a098d5775d734e760d25f449dba5768d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a098d5775d734e760d25f449dba5768d
Size

120KB
MD5

a098d5775d734e760d25f449dba5768d
SHA1

a8866bc8be639c19d7a82de18ed1fb820765076c
SHA256

1a8a741da97b70ffee2d89942e57dbdbc12776d8e451827bcf046fce4ceac72c
SHA512

ff8af4e2278f6ca06a0e6ffae0bf923087c1643a652c0845435effa5aad1d2a6288c88e829f20923464c7b68c57f2e7a7c2cd4b631ef15ac78b4cdf19be29814
SSDEEP

1536:h8xCOaKX0RTjJxb/7BI4/WoqmZshjEI4iKEFXvxKqHs+4q+WakB9gqHsDKEFXvxj:es7B41LF/XeyMq+WakB9gyuXH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a098d5775d734e760d25f449dba5768d

Files

a098d5775d734e760d25f449dba5768d
.exe windows:4 windows x86 arch:x86

34980eb00d9e0b9c5e1dcc64813206c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord518
ord595
ord598
ord520
ord525
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord608
ProcCallEngine
ord537
ord645
ord681
ord578
ord100
ord616
ord617
ord619

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ