file_1430a8b3406c4e4ebb21a0d53e77edf7_2024-03-13_14_06_11_402000[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

file_1430a8b3406c4e4ebb21a0d53e77edf7_2024-03-13_14_06_11_402000.zip
Size

23KB
MD5

a63f14d7f4bd2c3e9f81c2471f72ae01
SHA1

51ad38d250a0fc96bf28a77e66cf7a277e96eb3b
SHA256

efd6eca3b16d91b7cc3533224785429a61df9658632462e60002afc8e5c9bff6
SHA512

541022e29feb04f742a0e3f086b0f68fa7ca896ab69795d025ce76a9c7a374e9e227e9b0c4c4d946f8c36dca2602524ed8e71f8afdfe9842e0edb096377d26b1
SSDEEP

384:K7CDcitjLtdjWhzrjXjr2kg0ZkdK55805voLSob2aWpBXe1hE5i7SUgSO+e7P0:K7C/9AzrDjVw0wu6S5pE1hEs7WNP0

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/entry_1_0/mdac_typ.exe
unpack001/entry_2_0/Setup.exe
unpack001/entry_3_0/DeviceTemplateCopy.exe

Files

file_1430a8b3406c4e4ebb21a0d53e77edf7_2024-03-13_14_06_11_402000.zip
.zip
entry_1_0/mdac_typ.exe
.exe windows:4 windows x86 arch:x86

638c3744025fd54051946a81febece50

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaFreeVar
__vbaStrVarMove
__vbaFreeVarList
_adj_fdiv_m64
_adj_fprem1
__vbaRecAnsiToUni
__vbaStrCat
__vbaLsetFixstr
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaOnError
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
ord520
_CIsin
ord525
__vbaChkstk
__vbaStrCmp
__vbaObjVar
ord562
DllFunctionCall
_adj_fpatan
__vbaRecUniToAnsi
_CIsqrt
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
ord716
__vbaFPException
__vbaI2Var
_CIlog
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaStrComp
__vbaVarDup
__vbaLateMemCallLd
_CIatan
__vbaStrMove
_allmul
_CItan
_CIexp
__vbaFreeObj
__vbaFreeStr

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
entry_2_0/Setup.exe
.exe windows:4 windows x86 arch:x86

318aeb5a513f2e36b11cf2fb0ee83933

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaFreeVar
_adj_fdiv_m64
_adj_fprem1
__vbaStrCat
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaExitProc
__vbaOnError
__vbaObjSet
_adj_fdiv_m16i
_adj_fdivr_m16i
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
__vbaObjVar
__vbaVarLateMemSt
_adj_fpatan
EVENT_SINK_Release
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
ord716
__vbaFPException
_CIlog
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord685
ord100
__vbaVarSetVar
__vbaLateMemCall
__vbaVarSetObjAddref
_CIatan
__vbaStrMove
_allmul
_CItan
_CIexp
__vbaFreeStr
__vbaFreeObj

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
entry_3_0/DeviceTemplateCopy.exe
.exe windows:4 windows x86 arch:x86

ec7353bc429c2ca71d9fba549c8ad83a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord621
ord516
ord517
ord660
ord666
ord595
ord303
ord598
ord309
ord632
ord525
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord608
ord531
ProcCallEngine
ord645
ord573
ord681
ord576
ord577
ord578
ord685
ord100
ord579
ord617
ord619
ord650

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
manifest.json

Sharing

General

Malware Config

Signatures

Files

638c3744025fd54051946a81febece50

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 732B

.rsrc Size: 4KB - Virtual size: 2KB

318aeb5a513f2e36b11cf2fb0ee83933

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 12KB - Virtual size: 9KB

ec7353bc429c2ca71d9fba549c8ad83a

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 40KB - Virtual size: 37KB

.data Size: - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 6KB

.text
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 732B

.rsrc
Size: 4KB - Virtual size: 2KB

.text
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 12KB - Virtual size: 9KB

.text
Size: 40KB - Virtual size: 37KB

.data
Size: - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 6KB