a16b46c863abf47a59f42dd68e2c6d77 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a16b46c863abf47a59f42dd68e2c6d77
Size

5.6MB
MD5

a16b46c863abf47a59f42dd68e2c6d77
SHA1

61153e7de6cd1e8d2d04271a8f61448de4093651
SHA256

dccd1044b18e9acab4f7e551a777d0f65e18d486ff8978d7ca2a0b555d93a90a
SHA512

9afdb19ddcd7b57660b06fb028b1922d9bd2edf47c9d080332bbf5ec85c6ce6cd1d754a0dbbcd0efa13c70b56a8bc3ce38934ec7626a66a7c43b3fd602ec2921
SSDEEP

98304:oKjRDx3FkWuW3PFw8I58lu9+Od8/XrU21ArTJnXVyoIqcYAK4MicHN:oiRl3F3T2N9+OOXg2IBXVy8cYs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a16b46c863abf47a59f42dd68e2c6d77

Files

a16b46c863abf47a59f42dd68e2c6d77
.exe windows:4 windows x86 arch:x86

662e98fbe64bf5e2fde57d5e6ddbc6c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ord717
ProcCallEngine
ord644
ord537
ord570
ord681
ord100
ord616

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.6MB - Virtual size: 5.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ