fa51b723373af0cf2075d77d58592af31b4e9e847511c985b7b67a8aa8cbb905 | Triage

Sharing

General

Target

fa51b723373af0cf2075d77d58592af31b4e9e847511c985b7b67a8aa8cbb905
Size

260KB
MD5

4d2b396ed30c6f2c9525ab5f1a2be07c
SHA1

d947466f063adc2ca06558ba192f1169b09418f2
SHA256

fa51b723373af0cf2075d77d58592af31b4e9e847511c985b7b67a8aa8cbb905
SHA512

dc6a25abeb77b08e58348cdafaddf7fdce8acbf4ccdeb96a7c71f1de529de5b44dd53ac1937c420e1fa748ba541acfac41b2f35307c0a6e452649484f9d06a4c
SSDEEP

3072:R9EBmY4qOCOp1zigKqWbyPpWI6/0/MrHmk0LrdFFCprMv6H7UyJ:HEQCaibN2pWIhcHn0cpruiIy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa51b723373af0cf2075d77d58592af31b4e9e847511c985b7b67a8aa8cbb905

Files

fa51b723373af0cf2075d77d58592af31b4e9e847511c985b7b67a8aa8cbb905
.exe windows x86

802db10f3827e0a9055660761a6dae55

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord697
MethCallEngine
ord521
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord607
ProcCallEngine
ord100

Sections

.text
Size: 252KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ