e1b0e767a2d5b09c61784d013f09b736 | Triage

Sharing

General

Target

e1b0e767a2d5b09c61784d013f09b736
Size

356KB
MD5

e1b0e767a2d5b09c61784d013f09b736
SHA1

2677d003a1badf2213d91544c2bb951f37586734
SHA256

57dc9a81f61a1ece6813799edff824bd0a66d03238ec0a4f3284225202221197
SHA512

e7281d37660b4456011ca267d8ffb333604e185c454aaa2db0f75dc105912bed56d832ab42d92487014f45a1be8a86de2fd372f7924360bb2102d92e55045913
SSDEEP

6144:sRpjflWowwLIXQJ3YY9ZX9yWeQ5f3zJ4W1Mkpc31hu3ErKeXJ9ez6vJpHPWI:m9lWowgIgJHl/z91MUc3Due59eyWI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1b0e767a2d5b09c61784d013f09b736

Files

e1b0e767a2d5b09c61784d013f09b736
.exe windows:4 windows x86 arch:x86

9c8dad5ebc58d27405726eb5cf4f105c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord693
MethCallEngine
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord608
ord717
ProcCallEngine
ord537
ord644
ord100
BASIC_CLASS_AddRef

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 332KB - Virtual size: 330KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ