55d098943cab13e723b828bf331c8c86 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55d098943cab13e723b828bf331c8c86
Size

20KB
MD5

55d098943cab13e723b828bf331c8c86
SHA1

0d5c7984453ef3dc3b1d20efb0a68caa54291f8e
SHA256

bb698f6b10538ef2d1355dd3b49ac076d86d0a51f6c3da2cfc2eaa9518f6a792
SHA512

1806468b9ca97623ab122f2f92c68a66f05cd5e2a5a9c170d0fab14168fbb81d51808be6623bd3d0626a8cafa62479aa2d538799df9e748246293bc3b7490b65
SSDEEP

192:JuMLIaGl4IP/MgL4Oc5vGp3hfhM9OQgWHWxs:xLZ84IPSOc5eR2vLWxs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55d098943cab13e723b828bf331c8c86

Files

55d098943cab13e723b828bf331c8c86
.exe windows:4 windows x86 arch:x86

e1e3db40a105c39e887ea723c86ef6ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord595
ord597
ord599
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord717
ProcCallEngine
ord644
ord570
ord685
ord100
ord616

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ