file_6ac67be8b68d4867bfac78d9b44a9dd9_2023-07-12_16_41_34_757000[.]zip

General

Target

file_6ac67be8b68d4867bfac78d9b44a9dd9_2023-07-12_16_41_34_757000.zip
Size

20KB
MD5

06b61eeaa21a0a833566b1f89b2d0d15
SHA1

cdb1b6718d53d76b5aa73273e95dbb6d8d58c008
SHA256

cbae58385cb1ae71f070ba2f0ea43de12f19f2be2620da1e5d62ca12baaab2eb
SHA512

aff68fabd68cbd8e3b4c5c403e7d295cc37560cc3b3f9cb98d20aeed4ef47b52c65554c707935a1392046b322662ff6d31584f367ae95999a264f7ed7ced9c0b
SSDEEP

384:5FFu91JBcWmQuV2qAdRo7+2t4OxwYtov8GZvDx2S6ZUXphDuvEryq5y97zs4z:5QNrmpI/RP2t4O+YtW12S6KXpZuvkovT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/entry_1_0/$RWZ1H79.exe

Files

file_6ac67be8b68d4867bfac78d9b44a9dd9_2023-07-12_16_41_34_757000.zip
.zip
entry_1_0/$RWZ1H79.exe
.exe windows x86

66b1fa58ea33783808ccb66f1a210887

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaVarTstGt
__vbaVarSub
__vbaStrI2
_CIcos
_adj_fptan
__vbaStrI4
__vbaVarMove
__vbaVarVargNofree
__vbaFreeVar
__vbaLenBstr
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
__vbaVarFix
_adj_fprem1
__vbaVarCmpNe
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaExitProc
__vbaI4Abs
__vbaOnError
__vbaObjSet
ord595
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
__vbaFpR4
__vbaFPFix
__vbaFpR8
__vbaBoolVarNull
__vbaVarTstLt
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
__vbaVarAbs
__vbaStrCmp
__vbaVarTstEq
_adj_fpatan
__vbaR4Var
__vbaStrR8
EVENT_SINK_Release
_CIsqrt
__vbaVarAnd
EVENT_SINK_QueryInterface
__vbaVarMul
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaVarDiv
__vbaFPException
__vbaStrVarVal
__vbaI2Var
_CIlog
__vbaErrorOverflow
__vbaR8Str
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaI4Str
__vbaFreeStrList
_adj_fdivr_m32
__vbaR8Var
_adj_fdiv_r
ord685
ord100
__vbaVarTstNe
__vbaI4Var
__vbaVarAdd
__vbaVarDup
__vbaFpI2
__vbaVarTstGe
_CIatan
__vbaStrMove
_allmul
_CItan
_CIexp
__vbaFreeObj
__vbaFreeStr
__vbaI4ErrVar
__vbaR8FixI2

Sections

.text
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.2data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
manifest.json

Sharing

General

Malware Config

Signatures

Files

66b1fa58ea33783808ccb66f1a210887

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 84KB - Virtual size: 82KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.2data Size: 72KB - Virtual size: 72KB

.text
Size: 84KB - Virtual size: 82KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB

.2data
Size: 72KB - Virtual size: 72KB