bd97be31c8c38218949f8672dc6e3857

General

Target

bd97be31c8c38218949f8672dc6e3857
Size

276KB
MD5

bd97be31c8c38218949f8672dc6e3857
SHA1

2852d543a357a38d8a844952608a7e9febf7779d
SHA256

575b63ec45d38885a90d973d68eaabd13117bbcbef289a9b64f545046b68e8ba
SHA512

9dff1c7e089aaad11088846028907dc1c8a98837d2bf21360321be5998cd4747638814a11840fbda1043708cae66ea50dcde2581dc2b09e5007627a278750530
SSDEEP

6144:7Seb61wlJXW9W/OSYMIJIBMeew8+OAOgCJjwrDX7LiF/AHrVk3+tQ:eIDLW9WWSYvIBMexd4gCyrDrLAEVdtQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd97be31c8c38218949f8672dc6e3857

Files

bd97be31c8c38218949f8672dc6e3857
.exe windows:4 windows x86 arch:x86

1bba74fe5478f2db8859a1362fa794a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
ord631
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord713
ord717
ProcCallEngine
ord537
ord644
ord570
ord648
ord573
ord685
ord100
ord616
ord619
ord581

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 32.0MB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1bba74fe5478f2db8859a1362fa794a2

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 16KB - Virtual size: 15KB

.data Size: - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 2KB

. Size: - Virtual size: 4KB

. Size: - Virtual size: 4KB

. Size: - Virtual size: 4KB

. Size: 32.0MB - Virtual size: 4KB

. Size: - Virtual size: 4KB

.text
Size: 16KB - Virtual size: 15KB

.data
Size: - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 2KB

.
Size: - Virtual size: 4KB

.
Size: - Virtual size: 4KB

.
Size: - Virtual size: 4KB

.
Size: 32.0MB - Virtual size: 4KB

.
Size: - Virtual size: 4KB