a16f1d33725010731aec5a96ed8af2cdbee9630f93f6b543290339b372e9b574 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a16f1d33725010731aec5a96ed8af2cdbee9630f93f6b543290339b372e9b574
Size

28KB
MD5

acb2d71b2bf1dbb275af0b8586c2c7a0
SHA1

45386aa5fbac0a0d9e0f1e1d9d8fe85bf6e0304d
SHA256

a16f1d33725010731aec5a96ed8af2cdbee9630f93f6b543290339b372e9b574
SHA512

f8daf056b820a7ad94cd26b868b3dc80555d3fc1bb91c78b98a001782bc94712137dac77c9c849c9a85acd8e56c5d24de77fbbd5ad3fcdcf5609bef70ff0fe8b
SSDEEP

384:vv/7ydjljw7XbMW4y4TwUxWaWKILxlzCVEvIJ+r+Wtk:vv/OdjljChxlwkE+rN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a16f1d33725010731aec5a96ed8af2cdbee9630f93f6b543290339b372e9b574

Files

a16f1d33725010731aec5a96ed8af2cdbee9630f93f6b543290339b372e9b574
.exe windows:4 windows x86 arch:x86

f8ab05ec27fc465cb90a12e32c7c4a5e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
ord667
ord595
ord598
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord716
ProcCallEngine
ord645
ord100
ord579
ord617
ord619
ord546

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ