74d5a4ce54ae8ceff5f28bb9f20dd60f | Triage

Sharing

General

Target

74d5a4ce54ae8ceff5f28bb9f20dd60f
Size

40KB
MD5

74d5a4ce54ae8ceff5f28bb9f20dd60f
SHA1

af5fc283160087076fccf84c12898f2c1e68338b
SHA256

d944c4661a687f976be4d48237661002711e5ec1f41b591438a3da0c5d2ddc18
SHA512

0028a5ad3d6aa15b1e97f1b70949612064d06d3e006d86dcad953e57405fbfefb1c6d4919f5910c34d0f3b3b24e4c080b1d4bcbb4c581749e2be99f6458ffcd5
SSDEEP

384:gRBPspDBmFRUcLAv4aw2JYdemNvmjfHggNkomWLLQHlFA:QBUpdmFCf4FVdj9mjVNkvWLw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74d5a4ce54ae8ceff5f28bb9f20dd60f

Files

74d5a4ce54ae8ceff5f28bb9f20dd60f
.dll regsvr32 windows:4 windows x86 arch:x86

e7b0f1ca9512c70cbd8ca9dad55c8946

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvbvm60

EVENT_SINK_GetIDsOfNames
MethCallEngine
EVENT_SINK_Invoke
Zombie_GetTypeInfo
EVENT_SINK2_Release
ord592
ord520
ord523
ord525
EVENT_SINK_AddRef
DllFunctionCall
Zombie_GetTypeInfoCount
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord607
ord319
ProcCallEngine
ord537
ord644
ord645
ord648
ord571
ord573
EVENT_SINK2_AddRef
ord101
ord102
ord103
ord104
ord105
ord320
ord321
ord616
ord617

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ