25196f5924dc1f8b0faf5d7171727f52 | Triage

Sharing

General

Target

25196f5924dc1f8b0faf5d7171727f52
Size

28KB
MD5

25196f5924dc1f8b0faf5d7171727f52
SHA1

f015c83ca7801b012cfa39a624e4e2add10f210d
SHA256

50f4420490e3d53db685b7039d2f5bd617bcf3a03b425e0cece06828838de926
SHA512

275c0c146088e0773773beb8e51d9fca94a7c0f236b83550f1ab5bad693a0bcfea60ea1b4ff34a06bb9b6184ad04f45695f64c82294d1f2bda06da39b62bedb8
SSDEEP

192:Bv2+POvvWCm6TfoXvv48UDiiN8Ey0GDTQh0Z7VOX7bQ5oKila2CWWHY9utRYgvs3:BvNLh/vXgiQIViwLilxCWWHYYtRGKW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25196f5924dc1f8b0faf5d7171727f52

Files

25196f5924dc1f8b0faf5d7171727f52
.exe windows:4 windows x86 arch:x86

7825319ea1befbce6eeaa4e8702e10a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord519
ord595
ord598
ord709
ord631
ord632
ord525
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord564
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ord717
ProcCallEngine
ord644
ord681
ord100
ord689
ord610
ord617

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ