9975c21ddc9f11e5ec89ad7e498859fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9975c21ddc9f11e5ec89ad7e498859fc
Size

49KB
MD5

9975c21ddc9f11e5ec89ad7e498859fc
SHA1

6a497acf8b131d7fed66711367ced7bae94340d8
SHA256

bd2e723491b58dc8b4cdcd5355db6931f78c19a5d3084d71072a7b9e3f1e7c41
SHA512

615bff4a98137787b163d64cc6324c46c7b6e8e22921f6ffcbcf3825a329e8df9e292cb06b6cd0d7fbef92a199c3646c3eb88956d8546a86b41e57adeaba5c39
SSDEEP

768:r90LQbuH5swzVSKEIq+UZxek9ZyFKlu9Qm9E8j6vYZf:ZxuHYRxJyFKo9Ht

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9975c21ddc9f11e5ec89ad7e498859fc

Files

9975c21ddc9f11e5ec89ad7e498859fc
.exe windows:4 windows x86 arch:x86

b2f0435a2f7ccf90502116d10576888e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord631
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord608
ord717
ProcCallEngine
ord537
ord644
ord570
ord573
ord681
ord100
ord619

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ