57b863f669af4a4537844c446b26e230 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

57b863f669af4a4537844c446b26e230
Size

300KB
MD5

57b863f669af4a4537844c446b26e230
SHA1

439b56a937fe3355909dc96726593e65f1b61889
SHA256

d8495449fc10f187274ce0b782161de74a5f4b93d63c3a891b683eed6db1e076
SHA512

d96e4bf6c88dc5cb0a66236789481c6794da6a5334195b20b092481333d835bc735d0e37d4a69f560337caec267c3c89844512c1d214a7a9947812fef78e3a0b
SSDEEP

6144:sANY98VMyrv7Kv/PcucqaZcoScrJkBeMjsgnu:sA6+Oyrv7Kvk3ZNDFceMAgnu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
57b863f669af4a4537844c446b26e230

Files

57b863f669af4a4537844c446b26e230
.exe windows:4 windows x86 arch:x86

36723d9692c7a95f84b55933a5a81518

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord518
ord626
ord632
EVENT_SINK_AddRef
ord560
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord607
ord608
ord717
ProcCallEngine
ord644
ord648
ord573
ord578
ord100

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ