15d0c59a5a4d8e57b91a99c2b64e51bb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15d0c59a5a4d8e57b91a99c2b64e51bb
Size

88KB
MD5

15d0c59a5a4d8e57b91a99c2b64e51bb
SHA1

5d42b607f07981d174c1cc129789494f6d5cec13
SHA256

c4c69c810e780003f103b937787b69f787cf88607fb4aa4f62689f59da65b3b8
SHA512

162ad5287d82c367ff12f1ba9b6e30a4f89ec6b860a5e4eb7a8fa983fa90e27c14f274a80fded9cc28cd4f7578c699929f11eee2fbfc4ef1ee375dccd2f2fb2b
SSDEEP

1536:HJzDl9Elmq4hIDi0UDMr6oT9oiX6VoleeAOQhY:H559ElBFi0UCTbhDAU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15d0c59a5a4d8e57b91a99c2b64e51bb

Files

15d0c59a5a4d8e57b91a99c2b64e51bb
.exe windows:4 windows x86 arch:x86

cca93007bde86fab4386d994c9d0abf7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord516
ord595
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ord717
ProcCallEngine
ord644
ord570
ord681
ord100
ord616

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ