8afcf62229ba5910682756117ed7427a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8afcf62229ba5910682756117ed7427a
Size

120KB
MD5

8afcf62229ba5910682756117ed7427a
SHA1

c793bbf48cab1504f890df4aab33737a71a80a4a
SHA256

f1e8aacc6ada3e973c6d7088852133fa216325ceb5395454357f6b18a613a953
SHA512

e96123ee52d993d28736569801cbaa0b90378640aa77370d3c73448ac31d70e733b247f7fe5458f7ffd6ff9e6d0f982cbf1af02a852dfeb18a368e8ef36a6694
SSDEEP

1536:7Yvo0ZEDk7+mu97jSfQGt0ufXbIYCs0VTCAg96AWa9GylahoR2WhqWNUEV+nh13E:IouE47+B97oQ6fXUHs0YaIDhhMv3axn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8afcf62229ba5910682756117ed7427a

Files

8afcf62229ba5910682756117ed7427a
.exe windows:4 windows x86 arch:x86

8da9b0165415dfe65aff506e64b84e5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

EVENT_SINK_GetIDsOfNames
MethCallEngine
EVENT_SINK_Invoke
ord660
ord662
ord666
ord667
Zombie_GetTypeInfo
ord669
ord593
ord594
ord595
ord599
ord631
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
Zombie_GetTypeInfoCount
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord713
ord716
ord717
ord319
ProcCallEngine
ord537
ord644
ord572
ord100
ord320
ord321
ord616
ord617
ord619
ord546

Sections

.text
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ