337d42c58701f30974ce9e29c70f96b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

337d42c58701f30974ce9e29c70f96b9
Size

60KB
MD5

337d42c58701f30974ce9e29c70f96b9
SHA1

22055d9226b32fce6df6e20b73ebfd1072d4d128
SHA256

09e20b4b69704bbf346c93f4002bc0da59e944529bd9a4ac0c59b7e950a9b7c4
SHA512

5847206d676152c1a59aa37b27f4557591127cecdd10f6cd8792bc1c1924b73cf87a31d252851b72c271459f3bd8bb00a494881e804cdd4a77302ba366586fc1
SSDEEP

1536:JFL9KPtskbtrDASaPXNtMiZLa9u8W5rIm:JFLoVgRkcaI81m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
337d42c58701f30974ce9e29c70f96b9

Files

337d42c58701f30974ce9e29c70f96b9
.exe windows:4 windows x86 arch:x86

611eb1c8de304318c16975c5a3ac3d74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord595
ord631
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ord717
ord644
ord685
ord100

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ