
SHA1

31120f028138636d80d210d8d459ff6deaa36520
SHA256

22d1d89d76e7d7283d6f073f84445dede39ae51ba9117af645136e728b1f0ae9
SHA512

3c037513f1536e02b5a5af71520f4613f76108baf33a5dfb9b4d58048010db596e9e25758f92c83a0f508b7c52b8a93669e3bb09c8c962103d2d860224840596
SSDEEP

192:zsG4sjtcwH4VSbKNawNRn6RyRrR4RYRBRD4b2ReY7gX5l71H2AI34:zsHsq1UbDwG2ReYMX5l71H2AII

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22d1d89d76e7d7283d6f073f84445dede39ae51ba9117af645136e728b1f0ae9

Files

22d1d89d76e7d7283d6f073f84445dede39ae51ba9117af645136e728b1f0ae9
.exe windows x86

3c9bcc0b6c75b12de3a69af74cde9241

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaStrI2
_CIcos
_adj_fptan
__vbaFreeVar
__vbaLenBstr
__vbaEnd
_adj_fdiv_m64
__vbaFreeObjList
__vbaLineInputVar
_adj_fprem1
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaObjSet
_adj_fdiv_m16i
_adj_fdivr_m16i
_CIsin
__vbaChkstk
__vbaFileClose
EVENT_SINK_AddRef
_adj_fpatan
__vbaStrR8
EVENT_SINK_Release
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
__vbaPrintFile
_adj_fprem
_adj_fdivr_m64
__vbaFPException
__vbaStrVarVal
_CIlog
__vbaFileOpen
_adj_fdiv_m32i
_adj_fdivr_m32i
_adj_fdivr_m32
_adj_fdiv_r
ord100
_CIatan
__vbaStrMove
_allmul
_CItan
_CIexp
__vbaFreeObj
__vbaFreeStr

Sections

.text
Size: 296KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE