56c743b21111d8f10620a6f5aa1b50fd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

56c743b21111d8f10620a6f5aa1b50fd
Size

76KB
MD5

56c743b21111d8f10620a6f5aa1b50fd
SHA1

fae52e709fbe1d4e1df873346d615ab16162105d
SHA256

d9559343b2d2a692181868aa6f3a2d999c7010c5a6a91610ce6e196e07871594
SHA512

3ac186358e6055ff2da29e559294e64d695a6838694443ed11e6170a33093ae5d562689eb7bd8aa6586d45e5882b3baa94011b236e8201f27f9123b1755baeaf
SSDEEP

1536:bcMr0GymAHq1KwhgF5Z1ASOMFj4U64yoG2yeP:bcMormAHq1dhgFL17OMFj/9keP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56c743b21111d8f10620a6f5aa1b50fd

Files

56c743b21111d8f10620a6f5aa1b50fd
.exe windows:4 windows x86 arch:x86

71208c166a5b2aff14ea5c77e4e2128c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord593
ord594
ord520
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord607
ord608
ord716
ord531
ProcCallEngine
ord537
ord645
ord571
ord685
ord100
ord616
ord617

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ