0cc04765d606758cf1e028e339ff6f34 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0cc04765d606758cf1e028e339ff6f34
Size

97KB
MD5

0cc04765d606758cf1e028e339ff6f34
SHA1

cc9abef32284d1c239eb2f19a0f267ab79745abb
SHA256

5dd25206506660f80d5316ce1bc6e13126db3d7e3d60d0f5fa3d6a9b680e9912
SHA512

0b043d796069d1ffe8c66080ba909903116d0304c1ca29b9c516a4dc3df2ca3be7731ac215aea74ab0e2bbb80a2cef181a1199b33c8660d36753fe0218919b3a
SSDEEP

192:z0+Jrl7/bMCeb9iDtBZE3WKNLEk4MLly7y7y7y7y7y7y7y7y7y7y7y7y7y7y7y7x:zJB/bMn5iBBZBKyk4MLr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0cc04765d606758cf1e028e339ff6f34

Files

0cc04765d606758cf1e028e339ff6f34
.exe windows:4 windows x86 arch:x86

4b1e39f3a87e7479208d24f3bee5fad4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord631
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ProcCallEngine
ord644
ord572
ord100
ord618

Sections

Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 7B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE