42da81aecb61b4a243ac9dc45b77f1ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42da81aecb61b4a243ac9dc45b77f1ac
Size

108KB
MD5

42da81aecb61b4a243ac9dc45b77f1ac
SHA1

0227629c3e8942b92e495c956e936b06407243ea
SHA256

4f54dde9d93cf27b32fe73208d27352851372e7b18584b7883a238bee3939f38
SHA512

36063aed728a1e6e83ae80b5717ae0a2bb0bc972bea1a5be603da69fe19fd95bfaadaba6495a0fc043b59de818a9ff9d5ed37cad8d084cfc561c7606423fe28c
SSDEEP

768:+5BMCl0Xc8yS5nO4rGQzTGfmgc33emu4v/eo4z7VP7LdGSu2HyTAzfMgTAzfM0Ci:+5IczxQVgd54vN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42da81aecb61b4a243ac9dc45b77f1ac

Files

42da81aecb61b4a243ac9dc45b77f1ac
.exe windows:4 windows x86 arch:x86

38f80bf8ebe89ea088997620a76ff533

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord303
ord309
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ProcCallEngine
ord537
ord645
ord576
ord100
ord616
ord617
ord618
ord580

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ