1f46b0a16177e9821cf182c056a4a335 | Triage

Sharing

General

Target

1f46b0a16177e9821cf182c056a4a335
Size

27KB
MD5

1f46b0a16177e9821cf182c056a4a335
SHA1

436a3b2dbfb678180031d25a5b7938e202b03831
SHA256

76595afede91fb5674140fb57d24af63e75f8523f8904c51e4642a2cb19e00e0
SHA512

e77df124b20cd66e3070f4a6c69fc7f3ae0fde9aea1887f92cc5a147cf1e61796601fabd39adc9033de460bb9dafba410982313f535d00e569b311a23a9c505b
SSDEEP

192:zxZdNJKHRb31o3rj1zapqQGmN6CG/8pQdiag4aCJ28gqj7v4bSpI6cWQi8Xn1Q+/:jJORb3GbjMpqyRG/aQdiaJ2ak1Qgb0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f46b0a16177e9821cf182c056a4a335

Files

1f46b0a16177e9821cf182c056a4a335
.exe windows:4 windows x86 arch:x86

6fd7a4c2036fa8a2608fe978d42f502a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm50

MethCallEngine
ord516
ord595
ord598
ord520
ord632
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord532
ProcCallEngine
ord535
ord537
ord645
ord571
ord685
ord100
ord616
ord617
ord652
ord580

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ