d5febf75ee768516c78e5112f16dfed9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d5febf75ee768516c78e5112f16dfed9
Size

12KB
MD5

d5febf75ee768516c78e5112f16dfed9
SHA1

a13975c7ce99d26c16b250d87710c4460ebe914e
SHA256

e9346cba8dcc43e29c8b773b34c7dd19be3dba07b135755a59c4373da072aea0
SHA512

d358f15f745c2deacfc112f672c4efed0a8bcec2f3b2fd0b6af3a209ca85458728c0df8e9e8c1d6fb951c52054dac53e74a781813d124bf82413f41dac30cee3
SSDEEP

48:yg64sIkRFijAQDB6aIRfsbCP2x3wfwDXWkgC+sfW9UchLFwR0E:aGQp4RI0Cm0wDXW0+tU6E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5febf75ee768516c78e5112f16dfed9

Files

d5febf75ee768516c78e5112f16dfed9
.exe windows:4 windows x86 arch:x86

212368ec821b13e65c34676ba345cc12

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord595
EVENT_SINK_AddRef
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord100

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ