b19b33b44ae6f72cdd162d1fc07dfa0210ee4e8830de43c2f0a039d737aca61d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b19b33b44ae6f72cdd162d1fc07dfa0210ee4e8830de43c2f0a039d737aca61d
Size

91KB
MD5

c6d6ce86786ea5703d4ae5a67724142d
SHA1

7893fcae0d883faa280e2238237af91d87d949d1
SHA256

b19b33b44ae6f72cdd162d1fc07dfa0210ee4e8830de43c2f0a039d737aca61d
SHA512

7d5d5001c17303aa23aea1993eaec5abe11cfca6e207257308ed7e8c351b39a6213e156f16bcf46ed0317969af71cb54dfb3ce4d8f6818f4e016d734720dd949
SSDEEP

1536:nd5folCJmzb4yxeEvnfCA8gniybZjxGRKaf6zBMKR1BqJH4DVFOTEh89ZO:ndhol5H4ycE/KAHniydjYRN6zBMsqJYE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b19b33b44ae6f72cdd162d1fc07dfa0210ee4e8830de43c2f0a039d737aca61d

Files

b19b33b44ae6f72cdd162d1fc07dfa0210ee4e8830de43c2f0a039d737aca61d
.dll regsvr32 windows:4 windows x86 arch:x86

5d2f5abeca268ec50902fd2ebeb9c4ed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msvbvm60

__vbaVarTstGt

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 83KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE