7cfa728da062dec03611711a2a893266 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7cfa728da062dec03611711a2a893266
Size

116KB
MD5

7cfa728da062dec03611711a2a893266
SHA1

f87a70d56d26ce6b5d1bb7cf2756ef788a2b41c1
SHA256

65da285da2c480841a41bacb46c629b3e94bd19f2eac68a5a63a73f9f4f42817
SHA512

52db9be13ae5e8d473b5b9ad7add600d5d9abae41e0a405dfc19b0a4f088a08e059db112e680dcfc59ecfd188927e2edcf015c221ad8b2c94470bfa829740ed9
SSDEEP

1536:EQqrIhC3h/iFUtuhC3h/iFUtAZgK8ZUJ4/Z3kh:E/YeKECeKEEgK8S4K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7cfa728da062dec03611711a2a893266

Files

7cfa728da062dec03611711a2a893266
.exe windows:4 windows x86 arch:x86

08afdf0c8b96d3d11cbbd435972bf750

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord666
ord598
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord570
ord100
ord616

Sections

.text
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ