2dd7970ea3e9bec9667aa5190f91ab09 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2dd7970ea3e9bec9667aa5190f91ab09
Size

48KB
MD5

2dd7970ea3e9bec9667aa5190f91ab09
SHA1

11ed1c2811009bea44089343f1a52a4ba0df9ba8
SHA256

3d77be66a5bcd41f34977e233f328998e76ac149f9dcb67e4900012e69a3c3f8
SHA512

447a6ece9f38373baa7288638e9235302a2689d5e3b18c3249f4003a346e52a4f6f46fe5383ec81e8bfa816ad1231a4ff3d9177ae1d20486cc83b84fac0d64cf
SSDEEP

768:aiNUTYjGbOJNONjCVPCEsokl/9++RjJR9ec:atMKb1ucokl/nMc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2dd7970ea3e9bec9667aa5190f91ab09

Files

2dd7970ea3e9bec9667aa5190f91ab09
.exe windows:4 windows x86 arch:x86

2b95def43c645bdec2b2bb4bc3b94fa4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord516
ord595
ord631
ord709
ord632
ord525
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord564
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord530
ord608
ord609
ord717
ProcCallEngine
ord537
ord644
ord645
ord648
ord685
ord100
ord689
ord617

Sections

.text
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ