183b631e9364003cdc7fa024758b7c6f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

183b631e9364003cdc7fa024758b7c6f
Size

20KB
MD5

183b631e9364003cdc7fa024758b7c6f
SHA1

03395b9ff598bea6a502d03bbb8ffff74a4904c5
SHA256

33e1c9b7c429ac306b23bb46d535ad5a4862ac640ea789580f64ce46c8a7a7b4
SHA512

d17a2d5130502e50f513d84dbe5c2d23d90763d32999dc0c040d396c72f8e97768c050a4cd260b15b1d85d89ab56dff322019592765ea171144deeea1c5f6eb2
SSDEEP

192:JUgLKZmCU8bvyKePTN8ZOmrfgmCVWwcwbLBEvBUg:JKZ4Ker2ZFfgyNMLBEv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
183b631e9364003cdc7fa024758b7c6f

Files

183b631e9364003cdc7fa024758b7c6f
.exe windows:4 windows x86 arch:x86

f75390370eed681495f1835b459b8faf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord632
EVENT_SINK_AddRef
ord561
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ProcCallEngine
ord576
ord685
ord100

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ