254706a2a376a8a596c25ca9b590eaf1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

254706a2a376a8a596c25ca9b590eaf1
Size

144KB
MD5

254706a2a376a8a596c25ca9b590eaf1
SHA1

7bbf896bfc4802b9ba00eab7fe0f8660834912aa
SHA256

47846ed0e056e33f353875f539898f0fe97d08695a81671bb07f2d3839326908
SHA512

942450204f1196d4cb9e1d54128a0917bf74d59a5cd5ce5a3be53348fbf5634186121873061be68c5a715e264fe1160f58132f05b49f08edcef4c98d9d562acf
SSDEEP

3072:BlKloQSrkKgRENEI5apGTwQqVMTW0hodP8A6HFlPNv:B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
254706a2a376a8a596c25ca9b590eaf1

Files

254706a2a376a8a596c25ca9b590eaf1
.exe windows:4 windows x86 arch:x86

c072c88f746ced9d7f402634b90fbeb6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord631
ord632
EVENT_SINK_AddRef
ord562
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord606
ord608
ProcCallEngine
ord644
ord572
ord100

Sections

.text
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ