0025994198b6a19389ff103dbe313884 | Triage

Sharing

General

Target

0025994198b6a19389ff103dbe313884
Size

16KB
MD5

0025994198b6a19389ff103dbe313884
SHA1

7c2ed1cabefd8bc5a2a2fd3fc0acecabdd09deef
SHA256

f338cbdb52a2f5e98c4baaa7a062863305c829edf2d6123bb47efb2abe2a9933
SHA512

9d676e04524b49939d959ac3462f6e2f58f1a3d9a3f56871abca4b0cb5d4d448b66b018d33959b616c4625ac22c7d7c1b3cb6493b72b668d9a77706b70debe98
SSDEEP

96:KXZjIJyE1uszG7BM4fRqsh9t4QKBkNRtuwOrb5xsHxQNR+7BBgUTElsSvbrDs2:MjWb1usyp3HWPEyGBas

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0025994198b6a19389ff103dbe313884

Files

0025994198b6a19389ff103dbe313884
.exe windows:4 windows x86 arch:x86

5a1f6a7664dff6a05a86fb1c447fff4c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord666
ord526
DllFunctionCall
ord600
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord644
ord570
ord100
ord616

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 884B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ