23fefdce0e79d683d5a5704c69035383 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

23fefdce0e79d683d5a5704c69035383
Size

160KB
MD5

23fefdce0e79d683d5a5704c69035383
SHA1

1b83bd6e9c49edbd813cce7bd58a445207388f75
SHA256

c252106f81b470a193a3b7f0db2fbd2b1a98493fd1f41666b6fee42f8b5c6272
SHA512

a53f0f807251dc7612f2caae9c30e59ce066b52a1ec78407f2918453f0a083e836ee57785e486016c765c738d2374ef2659220007e30c67dea0d0e487db10c11
SSDEEP

3072:wjTFHkYy9xmisQAWuwHe66M1YL2Vi7p4hn+AfV3DV:wj5Vy35sQAWuYeiYL1u+EV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23fefdce0e79d683d5a5704c69035383

Files

23fefdce0e79d683d5a5704c69035383
.exe windows:4 windows x86 arch:x86

0e9e2d22c63507932487317776285c92

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
ord631
EVENT_SINK_AddRef
ord561
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord537
ord644
ord681
ord685
ord100
ord616
ord581

Sections

.
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 136KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ