7068a95b8472b4b9497d0e12688b64755f7432d747aeec0b59edc97eb3f7c1b1 | Triage

Sharing

General

Target

7068a95b8472b4b9497d0e12688b64755f7432d747aeec0b59edc97eb3f7c1b1
Size

1.6MB
MD5

03e323459e47713146179cdc7d6e27c7
SHA1

6542cec49d75fd2a98e39678491a65eab4df6086
SHA256

7068a95b8472b4b9497d0e12688b64755f7432d747aeec0b59edc97eb3f7c1b1
SHA512

e0eefc038857806eed862fc2fb9967ba36cc48b7d212419cdb48a57f69e9c871aeda6fa5caf2174f3bd04e442e68b442635ce594081fe30f169a4c0463159e94
SSDEEP

24576:Q298OJfDo2l1Xn3M1OfsqoJn7as4oLow+M3:Q299fDo2l1Xn3M1OfsqoJn7jLoy3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7068a95b8472b4b9497d0e12688b64755f7432d747aeec0b59edc97eb3f7c1b1

Files

7068a95b8472b4b9497d0e12688b64755f7432d747aeec0b59edc97eb3f7c1b1
.exe windows:4 windows x86

f8d97bcf2c408e649b7e35f14e0e22b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord587
ord588
MethCallEngine
ord516
ord553
ord660
ord661
ord662
ord593
ord595
ord598
ord520
ord632
ord525
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord714
ord608
ord716
ProcCallEngine
ord537
ord645
ord648
ord100
ord610
ord612
ord613
ord614
ord617
ord542
ord545
ord581

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ