45166cfa0ff439011902b9bbf8f1a4e5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45166cfa0ff439011902b9bbf8f1a4e5
Size

56KB
MD5

45166cfa0ff439011902b9bbf8f1a4e5
SHA1

fb4fce6463cfd965e223d045624e53fc53685007
SHA256

e176bece20bffe6206aa1b4689c89022ffd9e3ae930f2d79a0bcdafed2965111
SHA512

4f720b543d5b95f937482dcf4eb6f91d8f7990318389c3c4c1af198a93796c3d91039c99239aa50cdc07be2e6f7e0ac036507d52c280c86e2b29a72c26c54bec
SSDEEP

192:fLKLNQsGC5OFwTKr1w1PFBcz4TTg3gR5NYotdEHAOFwTKr1w1PFBcz4TT4gHDrYv:gQY5OFa5iDgOFHgHDrYOF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45166cfa0ff439011902b9bbf8f1a4e5

Files

45166cfa0ff439011902b9bbf8f1a4e5
.exe windows:4 windows x86 arch:x86

c9117326ae9a472c270c15b795431047

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord644
ord100

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ