55c2b349e461a32a06db9826a854e8b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55c2b349e461a32a06db9826a854e8b9
Size

204KB
MD5

55c2b349e461a32a06db9826a854e8b9
SHA1

8100263a74a32904d2d5f245fe7a2b37993894d5
SHA256

5c3db03016e530ee62ff0285bfc82d2385b73a0254149558d2332707abf7cd64
SHA512

28454d91eb3138ceaf1cc3db57543cbbe348d12de688ed7cefec86a818df27f8a85762178b41405ba533782ea0d5c43669c8bf65af072512a5c41b97c96c58d7
SSDEEP

6144:jxXQAHe8fAIwgw4lAAx9BhmroAiHUqWEWHUn+dyX:dQAHe8fAIwgw4lAAx9BhmroAizv+dyX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55c2b349e461a32a06db9826a854e8b9

Files

55c2b349e461a32a06db9826a854e8b9
.exe windows:4 windows x86 arch:x86

a04ed136239998b40eee333862a27700

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord626
ord666
ord667
ord631
ord632
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord606
ord607
ord608
ord716
ord717
ProcCallEngine
ord537
ord644
ord572
ord573
ord576
ord100
ord579
ord616
ord617
ord618
ord619
ord650

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ