768d4b105fa72a9fb72f907d974ee943 | Triage

Sharing

General

Target

768d4b105fa72a9fb72f907d974ee943
Size

425KB
MD5

768d4b105fa72a9fb72f907d974ee943
SHA1

ba9786aa14de1b4870859772b09deeb2cc41a7a5
SHA256

46db69f02b1a020278ba62754a12d07032707c2f0b9bce632ab428904292fd11
SHA512

5d43ff31dd73d74c0d8886e7aff8069a12122a793f57397f89ed61d4ed31b45616dd410e72fc69d8667e9cdee1e81728b511d7615cb8bfac240fce4238d240c9
SSDEEP

6144:NHuMborPtk1318WrdyiJoOpJVZQMborPtCLC:cF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
768d4b105fa72a9fb72f907d974ee943

Files

768d4b105fa72a9fb72f907d974ee943
.exe windows:4 windows x86 arch:x86

5bf839823bf0ff3f943ff1666a6bda97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord628
ord593
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ProcCallEngine
ord644
ord537
ord100
ord581

Sections

Size: 323KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 7B - Virtual size: 7B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE