c4cb34b43b6f976f212a3544df466dae | Triage

Sharing

General

Target

c4cb34b43b6f976f212a3544df466dae
Size

126KB
MD5

c4cb34b43b6f976f212a3544df466dae
SHA1

065d57ce2734ffa4212ee7e64dfa05d542448446
SHA256

25d37b68280a70f06c66377c2ca72b6fb2c10efa1e8b71058aee03ae681d1ed6
SHA512

b8c85971d845631a3159a32d5f3968ae34125fc84df1deb1518be37f44268dc83439c156e62a4242c8a614a5e449d2f1da5c197df52f0533302b6dd09211a39f
SSDEEP

3072:x29WUluZDbTsrk+gNrgEjaWoUqPXMmwncY7Oby2HT:x29WtfsroBjaWor7wB7eyo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c4cb34b43b6f976f212a3544df466dae

Files

c4cb34b43b6f976f212a3544df466dae
.exe windows:4 windows x86 arch:x86

34550ca8caa06cbae42e152ba8bc03ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

EVENT_SINK_GetIDsOfNames
MethCallEngine
EVENT_SINK_Invoke
ord665
Zombie_GetTypeInfo
ord526
EVENT_SINK_AddRef
DllFunctionCall
Zombie_GetTypeInfoCount
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord644
ord570
ord100

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ