6e6db468c20b55c1e3e022932427a6c7ebe3573bf706bb87188cb4eac2b01ad1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6e6db468c20b55c1e3e022932427a6c7ebe3573bf706bb87188cb4eac2b01ad1
Size

408KB
MD5

15bc58e71b3bc7e26d5132f58838e9d6
SHA1

0c033c708e592d8966fb709b1934425784112fec
SHA256

6e6db468c20b55c1e3e022932427a6c7ebe3573bf706bb87188cb4eac2b01ad1
SHA512

2ab6143b731d28ccb00b7054c3a1e150a616328bab1c19ad92046ff5ed534dda43d5b232223896b0aa2b0a08e8ca3d7a4a67b41c31c4a1ce1154ff7a743c233c
SSDEEP

6144:kOzNjjolewYVag4FKXY+MzrljsmWPEjzhncw8pO:RDaZ9xjlWUncw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6e6db468c20b55c1e3e022932427a6c7ebe3573bf706bb87188cb4eac2b01ad1

Files

6e6db468c20b55c1e3e022932427a6c7ebe3573bf706bb87188cb4eac2b01ad1
.exe windows:4 windows x86 arch:x86

c3031933c6906ab12d355742b35a1ae4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord626
ord595
EVENT_SINK_AddRef
ord528
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord716
ord100

Sections

.text
Size: 400KB - Virtual size: 399KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ