39cac08649f2b554d1a60800523f2be6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39cac08649f2b554d1a60800523f2be6
Size

182KB
MD5

39cac08649f2b554d1a60800523f2be6
SHA1

3f39a20779826126d8e517dcfbd60889bd979a86
SHA256

e96f72495e850c757d617581da142760b68094620a4c560fca5d256f3b769799
SHA512

7bfb0fe76446bf41d75d7e3b8ce4bb89ac40dfc131d0036ebcc9eed4543e1b0374bf54808c063435ebccc7764ad0c4442270512ab00b3bf1d7be61e344da4f13
SSDEEP

3072:tuI9oMeBrSUGMvg+Ga1byZaVcn2p/L5vEOL304ckfV+t1aNdl/of2:taBvgqbygVcn2NL1Ey3LNQMNdlAu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39cac08649f2b554d1a60800523f2be6

Files

39cac08649f2b554d1a60800523f2be6
.exe windows:4 windows x86 arch:x86

39fe68e7ed3ce72c5f86e56abaf52bac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord518
ord519
ord553
ord660
ord593
ord598
ord632
ord525
ord526
EVENT_SINK_AddRef
ord527
ord529
DllFunctionCall
ord563
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord606
ord608
ord717
ProcCallEngine
ord535
ord537
ord644
ord570
ord648
ord578
ord100
ord610
ord616
ord617
ord619
ord542
ord545
ord548
ord581

Sections

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 122KB - Virtual size: 122KB