2c0ee4cdd8b6d548f3c121dcbb0d26b1a7db0992d303c6066c522cfcaade1a55 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c0ee4cdd8b6d548f3c121dcbb0d26b1a7db0992d303c6066c522cfcaade1a55
Size

436KB
MD5

9831798259d0099b152c72d48ca3d678
SHA1

776e30a55ea29159eb7107b44e475a2b909e4ec5
SHA256

2c0ee4cdd8b6d548f3c121dcbb0d26b1a7db0992d303c6066c522cfcaade1a55
SHA512

79f645c2ec5a6bf958f96976237d5e5c63e87c85a0f73030ede8a70ce97646b76078640f9b986df400a233a3343dee00c47aad0f62c55ab4c4047743dafabb67
SSDEEP

6144:xuQk9oUauQk9oxuQk9ouuQk9oANxJNfNpEfcGzuQk9:WsLNp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c0ee4cdd8b6d548f3c121dcbb0d26b1a7db0992d303c6066c522cfcaade1a55

Files

2c0ee4cdd8b6d548f3c121dcbb0d26b1a7db0992d303c6066c522cfcaade1a55
.exe windows x86

334d1061b29818a600605e9f9c2d866b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord621
ord516
ord593
ord594
ord595
ord632
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord608
ProcCallEngine
ord645
ord570
ord648
ord573
ord100
ord610
ord612
ord613
ord617
ord650
ord581

Sections

.text
Size: 364KB - Virtual size: 360KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ