559a8156e376e2ba542fe9e8d26b05b77f1313f872b54eb375952a7b44f7e9e3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

559a8156e376e2ba542fe9e8d26b05b77f1313f872b54eb375952a7b44f7e9e3
Size

24KB
MD5

238aa7feb23f52df2edc705d34d7f69c
SHA1

5e5bf82464aeb0de137160afadc212bd0f016a2c
SHA256

559a8156e376e2ba542fe9e8d26b05b77f1313f872b54eb375952a7b44f7e9e3
SHA512

abac79f572364e8d4b575df06c5bcc1daea315a202cc2b004022e68b9a104512076e55bf6c60f6991fb367fc9532b579143a50de56b97372a89564237102d915
SSDEEP

192:ttIrtGv4fQuHrYOx2IxCBM1cc94u6EbE+5kBdFHEQ21cc94u:fcBMe23iGvEbEzHEQ0G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
559a8156e376e2ba542fe9e8d26b05b77f1313f872b54eb375952a7b44f7e9e3

Files

559a8156e376e2ba542fe9e8d26b05b77f1313f872b54eb375952a7b44f7e9e3
.exe windows:4 windows x86 arch:x86

d7ab003fe0dc7ca3c8cc9431be454ccc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord621
ord595
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord644
ord570
ord100
ord616

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ