7a27be7b50457ee8e790c37ce437f981 | Triage

Sharing

General

Target

7a27be7b50457ee8e790c37ce437f981
Size

360KB
MD5

7a27be7b50457ee8e790c37ce437f981
SHA1

11bc5e24485ae012ec21318c02b2cecf56999fba
SHA256

99b5eb11b0c380aa76332d7dd9bd4dbfbb47cc5083bbda00ad7bd471293739ef
SHA512

33fa1b4466b45fdfcd5212abbc571c1747868a657115c613cc425007887f220462980b910bf5ea749d04069976bd91670ebc932218f6b11b5834aa665d1ad71a
SSDEEP

6144:M2hnMNeNzV6fapZBjolVfHImmonOrcY3fK7RxovXOqIbODUOHA6pcISOdOEpWZ9N:BZMiZTBjol+mROgxRebIYlpcITdla9p3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a27be7b50457ee8e790c37ce437f981

Files

7a27be7b50457ee8e790c37ce437f981
.exe windows:4 windows x86 arch:x86

a6cf44522dd78056b86fb3d78e649e2b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord595
ord598
ord631
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord608
ProcCallEngine
ord644
ord537
ord645
ord573
ord681
ord100
ord617
ord650
ord581

Sections

.text
Size: 352KB - Virtual size: 350KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ