25c2cb4f8d5065c286d0b9592d9e87c3 | Triage

Sharing

General

Target

25c2cb4f8d5065c286d0b9592d9e87c3
Size

31KB
MD5

25c2cb4f8d5065c286d0b9592d9e87c3
SHA1

0a661db38fb68a4c5f34e906f0abae9f534fa1bd
SHA256

013bf1d566645964f4dc1cfd31d16badad06dffeb0c2aece57f6a7066e02776b
SHA512

dc8571a5410a9a2cf2354122a12486df43fe85c5a4be23e7290687b7acefbec28c2cb3c9b44ecfff95357e1768436ce96f1e3ac6812129f936d69c71d1653593
SSDEEP

384:sy1/LoKfNC/gOlkikHX9Pzf8Xk1X4ViA+oo//xxjAaPnc9+TOQVswSk9uQbjth7m:sj/g8gHCXk1Xb7CxeswN9gx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25c2cb4f8d5065c286d0b9592d9e87c3

Files

25c2cb4f8d5065c286d0b9592d9e87c3
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

8af1da8d9ca6a5bca67fbd61f32de534

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord666
ord595
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord530
ProcCallEngine
ord536
ord570
ord100

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ