4d0fce69dc40b6ebd87013c5b8d1d1b8 | Triage

Sharing

General

Target

4d0fce69dc40b6ebd87013c5b8d1d1b8
Size

78KB
MD5

4d0fce69dc40b6ebd87013c5b8d1d1b8
SHA1

8613bf77077a77fbde7599a12f48025716c0b912
SHA256

d8865e80ebf22c1e15ed9622a2e2e3c6b36ceaa5692e1bd7e3e947148d8e6245
SHA512

462166a6878b123a847d569b8deb9fa338aad4b4ef221739b6c586cbbef5c73447343a63508d745091773396eb743e463c605c61ed0119657972d39cd6811045
SSDEEP

1536:trZtaewPBaF79KuUbYLKjjna7SGJFC4M+kwFZJSSBomx1FT6rX+bxf7:tDahPBarKpbqKjj0PJFPkwF3sMMrub

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d0fce69dc40b6ebd87013c5b8d1d1b8

Files

4d0fce69dc40b6ebd87013c5b8d1d1b8
.exe windows:4 windows x86 arch:x86

375c7402f8748b0ff0440c4212cdf8d8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
ExitProcess
GetModuleHandleA

msvbvm60

__vbaVarSub

Sections

pec1
Size: 22KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 44KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mjg
Size: - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE