bb2707f9c80ff3c23600c3a611af730e | Triage

Sharing

General

Target

bb2707f9c80ff3c23600c3a611af730e
Size

180KB
MD5

bb2707f9c80ff3c23600c3a611af730e
SHA1

e8f2ed68a7c1c499b37810a24d11e254f5dcb8f8
SHA256

6ab3a5c5cf64765758eceb241aad5ba0f866f2639daf388a01965d949f417682
SHA512

17c241f753c30ecd529e66a33b2d294d68ca868a2309bd1def236c9c2e698074454494356a66fb1ee58700e19d130a1a8a8851e1f2fd47802c01d870e49a5bad
SSDEEP

3072:bqCEUP0Fx0k4MWJjFalEadPFO0c6p866zn/431FZdsALSU/:c1dyU/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb2707f9c80ff3c23600c3a611af730e

Files

bb2707f9c80ff3c23600c3a611af730e
.exe windows:4 windows x86 arch:x86

e7dea642127d9735a3a9dead67823cef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord665
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ProcCallEngine
ord644
ord100

Sections

.text
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ