97c2fe69ece26a60bff44dacd1802030 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

97c2fe69ece26a60bff44dacd1802030
Size

44KB
MD5

97c2fe69ece26a60bff44dacd1802030
SHA1

505f3917c9632a146a802b35bd8479da785852f7
SHA256

e2d33fbd5f7d771800cc515dff3608a850b7b2f5320b8bf2e1d56e4de06652d1
SHA512

015138d1681a0d0ccb29d08ae7d17656f5a7892403ac88af92c7a62ad022c0805f11c8b8ee6abe220690808b2d0bbbb13c2b033b9d1fccd0ebc5aa4fcbae7c5a
SSDEEP

384:lqD4/zME5axF3BeGsYTXnrupKE83HBssVn1/rg8G+Kx538/PpqpvBSUeWaW8RGSh:L7ME5ENsYLnruQphssTr9UsZtDVRn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97c2fe69ece26a60bff44dacd1802030

Files

97c2fe69ece26a60bff44dacd1802030
.exe windows:4 windows x86 arch:x86

a43ffa86b7a179a05cf4222c76d773fa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord631
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord606
ord717
ProcCallEngine
ord644
ord572
ord685
ord100
ord616

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ