c244e4b1712fb87cccffabaf9ea72f62 | Triage

Sharing

General

Target

c244e4b1712fb87cccffabaf9ea72f62
Size

588KB
MD5

c244e4b1712fb87cccffabaf9ea72f62
SHA1

8ae3236eb09c28a0b6898496bb9b1119e53e758e
SHA256

5425736cc1bd35a5caa062cd982da5c282dc534635f067ce4289ff7ebfd8d776
SHA512

ddbc00cf7c35b0b30497d0710e7f4ca89e80a7629bb3cca76cb10dacb0cb51c3f8fc3933970c3697a4f5d9c9352dd51ca4d2e0a413397d20d7cc11501e6bcc90
SSDEEP

12288:OfecEyA2CXsNehjATMhsw2P4vJWxPvSU2kQqY8vZQVq:03CXBhOMhsw2gIt+kQqYMZt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c244e4b1712fb87cccffabaf9ea72f62

Files

c244e4b1712fb87cccffabaf9ea72f62
.exe windows:4 windows x86 arch:x86

e6276e4caa67e8e23e30365717aab624

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord666
ord598
ord520
ord632
ord526
EVENT_SINK_AddRef
ord561
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord713
ord608
ord717
ProcCallEngine
ord644
ord645
ord648
ord570
ord573
ord681
ord685
ord100
ord613
ord581

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ