4e0c051bacac7dc648def457df1f615e | Triage

Sharing

General

Target

4e0c051bacac7dc648def457df1f615e
Size

136KB
MD5

4e0c051bacac7dc648def457df1f615e
SHA1

14ad4731a62f01f4cb008742a32880d8c09eef70
SHA256

28bbddabe6579f37ab115f7fd7e2ef33f254b6b270b52c7a55b58af17839a3af
SHA512

5320e03322dcf2c69de05d091383fe4fa1eabb18e2bb5bddc1f86466abf6f4ec769fc65758079ac953a05919e88d1df8429dfeaa6936ad2f13bdda93e653ce24
SSDEEP

3072:L5PDykjCBx2hypK7D6zdX3+P+kdMTZxT0Q:Mxt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4e0c051bacac7dc648def457df1f615e

Files

4e0c051bacac7dc648def457df1f615e
.exe windows:4 windows x86 arch:x86

262889fed7161dc428064854dcf90cf0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord628
EVENT_SINK_AddRef
DllFunctionCall
ord563
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord717
ProcCallEngine
ord644
ord100

Sections

.text
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ