aae547ebeb2985012a66e2a96f530572 | Triage

Sharing

General

Target

aae547ebeb2985012a66e2a96f530572
Size

122KB
MD5

aae547ebeb2985012a66e2a96f530572
SHA1

cfd5ade853a93be4b7ba409522bde40701129ca3
SHA256

593aeb091dff953577e3f6e6ceb1757a56a9387277b43ded5c26350f77b6c563
SHA512

f506fb14d811f91b9e9e3fd7dd96494ebf9ac1c14a5b252049b2769307d470e71bc60e3207b7020f0a01667e87bfa93ef324a29e43fb18c84a7b82241902e795
SSDEEP

3072:LoAwAggTXAQjePFdZoqaSoWaGPuhP0W/sfHPMJwo5m0+nTK:0TAggTXSPJojyuOOovMNp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aae547ebeb2985012a66e2a96f530572

Files

aae547ebeb2985012a66e2a96f530572
.exe windows:4 windows x86 arch:x86

d69c6479660f6fc7022a75a7d35f4ebe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msvbvm60

__vbaVarSub

Sections

.text
Size: 116KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE