04444759ccce3870a7fd815957ad4140 | Triage

Sharing

General

Target

04444759ccce3870a7fd815957ad4140
Size

34KB
MD5

04444759ccce3870a7fd815957ad4140
SHA1

74fd0f636d37cfad5b2560ca2ea53497a59a1cae
SHA256

715703c6cd97beec1ab7e5e07f97dfec9132119e6aaba4ada0d2ec400c44eb31
SHA512

47743f4aa3dafbc374365672b0081a737fae26ed13a28293abec160f09a234509aa5efc515037cba2585859443b544481e357eda2c131e8352c73b29432f20cd
SSDEEP

192:imD3MBkAi/gDEmDPuh13NyL8xl/mDA/vxYmDWaz4mDcmDINe8EhMZVh2601bhzUx:MkwGdo8x5vxpMsS260bhYZOn9p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04444759ccce3870a7fd815957ad4140

Files

04444759ccce3870a7fd815957ad4140
.exe windows:4 windows x86 arch:x86

d60ae9a3426f076d0b18d50c94e30bbc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm50

MethCallEngine
EVENT_SINK_AddRef
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord100

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ