b4439b08211199abcd333e2de763817f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4439b08211199abcd333e2de763817f
Size

424KB
MD5

b4439b08211199abcd333e2de763817f
SHA1

8d8c73c78fe39a470ea4700ff76533e37d83a5e6
SHA256

37a857d5b0839042b3bd8c352bbabc412f32c353d5753c12000e59161f143252
SHA512

e5cd09b53dbc676f14a3a8544841bd45878b5b742055a710f8d6c8225da8ba2990483786611166a4a2585111968ff63cd1f1ce3e634def40752953741c1a7950
SSDEEP

3072:2f1a4JpVUmpT8AI9ba4k5f/hP5pft2WnK2P8nFseyLj1rfG:2TxeZyLj1b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4439b08211199abcd333e2de763817f

Files

b4439b08211199abcd333e2de763817f
.exe windows:4 windows x86 arch:x86

b9189dbc37647b4ffebcb02ff184043a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord665
ord631
ord709
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord608
ord717
ProcCallEngine
ord644
ord537
ord681
ord685
ord100
ord616
ord581

Sections

.text
Size: 416KB - Virtual size: 413KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ