ba1be33c609cbe450896653e5ca642789ac673bd0e49253b5d7e38e39fb9e013 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba1be33c609cbe450896653e5ca642789ac673bd0e49253b5d7e38e39fb9e013
Size

336KB
MD5

fe59e22c4369412573beb8a4c21d4b57
SHA1

fab60f10f3c613b3464ec7259b375839c83ac44f
SHA256

ba1be33c609cbe450896653e5ca642789ac673bd0e49253b5d7e38e39fb9e013
SHA512

0cdb8392f9f6a9254eb6474621399c8da3d4a3523b3cd3ac77065538ebda768d744d71dd45cfbddc0ce640863da5d17b02ef5a8074a6ec5ad4839482d69bd293
SSDEEP

6144:IYF44Cu94U/3dnxUWUXMiUjUqnisdzMv5+2/I0SsqDsB+1xKjcB3mvPmeC8sZyoZ:/tCXU/3dnxUWUXMiUjUqnisdzOI0Ssqd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba1be33c609cbe450896653e5ca642789ac673bd0e49253b5d7e38e39fb9e013

Files

ba1be33c609cbe450896653e5ca642789ac673bd0e49253b5d7e38e39fb9e013
.exe windows:4 windows x86 arch:x86

aaf792f0cfd5dea60a1147845388532a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord595
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ord100

Sections

.text
Size: 304KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ