d650d343b66d5119f0435e117297fe7b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d650d343b66d5119f0435e117297fe7b
Size

24KB
MD5

d650d343b66d5119f0435e117297fe7b
SHA1

b591e65bbcb3bd9026b4100322aa3caf752805c0
SHA256

f90b79d2f7e5a16c9823d41682b8f0a7f3f1c7193134718906fbae9af2de7651
SHA512

a97ea81632625d6ae8d4d9b64bdc77f0c2beb16a2756448b781674abaacb9efe880ee292565393e11c989b00d2ef28a0449eb45ec1e55cd12c1388d33a17b74e
SSDEEP

192:k1wETauFisiR2wW8It/Bv/76Rbf87BzixE7atT36aSij:k1wxhcTIbKBzixE7ahj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d650d343b66d5119f0435e117297fe7b

Files

d650d343b66d5119f0435e117297fe7b
.exe windows:4 windows x86 arch:x86

9d7ba0da6b1484dd4e8dbf2343fc5a96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord631
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord713
ord608
ord717
ProcCallEngine
ord537
ord644
ord573
ord681
ord100
ord613
ord619

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ