c65a8880f2fa6b4baaa71d54d99d853d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c65a8880f2fa6b4baaa71d54d99d853d
Size

24KB
MD5

c65a8880f2fa6b4baaa71d54d99d853d
SHA1

8a4d6d2e204e1945a4c704b22d315958b680ead3
SHA256

70ce596fba8cfa45962809068f60f75ae352e3aca1e799867d34b82968a32c41
SHA512

a1ab9dfc887cfbe6926d7f748ef53c8a09dfcc0f5548ad966662dbdf10545bae04c45d73fb84f838980e4482e01a50e35845b0db5877a21d1bc857e3b065abcc
SSDEEP

384:WbcEMS+4ytifIAyJvVG3e1B8lkngKWS7XLsUHBly3GEYGPaRDWoE:SAS3yEfIzJvM3eBhg+sUhly3GTGPaRX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c65a8880f2fa6b4baaa71d54d99d853d

Files

c65a8880f2fa6b4baaa71d54d99d853d
.exe windows:4 windows x86 arch:x86

17091ffe7a92a1f951c4345cec955da1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord626
ord666
ord520
ord631
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord717
ProcCallEngine
ord537
ord644
ord570
ord573
ord100
ord617
ord619

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ