142d28785257fb284e635a9e265d8d06 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

142d28785257fb284e635a9e265d8d06
Size

348KB
MD5

142d28785257fb284e635a9e265d8d06
SHA1

f5e25174964b2927f4b880dfadb1a02e924f58fb
SHA256

5c622753833e4c2413ba0c47f4639abd4e0674b4c4f34efafe0cc21e0941c438
SHA512

2221dd5e229d2d430c6a56c0a48a87cd95cc680b0a8f55b5c5ce5c3d29229e4a2599417d435c4b59c8dd14ccb9ce5b427f39286b9fcf6b015f5c34ef46ae8549
SSDEEP

6144:kRpLpRv1YypV08bB7dhLs0dahn4SMUrL+xZHVvlpi2UPMMEFGBuE:kRpFRvuOhrahnhM6yx7lE2UEhF6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
142d28785257fb284e635a9e265d8d06

Files

142d28785257fb284e635a9e265d8d06
.exe windows:4 windows x86 arch:x86

ecb3c86ba4e6ec13ec10931a0c46d2dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord644
ord573
ord100
ord617
ord619

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 296KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ