c2ed97775f8b2ee45bb788b6b24c15ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c2ed97775f8b2ee45bb788b6b24c15ec
Size

120KB
MD5

c2ed97775f8b2ee45bb788b6b24c15ec
SHA1

726d8f27375880b3c30070541c5922095844d387
SHA256

089cedad75792aa43d498ded765369aaf9ae286678d8308444e1e037aff07724
SHA512

9c37aa5b3c503442c0b3118e4c86cc8ddcf29d08fc5d95cf6fe0fc2d98972f897d0a5456a41a2eef387baa705653e040fae3bad91474c537c0c0d1c3343b8247
SSDEEP

1536:klbc1FDcpI4HdWs1k4YZ+BnNrUYLF8eZEajrhhxCzHbsYrIrrUYLind:qEFDM00k4YMpqZaYJrIkld

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2ed97775f8b2ee45bb788b6b24c15ec

Files

c2ed97775f8b2ee45bb788b6b24c15ec
.exe windows:4 windows x86 arch:x86

b680045a4435988b8e1dbe65ba413dfb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord100
ord544
ord546
ord547

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ