035912a4c6eb846ce71761e5490c05b0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

035912a4c6eb846ce71761e5490c05b0
Size

15KB
MD5

035912a4c6eb846ce71761e5490c05b0
SHA1

7142011cf4ea12a78f52fa5cd916999bb1a158d3
SHA256

a191af68f0671a19a131346d986f236e03f3b0e0b05d2455bfba22ac2b0db052
SHA512

69e16be8c2b9652cc4128bac1b704391f40525ae3362004e95db061d4cc6ce72233711a9029a25b915372eee76137dad0fcd4e98b5323b2bdc23fef946010c08
SSDEEP

192:vB/54GcKCj30cZvVIQCsTwmi+GxGxYGD589fU3xEY8ouO0S2agyy/kj03aqtpv+r:v3Cj30xQv8d8xfDmNXc8asp2SSUXG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
035912a4c6eb846ce71761e5490c05b0

Files

035912a4c6eb846ce71761e5490c05b0
.exe windows:4 windows x86 arch:x86

5d00dfc2e6f70d81ea7fe735c02bf4bd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
ord516
ord518
ord593
ord594
ord598
ord631
ord632
ord526
DllFunctionCall
__vbaExceptHandler
ord607
ord608
ProcCallEngine
ord537
ord648
ord576
ord100
ord689
ord610
ord616
ord617

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ