c58bf8155bafcc8e4519c14325b9486f | Triage

Sharing

General

Target

c58bf8155bafcc8e4519c14325b9486f
Size

118KB
MD5

c58bf8155bafcc8e4519c14325b9486f
SHA1

b22e471f2afff195d579cfcc09da1a950d495873
SHA256

27d830eaee6a6c4e2e298c92f56daa3451c483119c93818c9ab4ed1ff6825f9d
SHA512

6171c9b5115584ef0c2cad257601327381826fdb756501e0c4fa9822bbe4845fef9cbc0d712e71bcedaff5bbdffdaad2f252633b5740e8918d611c5c78d746b7
SSDEEP

768:Vea2jmWgFc5DDrMk9Ki1QuMuCJPEH6DKyPpTf8:VufBgYQRudqKyp8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c58bf8155bafcc8e4519c14325b9486f

Files

c58bf8155bafcc8e4519c14325b9486f
.exe windows:4 windows x86 arch:x86

818d9228185e5b535281f669a8841f09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord583
ord585
ord586
ord588
ord589
ord698
MethCallEngine
ord517
ord554
ord556
ord557
ord665
ord559
ord596
ord303
ord598
ord309
EVENT_SINK_AddRef
ord560
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord714
ord608
ord534
ProcCallEngine
ord537
ord648
ord572
ord574
ord685
ord100
ord611
ord612
ord543
ord547

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ