0135ba45e3512f82bd723ea8b59ce279 | Triage

Sharing

General

Target

0135ba45e3512f82bd723ea8b59ce279
Size

268KB
MD5

0135ba45e3512f82bd723ea8b59ce279
SHA1

b98f2971432b2f93750173c97dceb4ee4b6baaa6
SHA256

e2ef7e68f32fce9d3340ea363cd922a8456081eafd1447e0684173bd771adc38
SHA512

ca547b062af9816fdd07492e497cebe715ffca61b6b4367bde877917b83893736df4b8221e5ab1854977d790bff2479f9a3b59ef58f4b23f41a9820876907d5b
SSDEEP

3072:dj5L/kGGr7hott+69wSsCtKh9UqmEarxAi9K8aqOSsVYixRdFQQBuhmrhZprVx1:B5L/tFZgzS+71BdFQQBuQrhZprVx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0135ba45e3512f82bd723ea8b59ce279

Files

0135ba45e3512f82bd723ea8b59ce279
.exe windows:4 windows x86 arch:x86

5f7e056e74a6625351bbb73ca81d740a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord516
ord518
ord593
ord594
ord595
ord598
ord631
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord606
ord607
ord608
ord717
ord319
ProcCallEngine
ord535
ord537
ord648
ord571
ord573
ord100
ord689
ord610
ord320
ord612
ord321
ord616
ord617
ord619
ord581

Sections

.text
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ