97a1bae9ab1c6e229db54c66abe91548 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

97a1bae9ab1c6e229db54c66abe91548
Size

72KB
MD5

97a1bae9ab1c6e229db54c66abe91548
SHA1

59fa0352710a336203f5b87f6bbfc6e0fdbbd0ca
SHA256

5110659b03d315088c67b26b9188dfc446d1158b3c48a729fbfc029d34b565bd
SHA512

d65895c9e19286badd086f00d0c6c90c9a68314d3ef03ead1d40836125b9f0343254052b65023c47abcb1cd8f04c276f48f174b7c2b57b01de05eef3ede9bda2
SSDEEP

768:AGh1GQAaQmBDxe2O6RkVemlaATFM2V6EdBj7I8O6RkVemlaDe3D+aQm2h1GQ0:rrmmBDx/vq0ml9JL7I8vq0ml2oDim2r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97a1bae9ab1c6e229db54c66abe91548

Files

97a1bae9ab1c6e229db54c66abe91548
.exe windows:4 windows x86 arch:x86

556e52507656ace2105df59ea525dafa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord518
ord526
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ord716
ord100
ord616
ord617

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ