8a66b0f1bd51ef92981041dde13caf8912569cafeca7e787ec4f2cff4b8dd12b | Triage

Sharing

General

Target

8a66b0f1bd51ef92981041dde13caf8912569cafeca7e787ec4f2cff4b8dd12b
Size

91KB
MD5

11f23d20d2b5aded54cbe6bce3615692
SHA1

22dfdd2d396b036f42ca0b1e52ae859b8da25dd8
SHA256

8a66b0f1bd51ef92981041dde13caf8912569cafeca7e787ec4f2cff4b8dd12b
SHA512

f9c5ce5f8a5da10313f7c45fd841e4afc15447063e0d4d22b2eb646f2bcde09e65bfffabdcb69419e2c8ed4b84d96cc830c6e129e009335a4a469ef47236d1e1
SSDEEP

1536:oW5+QSAmTkuNHM85eTJD4nSE4F3liX67ouS7BAZnkWSoAnFp09lO:l+QtmY+HCJEO30X0ouDRkWt+Fp09l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a66b0f1bd51ef92981041dde13caf8912569cafeca7e787ec4f2cff4b8dd12b

Files

8a66b0f1bd51ef92981041dde13caf8912569cafeca7e787ec4f2cff4b8dd12b
.dll regsvr32 windows:4 windows x86 arch:x86

5d2f5abeca268ec50902fd2ebeb9c4ed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msvbvm60

__vbaVarTstGt

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 83KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE